Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3133362e302f32322d3234203d3e203437353833.roa
File: 38322e3138302e3133362e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: 5+bcHOs097vqCR4dDg4gSjHWYjDtQds2Pl/hFEFqv6k=
Subject key identifier: 39:50:84:09:98:33:0D:1C:D3:DB:26:DE:A2:56:00:89:90:E5:1B:7F
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 476D89283FCAD839D61C8D40F809C39A315CD95B
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3133362e302f32322d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:53:12 +0000
ROA not before: Mon 26 Feb 2024 08:48:12 +0000
ROA not after: Mon 24 Feb 2025 08:53:12 +0000
asID: 47583
IP address blocks: 82.180.136.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:6d:89:28:3f:ca:d8:39:d6:1c:8d:40:f8:09:c3:9a:31:5c:d9:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 26 08:48:12 2024 GMT
Not After : Feb 24 08:53:12 2025 GMT
Subject: CN=3950840998330D1CD3DB26DEA256008990E51B7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a1:b4:1e:81:de:f1:ac:af:d5:db:00:45:a4:
44:7f:9a:ad:22:f4:1b:7e:a4:23:bb:54:94:48:20:
3b:44:0c:02:88:5a:a0:55:84:a5:62:8e:05:45:66:
32:93:64:3f:fb:5a:6a:c7:80:bd:bc:4c:3a:03:cf:
60:75:c0:b9:33:c8:24:8d:0f:1f:68:ba:16:7c:f8:
32:6e:5a:fb:e2:56:8c:1c:20:25:84:d2:4a:ed:58:
fd:3e:77:ba:17:5a:86:28:06:bd:70:76:99:db:36:
ff:4a:eb:20:40:54:15:5c:8d:55:d8:12:4b:f5:0d:
7c:ff:33:da:ea:0b:57:e0:4a:c6:6c:74:2e:d9:ec:
91:af:64:19:64:aa:10:fb:16:e0:92:7f:ae:15:08:
36:b2:82:7c:7f:b7:93:97:6f:3d:00:46:fc:e4:fb:
b4:61:ef:93:b1:b1:21:79:d0:24:c3:0e:10:6d:70:
da:41:cc:0e:c7:c7:42:af:7f:35:4b:5d:4b:14:09:
08:53:df:7d:ea:e2:e4:49:4f:09:d1:71:b6:ec:bf:
97:7c:65:bf:ae:37:a2:bc:e1:75:a0:8c:80:13:b0:
c8:b4:92:5b:16:91:62:7e:a9:d9:57:8c:eb:57:e4:
8e:ca:b4:4d:75:7f:ab:43:33:c1:5e:4b:1d:b0:11:
fe:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:50:84:09:98:33:0D:1C:D3:DB:26:DE:A2:56:00:89:90:E5:1B:7F
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3133362e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.180.136.0/22
Signature Algorithm: sha256WithRSAEncryption
63:62:75:20:65:ac:a2:b5:fb:1a:4d:90:85:6b:ba:34:10:e2:
37:5e:36:a6:9f:5e:0b:26:62:13:e7:1d:76:b1:79:44:0d:b6:
0d:bd:df:1b:41:e0:f2:69:42:d4:c5:d8:d4:ca:85:1f:30:7c:
54:79:7f:a9:f2:ea:66:0c:72:a4:c1:31:a1:6c:3e:c2:f3:16:
ee:58:54:d8:96:16:17:34:53:99:b0:89:85:7f:b5:6b:fa:39:
78:23:bf:12:ba:c1:c5:a4:38:75:95:a9:05:4f:f6:44:bc:96:
9b:56:27:48:c5:0f:b5:a2:c5:a8:88:51:c7:15:07:51:18:2c:
e5:21:ab:b9:33:81:88:e0:63:34:2f:02:c3:ef:5d:5f:72:c1:
f0:8b:18:7c:1a:dd:bd:ac:74:cd:d3:f9:b2:a2:38:b8:50:28:
04:42:b9:cc:05:db:1f:bf:dd:ed:99:6e:c1:fd:ec:f2:65:d4:
05:66:8d:18:73:f1:c5:4e:e9:94:63:cd:0a:14:a1:27:14:c5:
67:9f:0f:44:56:19:6c:0e:1f:f8:b2:d9:96:e7:cf:18:b6:87:
5c:9f:1f:29:26:86:35:da:d6:c4:18:e6:e5:3d:48:89:2c:97:
7b:3e:4c:a4:81:de:50:80:1a:b8:ea:6c:11:13:18:43:48:f4:
27:08:00:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:16 2024 by rpki-client on console-fra.rpki-client.org