Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138312e302f32342d3234203d3e203230383630.roa
File: 38332e3133362e3138312e302f32342d3234203d3e203230383630.roa (raw, json)
Hash identifier: CqUQ8/m9c7zyDFo8YiQvgHmCPngBgJsxC5HRejK5uEg=
Subject key identifier: 54:23:7A:FD:C6:24:DD:C0:B6:38:9F:06:8F:10:79:68:36:13:A1:54
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6984E26EA111C6ACCA013E261226C7590655EAF6
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138312e302f32342d3234203d3e203230383630.roa
Signing time: Mon 26 Feb 2024 18:58:08 +0000
ROA not before: Mon 26 Feb 2024 18:53:08 +0000
ROA not after: Mon 24 Feb 2025 18:58:08 +0000
asID: 20860
IP address blocks: 83.136.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 02:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:84:e2:6e:a1:11:c6:ac:ca:01:3e:26:12:26:c7:59:06:55:ea:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 26 18:53:08 2024 GMT
Not After : Feb 24 18:58:08 2025 GMT
Subject: CN=54237AFDC624DDC0B6389F068F1079683613A154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:44:7a:95:c2:42:81:0c:4e:3c:d4:b5:6b:94:
32:e7:56:c4:d0:ec:44:6a:b9:88:c8:fb:3d:45:d0:
2b:28:d7:83:22:c9:80:ff:7f:d2:65:7e:6a:d6:ee:
87:e7:83:d3:f4:1d:a3:21:a3:55:92:5f:e4:58:80:
8c:3c:1e:fe:83:07:f9:99:7c:72:5f:7c:44:e4:18:
29:a3:1a:a2:f0:30:42:fd:9b:ea:76:8c:fd:1a:2c:
bc:68:48:e5:43:1c:e9:0a:61:67:b1:ea:0f:18:1b:
71:d9:2c:eb:bb:6d:7c:61:56:60:43:70:ed:7a:6a:
fb:80:15:a4:47:5e:e4:5d:75:8a:c2:54:13:d0:9d:
23:4e:6d:d8:fc:1f:20:dd:bd:d0:87:d8:d9:94:13:
fa:49:8e:aa:8a:bd:a1:0c:96:2b:16:02:09:30:a5:
bb:18:87:15:16:af:8f:c8:7a:63:db:33:b1:7e:b5:
74:85:2d:bf:92:0c:27:5a:5a:cc:2e:71:eb:b7:da:
e2:45:ce:c6:06:92:1e:85:b6:66:33:c0:cc:69:a2:
38:f8:88:bc:2b:e8:07:9b:3d:bb:8c:ad:8e:28:51:
d1:05:60:82:b9:d2:2d:74:2d:c1:4a:54:86:1e:53:
3f:f3:ba:7e:54:f0:c8:a1:31:a6:23:d5:ed:31:37:
f2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:23:7A:FD:C6:24:DD:C0:B6:38:9F:06:8F:10:79:68:36:13:A1:54
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138312e302f32342d3234203d3e203230383630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.181.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:e7:1c:5c:9a:c0:c4:59:de:58:49:ec:29:93:eb:7f:98:4b:
c1:db:86:d7:36:03:2b:28:d0:75:45:9b:f8:ab:f4:30:67:31:
95:56:56:c8:c5:5e:c8:f9:29:1f:f3:9d:97:5d:92:cf:e3:35:
3a:7f:ba:d8:cb:78:c6:dc:93:bb:46:2b:b0:9d:ba:35:12:18:
1c:20:f9:95:3c:1a:81:27:03:9c:da:79:8d:4f:b1:22:57:26:
ce:f0:e7:3b:19:50:50:d0:3c:52:34:c0:33:c7:f6:d0:00:b6:
46:43:a7:02:e1:ca:16:e0:6d:27:6e:d2:79:52:06:33:77:d7:
2a:a0:7e:42:43:35:d4:1d:13:21:f5:de:01:0f:0b:b3:a8:ce:
78:e0:ad:a3:17:09:ec:7e:d7:76:c0:9a:8e:bb:ad:87:b7:3c:
78:eb:56:77:25:cc:eb:a9:c2:f2:ec:53:42:ca:bd:7e:d7:e2:
35:de:e8:8d:ac:2a:21:5e:ba:f3:f8:21:e7:5e:33:b5:7e:bd:
6b:eb:9a:19:1e:20:cb:34:da:57:34:b6:13:95:3d:1a:f6:a2:
e5:0a:2e:16:c4:50:da:fa:89:0c:e9:80:ff:c9:e2:6b:44:a0:
d5:ac:da:b7:2e:40:d1:c9:c2:4d:92:02:81:6a:5d:d5:e5:2f:
3a:54:bb:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 12:05:32 2024 by rpki-client on console-ams.rpki-client.org