Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e37332e302f32342d3234203d3e20323034313730.roa
File: 38322e3134392e37332e302f32342d3234203d3e20323034313730.roa (raw, json)
Hash identifier: +/hxXqiLHKzYmXVBLE3Rzm9kNumNBNs1hkf+CYro0Co=
Subject key identifier: 50:E1:EC:4E:BE:F9:4A:F7:79:67:0F:C4:1F:68:CD:65:17:B7:D2:3C
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 5257CA31A67F30256A0A64093F5A72F82D91FF04
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e37332e302f32342d3234203d3e20323034313730.roa
Signing time: Wed 17 Jul 2024 14:04:14 +0000
ROA not before: Wed 17 Jul 2024 13:59:14 +0000
ROA not after: Wed 16 Jul 2025 14:04:14 +0000
asID: 204170
IP address blocks: 82.149.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 13:21:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:57:ca:31:a6:7f:30:25:6a:0a:64:09:3f:5a:72:f8:2d:91:ff:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jul 17 13:59:14 2024 GMT
Not After : Jul 16 14:04:14 2025 GMT
Subject: CN=50E1EC4EBEF94AF779670FC41F68CD6517B7D23C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:41:0b:04:30:76:b4:b2:62:36:f7:ee:c4:0e:
f4:b1:30:9d:b0:7a:fa:d4:c5:b7:5a:ac:5d:2a:a8:
29:91:db:c7:a4:f3:17:fa:3b:61:64:f7:f7:9c:ba:
64:d0:2a:20:28:28:15:0f:72:39:d9:a3:69:57:7a:
ec:c0:30:fa:a4:01:05:c4:da:cf:4f:52:8f:f2:02:
cd:02:70:26:63:89:4c:8b:16:20:e9:e6:db:f1:5e:
38:2c:36:98:82:1c:37:20:bd:3c:e9:bf:43:24:67:
2a:e4:56:77:80:15:c4:ae:d3:a8:ed:e8:a8:36:53:
5b:f0:54:76:ff:01:49:01:40:d8:21:e6:3e:f1:33:
98:04:8f:3c:e0:9b:f7:d2:e2:09:7e:de:9c:e9:be:
1f:29:6f:8c:65:ab:af:00:80:e9:53:5a:00:47:03:
63:e7:56:bb:d7:eb:04:29:71:7b:e5:93:1e:e5:8b:
12:ef:f6:27:72:d4:a5:28:e5:3e:5c:3b:fb:05:a9:
e6:af:79:c6:77:4b:7f:8c:7f:37:77:88:44:90:fd:
d5:94:19:fa:69:d5:a9:7c:ae:77:7e:77:3c:a4:55:
c7:87:32:59:81:64:ec:86:67:98:b3:16:a2:7c:6c:
fc:80:ae:1e:7b:c8:cb:33:42:d3:4c:0c:14:8a:45:
04:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E1:EC:4E:BE:F9:4A:F7:79:67:0F:C4:1F:68:CD:65:17:B7:D2:3C
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e37332e302f32342d3234203d3e20323034313730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.149.73.0/24
Signature Algorithm: sha256WithRSAEncryption
53:c7:d8:20:e9:b7:88:8a:c9:79:bb:8f:aa:93:c3:01:06:4d:
ca:9d:67:f7:9f:62:fe:fd:7e:9c:7d:88:81:47:d4:b7:29:fc:
bf:da:23:b3:0b:c0:2a:57:53:40:d6:3a:53:dd:f9:b4:8c:a8:
6c:65:c7:aa:37:04:a1:9d:9e:c0:cf:fe:01:4b:e0:e2:4a:86:
71:f1:26:04:6f:4a:29:50:03:77:12:9d:0c:5a:fe:cf:da:12:
22:76:ed:3b:5e:10:b6:02:75:56:32:fa:bf:b4:00:0f:db:be:
06:97:27:8b:78:03:88:89:8d:2e:46:f5:f1:6d:01:da:88:98:
a8:44:85:21:98:14:73:e8:8c:9a:8d:b6:04:5f:7d:a3:a5:21:
f9:8b:ad:97:c2:ca:76:90:d3:be:9c:3c:32:cc:7b:82:a6:b8:
67:0b:ea:d8:7d:0e:df:9e:24:7f:c9:ed:00:56:38:c1:60:55:
d5:b3:bb:b0:a3:04:15:91:a9:1b:da:02:db:ee:24:77:79:c9:
e1:cf:a8:3a:7f:aa:4d:05:16:ff:fa:be:b8:0d:a0:06:95:d7:
d9:e7:fe:24:bc:55:23:5a:a8:69:0e:f5:92:ec:8b:92:3d:38:
04:c2:b6:84:fd:96:e0:10:43:79:ce:b5:e4:5a:4a:06:ef:57:
35:05:b7:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:38 2025 by rpki-client