Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38312e302f32342d3234203d3e20313336373837.roa
File: 38322e3134392e38312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: SNoBHE3s2HuUG9A40vF6s12651MsDbxW+00Cs8WF0qc=
Subject key identifier: 68:86:17:85:7F:39:91:F9:96:C4:E3:FF:B9:8F:36:6F:B2:DC:10:B2
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 27D5EA19C79E608ACCCDEA79AAE5B3E3A6D70FDA
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38312e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 26 Jan 2024 19:02:38 +0000
ROA not before: Fri 26 Jan 2024 18:57:38 +0000
ROA not after: Fri 24 Jan 2025 19:02:38 +0000
asID: 136787
IP address blocks: 82.149.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:d5:ea:19:c7:9e:60:8a:cc:cd:ea:79:aa:e5:b3:e3:a6:d7:0f:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jan 26 18:57:38 2024 GMT
Not After : Jan 24 19:02:38 2025 GMT
Subject: CN=688617857F3991F996C4E3FFB98F366FB2DC10B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:54:1e:ee:b6:ea:c7:73:5f:ee:54:4e:51:32:
f1:dd:15:04:10:ca:d4:5a:b2:57:55:b5:7d:a4:72:
fd:a4:ab:25:84:ad:0c:1d:dc:6c:66:fc:8d:df:7f:
37:f3:c6:5b:ae:14:7e:47:6d:01:17:82:ce:69:94:
03:89:30:29:58:93:1b:2b:7c:f4:6a:97:d6:69:f0:
06:0e:8d:63:25:eb:74:2f:3e:81:db:69:ac:cf:02:
53:43:3c:2f:ae:48:15:02:65:f8:23:50:eb:e3:34:
98:f3:4f:90:12:68:c4:19:39:1f:fa:bf:80:bf:0e:
01:e5:c4:4f:fc:f5:50:76:2c:76:52:88:66:5a:c4:
e2:70:81:7b:b1:e8:9f:6b:50:b6:aa:24:34:b9:c8:
77:a1:88:19:1b:39:bd:53:6f:5f:b5:15:68:96:00:
5d:57:42:d7:bb:f2:8c:8c:8e:8d:bd:e3:60:90:89:
c6:44:ca:d2:05:2d:71:38:15:f1:87:bf:95:44:64:
cc:37:22:7e:a0:b3:07:d9:0f:9b:1a:e2:1d:10:74:
42:fd:b3:9b:5e:02:1e:db:36:05:34:77:dd:4a:86:
40:ab:8f:24:0e:ba:ec:24:dd:0e:08:75:4f:d0:ea:
61:fb:e4:d3:04:14:3f:5e:18:e8:69:18:0a:2b:02:
f6:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:86:17:85:7F:39:91:F9:96:C4:E3:FF:B9:8F:36:6F:B2:DC:10:B2
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.149.81.0/24
Signature Algorithm: sha256WithRSAEncryption
31:a0:09:cd:1a:c3:b0:00:54:3a:3b:9b:a3:38:98:59:c9:f5:
e9:b2:b5:18:cd:2b:ff:89:f6:04:9f:41:7b:d7:bb:36:5c:79:
1b:b6:93:be:6d:68:d9:06:e7:86:8d:10:ab:34:29:10:48:5d:
2b:52:e1:b6:17:f5:46:23:65:2c:8b:93:cf:4f:0b:fd:9c:ee:
63:c6:ea:ac:9e:f4:a4:50:1e:a6:b1:a4:a9:19:2e:58:eb:c5:
67:89:78:9f:0d:1b:33:26:bd:7b:78:1a:c1:c4:b0:71:80:12:
bb:ce:18:75:e2:65:0b:ce:7c:eb:6f:79:ea:51:26:c5:8f:06:
55:88:59:22:00:9a:37:90:32:65:6c:3e:27:a1:bc:8d:6c:84:
2a:4b:9d:75:f1:95:64:70:8e:c0:96:02:3d:13:2a:8c:ea:61:
ce:be:37:78:c9:30:3d:c5:81:97:36:2b:94:0f:d8:93:64:49:
a5:18:49:1d:05:69:3b:32:41:ce:84:df:f1:42:a6:a7:96:31:
f3:26:b9:ec:98:f4:0f:fc:83:ff:b2:c5:fd:4f:31:a0:4e:0d:
03:dd:96:38:40:d5:c6:d7:aa:3d:84:be:e0:7d:b1:f8:dd:b7:
45:59:61:a8:5f:d5:34:e1:e2:f9:b7:f2:e2:a4:5d:b6:ec:13:
65:fa:99:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:42:59 2024 by rpki-client on console-fra.rpki-client.org