Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3134382e302f32342d3332203d3e20313336373837.roa
File: 38322e3138302e3134382e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: 0eLzLpxhTU5lkv/U76Trm5nb3RADKWSUReZZKAaS2SQ=
Subject key identifier: 58:F2:F0:46:B0:A2:D3:EC:E8:01:06:6D:58:3D:6C:2A:7C:77:D1:70
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 3D912E2A10A784B39CC9E3F5E6CE4283E61F7DEB
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3134382e302f32342d3332203d3e20313336373837.roa
Signing time: Mon 26 Feb 2024 08:53:19 +0000
ROA not before: Mon 26 Feb 2024 08:48:19 +0000
ROA not after: Mon 24 Feb 2025 08:53:19 +0000
asID: 136787
IP address blocks: 82.180.148.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:91:2e:2a:10:a7:84:b3:9c:c9:e3:f5:e6:ce:42:83:e6:1f:7d:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 26 08:48:19 2024 GMT
Not After : Feb 24 08:53:19 2025 GMT
Subject: CN=58F2F046B0A2D3ECE801066D583D6C2A7C77D170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:fb:72:f9:61:0e:f9:ff:e5:e3:16:5f:17:4b:
c9:f3:1f:4c:59:a2:51:47:6e:a1:6d:25:cd:c3:19:
35:1c:75:a7:6b:38:dc:e4:2c:cb:21:a5:08:5a:6d:
d9:19:2b:72:fc:8a:7d:15:42:e4:34:c9:69:67:f0:
17:18:64:1e:e3:1c:24:b3:42:29:e6:72:81:8c:b7:
8b:84:d5:57:1b:11:4f:10:5b:09:0b:03:7c:9c:62:
e0:27:7d:b7:29:f2:fd:db:f6:7c:dd:ff:ba:67:52:
17:ce:14:5d:ed:fe:f1:e6:76:f0:96:4d:bf:1c:1f:
8e:7d:fc:50:79:d8:f4:49:5e:3d:ea:6e:43:c1:6f:
d4:28:5b:29:b3:73:4f:05:ac:78:94:e5:a8:1b:56:
d1:68:ef:28:0e:e6:a0:c4:bc:ba:6e:2f:7d:37:e6:
2e:5e:19:5b:0a:4b:a4:fd:00:43:b7:53:ec:1b:f0:
b2:c1:89:c4:96:20:2a:ee:e7:72:ea:86:15:49:ef:
05:0c:04:02:5b:99:cb:05:22:67:fc:b7:9b:39:11:
5e:24:30:8c:fa:3f:05:8b:38:21:97:fb:71:9e:91:
d8:ac:16:bc:4f:8e:74:d8:d3:49:17:ac:80:3d:85:
bf:90:ef:4a:c5:01:e1:3e:aa:15:9c:26:c0:69:8b:
89:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F2:F0:46:B0:A2:D3:EC:E8:01:06:6D:58:3D:6C:2A:7C:77:D1:70
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3134382e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.180.148.0/24
Signature Algorithm: sha256WithRSAEncryption
18:26:19:35:38:0e:0b:b5:e1:50:bb:68:30:b7:36:4c:0c:bc:
64:76:7b:c9:3e:1c:54:b8:be:9b:e3:29:c3:7d:ba:50:ab:16:
e9:cb:f1:97:5f:3a:75:0a:df:48:b0:27:7d:e2:2e:16:96:a9:
38:aa:89:71:b6:06:1b:36:1b:e9:a2:c5:88:84:8f:86:a5:99:
b7:4e:76:43:df:70:c6:9c:b3:6c:65:5b:4e:2b:94:9f:bd:c0:
a8:1f:46:9a:28:79:81:12:0e:2d:08:d5:e4:47:a6:02:6a:47:
55:02:51:ee:06:e4:f4:95:c4:8d:a5:57:5b:f8:df:6a:54:73:
89:f5:7f:e1:3c:8d:96:6d:0f:1e:02:9e:a5:38:67:89:0c:43:
54:a6:2c:db:91:b5:27:2b:d4:14:2e:a0:5f:a4:c5:f3:2a:f6:
58:29:df:74:b0:47:e8:24:14:94:20:8d:1b:3b:b0:f1:f7:9c:
fe:fc:8c:cd:79:fd:9f:b2:be:6b:15:a8:ff:6e:fd:ab:fc:c6:
19:d4:38:7e:96:cb:6a:2d:e1:3f:84:d8:6a:ae:36:49:d8:08:
22:32:85:d8:56:4b:bb:06:eb:be:17:26:79:4d:de:fc:26:1c:
d7:76:53:d5:18:61:40:8f:5b:53:fb:5e:2a:44:47:7c:a0:44:
92:f7:93:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:04 2024 by rpki-client on console-fra.rpki-client.org