Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3139372e37382e302f32342d3234203d3e20313336373837.roa
File: 38322e3139372e37382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: EeZKso1URrvPNeVp8HKSMfjaDhmSbwZxANwN8UH9sqU=
Subject key identifier: 69:00:B9:99:5E:4A:10:13:BA:B5:8F:46:02:EA:79:7B:17:54:1A:DD
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 34740A0B168F7C0FC5447BC66FA38948539EDE16
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3139372e37382e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 26 Jan 2024 19:02:45 +0000
ROA not before: Fri 26 Jan 2024 18:57:45 +0000
ROA not after: Fri 24 Jan 2025 19:02:45 +0000
asID: 136787
IP address blocks: 82.197.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:74:0a:0b:16:8f:7c:0f:c5:44:7b:c6:6f:a3:89:48:53:9e:de:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jan 26 18:57:45 2024 GMT
Not After : Jan 24 19:02:45 2025 GMT
Subject: CN=6900B9995E4A1013BAB58F4602EA797B17541ADD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a7:f2:07:ba:f7:b7:8a:08:6d:8e:d2:7e:66:
44:d7:03:41:aa:70:49:a3:8f:f0:91:d9:e6:00:66:
c6:69:36:1f:c3:48:06:d2:6d:56:26:5a:7d:de:05:
98:0c:10:a8:bc:d3:6c:30:7f:1f:50:f1:fe:0b:89:
9d:d7:69:84:00:d5:63:4f:da:36:55:c9:a2:87:50:
f4:66:42:05:f0:5c:00:fd:95:09:00:d1:71:9e:ff:
d7:df:e7:dd:b1:25:11:6e:dd:1a:02:10:5f:67:74:
85:b3:09:00:0c:ff:ec:b3:75:bc:bf:1d:a1:44:c4:
0c:64:c5:2a:6e:bd:91:22:37:20:eb:48:dd:6f:2e:
5d:27:8e:8e:cc:93:39:33:e7:19:7e:3b:8b:0c:82:
53:87:b9:8a:f0:d9:13:ad:32:71:ef:78:d8:1a:cb:
f4:6d:fe:01:28:f7:85:26:67:79:ea:1e:63:cd:e4:
02:db:19:df:25:0d:68:75:46:7e:af:54:37:0a:d7:
4c:2e:91:29:69:7f:2e:96:74:e0:65:92:87:81:d2:
95:a0:92:a0:53:84:9d:fc:c7:6f:f4:6e:2a:a9:e4:
d8:23:b8:c2:22:d5:be:72:f9:35:95:a5:cd:80:11:
41:1b:80:87:63:d2:a7:fd:87:ef:bc:bb:20:55:ab:
a1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:00:B9:99:5E:4A:10:13:BA:B5:8F:46:02:EA:79:7B:17:54:1A:DD
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3139372e37382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.197.78.0/24
Signature Algorithm: sha256WithRSAEncryption
11:3e:4f:43:43:31:ca:36:df:17:17:a8:e2:c2:6c:c8:1f:e8:
15:5f:c3:54:e4:a6:35:1f:7f:28:c3:14:a7:25:f6:8b:f2:aa:
65:0e:fe:ed:f4:bf:8e:8d:f2:55:13:e6:23:2d:42:44:b3:26:
2b:96:74:8c:4d:84:2c:39:19:76:21:ba:bf:3e:2c:aa:87:71:
83:0d:5d:7f:33:48:7a:96:58:2b:5e:36:3e:8c:5e:bc:62:eb:
94:57:fd:0d:20:29:77:dd:8e:f7:94:da:b6:f0:08:c3:af:f6:
34:00:db:5c:56:6c:cd:1b:9b:2e:ef:de:6f:7e:41:a0:2f:3d:
ad:d6:9e:0a:33:96:fc:19:24:b6:2e:e0:ac:06:bf:44:95:0c:
ab:ce:a1:07:fa:fa:f8:28:bf:66:85:1c:65:aa:c7:32:45:32:
d6:dd:8e:6a:6c:49:bb:4c:d6:3a:3e:1d:a8:f4:83:68:c0:36:
48:6a:29:e6:03:25:67:fb:e5:6b:0d:38:68:8b:69:16:e4:d9:
dd:12:73:bb:01:2e:5b:cb:81:c9:73:5c:96:c3:81:bf:1e:f0:
4d:06:ae:c8:9a:a0:14:04:3a:10:0f:d2:66:25:e4:d9:a9:d4:
77:bd:af:ec:01:46:8d:35:74:15:59:42:b6:c1:29:86:dc:b4:
45:46:53:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:48 2024 by rpki-client on console-ams.rpki-client.org