Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3138332e302f32342d3234203d3e20323036323833.roa
File: 38322e3138302e3138332e302f32342d3234203d3e20323036323833.roa (raw, json)
Hash identifier: inr1wRvD0af9cHVJOa9oSWVfcxQSrTErwWOo9o0ViP0=
Subject key identifier: B2:F6:82:C9:F1:B2:55:DD:87:BB:CD:92:39:11:A0:5A:4C:8D:23:11
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 42F8A93FBC57CB164BE3065868C317438A0011A8
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3138332e302f32342d3234203d3e20323036323833.roa
Signing time: Wed 29 May 2024 12:57:45 +0000
ROA not before: Wed 29 May 2024 12:52:45 +0000
ROA not after: Wed 28 May 2025 12:57:45 +0000
asID: 206283
IP address blocks: 82.180.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:f8:a9:3f:bc:57:cb:16:4b:e3:06:58:68:c3:17:43:8a:00:11:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 29 12:52:45 2024 GMT
Not After : May 28 12:57:45 2025 GMT
Subject: CN=B2F682C9F1B255DD87BBCD923911A05A4C8D2311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f0:76:61:aa:14:c8:d3:9a:21:26:ce:67:07:
ca:06:01:0a:80:f6:ed:ac:e6:66:19:40:97:de:28:
a0:df:fd:06:06:8a:25:cd:5d:74:ae:9b:42:c4:3c:
8a:45:d0:8c:52:f6:c5:f4:4a:df:96:04:c9:55:7f:
e3:b2:16:d1:86:e5:f7:e7:57:c4:2a:62:9f:71:81:
95:4c:7c:27:7d:17:38:1e:ab:e0:83:b4:4d:5a:8a:
7c:43:96:ca:d4:d8:9e:05:51:01:b8:33:54:41:5c:
b8:c6:db:1d:30:99:dc:1e:07:45:41:48:84:cd:34:
fb:3c:27:fe:4c:da:58:d3:15:9f:33:3f:7d:f6:f4:
9b:8f:60:90:65:39:f9:89:e5:be:e6:55:2d:75:1d:
25:be:d3:21:14:5c:b4:ef:59:4c:87:3b:6f:51:1a:
4b:dd:38:4e:7a:a8:09:80:2d:49:d0:5f:ea:86:2b:
76:c3:51:6d:84:8f:57:77:9b:59:64:ac:94:3c:90:
a9:f0:0c:dc:2f:57:83:e1:96:11:43:8d:a1:79:48:
a3:6d:f7:27:6d:84:e2:85:fd:ea:23:ac:af:91:0c:
93:ac:df:8f:7f:a9:d2:ba:cc:a5:90:c7:83:9f:40:
79:3b:af:4f:97:64:c8:5a:e9:40:bc:47:b5:a4:22:
e9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:F6:82:C9:F1:B2:55:DD:87:BB:CD:92:39:11:A0:5A:4C:8D:23:11
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3138332e302f32342d3234203d3e20323036323833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.180.183.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:fd:54:2b:49:19:42:d0:a0:a4:5c:ad:63:71:c2:41:c7:10:
9f:a6:e7:05:55:7e:62:ac:28:39:5d:53:51:39:53:de:72:9a:
61:d6:59:a9:83:bd:dd:23:74:7f:1a:82:e8:6d:23:49:4c:4d:
5c:7e:ab:29:fe:25:24:f0:dc:12:30:36:7f:5d:52:30:b7:3e:
22:cd:cc:6d:8d:5b:4b:30:f1:47:47:12:1e:e3:2b:e0:a9:aa:
a3:22:e1:20:57:1e:bb:6c:52:40:58:1f:25:08:95:8f:7a:f1:
19:38:1e:38:6b:17:8b:42:5e:9f:8b:9b:5c:d2:f3:40:ba:78:
be:d3:68:23:ff:24:4d:4e:9c:57:85:db:e7:03:3d:92:fa:40:
97:88:af:f8:a9:db:c5:9d:2f:fe:e0:c5:b1:a6:59:5d:17:0e:
3f:d7:3c:5d:85:63:87:9d:35:51:b7:85:40:45:11:f4:97:6d:
45:aa:60:4f:66:5f:c0:51:7a:1d:f6:22:30:d5:9e:f0:ab:d9:
83:0b:27:d7:f4:c1:b5:76:51:30:93:48:66:1f:ff:41:c3:91:
6c:25:88:58:21:c0:89:bf:28:fe:e2:4f:39:33:eb:ee:36:bf:
20:41:25:37:4a:c3:05:c1:3c:d5:92:14:d5:fb:30:35:a4:ac:
0d:67:f8:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:26 2024 by rpki-client on console-ams.rpki-client.org