Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3138312e302f32342d3234203d3e20323038343238.roa
File: 38322e3138302e3138312e302f32342d3234203d3e20323038343238.roa (raw, json)
Hash identifier: WNo58OmsgEUuYkPfzBusEfOD29cPKtw1ez0aiRbDhl0=
Subject key identifier: 99:4C:70:53:41:FF:7B:2A:C8:6D:BC:BD:4F:34:42:22:FC:22:5C:B1
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 7415805175230D2B7C890C2C7CB5310E6562BBC8
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3138312e302f32342d3234203d3e20323038343238.roa
Signing time: Thu 27 Jun 2024 12:06:02 +0000
ROA not before: Thu 27 Jun 2024 12:01:02 +0000
ROA not after: Thu 26 Jun 2025 12:06:02 +0000
asID: 208428
IP address blocks: 82.180.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 13:21:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:15:80:51:75:23:0d:2b:7c:89:0c:2c:7c:b5:31:0e:65:62:bb:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 27 12:01:02 2024 GMT
Not After : Jun 26 12:06:02 2025 GMT
Subject: CN=994C705341FF7B2AC86DBCBD4F344222FC225CB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:df:6c:16:a7:d5:42:76:c1:b7:97:27:2d:4d:
3c:06:11:e5:8d:13:78:f5:ea:ba:c6:94:86:69:c7:
e5:b7:44:0d:a9:cb:1d:08:ec:b0:c1:39:0a:cf:68:
4b:68:52:5f:54:e3:ec:38:e1:8f:a5:d9:85:b0:0e:
01:c6:77:45:5a:40:06:57:00:37:f4:3b:ad:60:da:
3d:04:ec:fe:a5:26:20:93:ce:8c:7c:68:b6:8e:ff:
30:1a:4c:50:86:3e:28:0c:4f:85:d8:d1:67:52:f7:
e6:5f:63:6b:6e:6b:f2:53:f4:80:4d:6b:34:c8:9b:
70:ed:72:c6:9f:b9:88:95:ef:87:a1:d9:00:1c:0f:
fc:44:ac:c3:99:ec:25:4f:e0:48:0d:6e:93:78:f9:
88:58:4c:c3:4e:81:85:bc:e9:b0:97:9f:06:90:60:
cf:42:7a:ab:73:76:7b:16:2f:b1:b3:5f:e6:41:7c:
b4:9e:7e:b9:4d:80:cc:7b:0f:47:94:c1:77:46:60:
37:ef:a1:e9:00:52:ac:3b:7d:2a:fd:d0:d3:ec:62:
5c:f0:68:71:31:47:9b:97:05:5d:ec:12:53:df:df:
ce:5d:0a:16:c4:df:60:c1:f2:c0:43:8b:18:eb:36:
f5:20:20:ef:15:3f:96:7e:9f:20:4b:03:6b:37:fa:
d5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:4C:70:53:41:FF:7B:2A:C8:6D:BC:BD:4F:34:42:22:FC:22:5C:B1
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3138312e302f32342d3234203d3e20323038343238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.180.181.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:73:04:a5:d3:8c:51:b3:6c:8f:3b:79:55:27:2f:90:18:5f:
53:8d:4e:ca:8c:2f:13:3c:31:24:f6:39:fb:4d:24:d1:2c:51:
9a:be:5c:4b:68:06:05:a3:2f:bc:8c:b3:77:14:3c:28:e2:f9:
ff:b5:50:7f:39:3e:81:f3:e3:15:51:93:c1:d6:03:a2:8b:06:
95:b9:9c:66:21:4a:c4:27:17:31:9f:4f:dc:0d:aa:d5:ed:81:
2d:08:41:2c:c5:ea:fa:75:67:7c:85:f7:04:96:13:fe:25:35:
07:a7:f0:75:df:78:43:33:45:30:72:e7:b8:19:b9:c8:55:2e:
9a:cb:3a:76:4d:61:d9:4c:a5:31:82:a1:1e:28:b4:d1:bf:3b:
09:e8:98:c7:f4:a0:d2:4a:ba:1a:e3:82:c9:ac:f5:07:c1:3a:
65:a5:c8:6d:13:e6:8a:c4:df:e2:d7:71:2f:23:53:fb:68:db:
59:f1:b3:e8:0a:d1:13:ad:10:bb:36:f8:5b:16:19:64:3d:c8:
d1:af:db:c6:12:35:c8:6b:11:95:81:c1:3b:e0:37:a6:ac:7e:
54:7b:01:f2:e9:9d:44:0c:4f:6c:50:04:f9:36:22:a1:63:e3:
71:1a:2d:80:a4:96:db:30:3c:e0:3c:f5:63:87:8a:e0:23:61:
27:db:6a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:35 2025 by rpki-client