Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138312e302f32342d3234203d3e203230383630.roa
File: 38332e3133362e3138312e302f32342d3234203d3e203230383630.roa (raw, json)
Hash identifier: oqEWi5Eg3N1HYok6Ju8eSINEtiaq30bMJQNt9xt52q8=
Subject key identifier: 07:27:E1:95:2E:75:4B:55:40:35:B5:4C:0A:53:31:0C:CF:FA:4C:62
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 2E1DDE20777FCFF4269A14343760BA6F10B64818
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138312e302f32342d3234203d3e203230383630.roa
Signing time: Mon 27 Jan 2025 19:45:32 +0000
ROA not before: Mon 27 Jan 2025 19:40:32 +0000
ROA not after: Mon 26 Jan 2026 19:45:32 +0000
asID: 20860
IP address blocks: 83.136.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 10:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:1d:de:20:77:7f:cf:f4:26:9a:14:34:37:60:ba:6f:10:b6:48:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jan 27 19:40:32 2025 GMT
Not After : Jan 26 19:45:32 2026 GMT
Subject: CN=0727E1952E754B554035B54C0A53310CCFFA4C62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:4c:98:e6:48:03:2e:3b:18:39:94:90:c8:b8:
e0:a0:b1:30:ae:9d:68:b9:b3:91:90:ed:5d:4e:f5:
23:23:bf:04:c7:75:16:bf:03:78:2f:f7:0c:ac:51:
ca:3e:2c:ec:e3:d2:71:b3:85:83:49:48:be:ea:27:
63:ee:0c:0f:2a:29:bd:45:2e:f1:6f:1f:38:f2:2c:
e9:2b:4e:24:00:1d:7d:ab:97:15:57:8f:4d:78:6a:
89:6e:dc:a8:78:6a:8a:71:08:83:5d:43:2c:5d:65:
11:ac:28:a2:09:b4:e3:57:05:cd:65:9d:e0:dd:4b:
63:18:6f:61:6c:d5:af:27:e7:5d:d5:46:60:bd:e2:
ef:d5:8a:8c:58:e8:db:8d:83:5c:36:0f:70:6e:62:
c9:35:31:f7:15:8a:12:51:e7:79:4c:d3:12:29:b9:
0a:b2:8f:bf:ba:02:bc:02:0f:ea:9d:ce:f4:5f:0c:
b5:5a:bf:fd:37:55:e6:c7:c0:6c:1f:68:05:0f:52:
80:f1:70:73:2b:c4:05:c6:6c:9e:59:64:5c:85:1a:
7b:b5:f8:3b:0e:b3:be:dc:2e:e5:08:dd:91:5c:b7:
22:16:91:3c:4e:d1:3d:6c:33:8a:2b:88:92:28:63:
13:d4:94:e2:0f:4d:0c:96:a3:bf:88:d0:b6:83:aa:
5c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:27:E1:95:2E:75:4B:55:40:35:B5:4C:0A:53:31:0C:CF:FA:4C:62
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138312e302f32342d3234203d3e203230383630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.181.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:68:d0:85:c2:d3:66:d3:7a:6c:f1:9e:ff:87:02:51:a9:79:
31:05:3c:46:bd:b9:73:4b:a7:8a:49:2b:46:7e:20:55:fc:1d:
e8:b1:94:93:00:d9:14:20:3f:f4:0c:9c:e8:3c:17:de:57:5a:
18:f6:42:79:4d:d8:1e:38:77:38:0c:1d:2a:55:d4:11:5e:bc:
1c:7f:59:60:f2:b6:34:ec:81:e8:36:6a:f8:02:9f:10:d6:89:
85:65:e2:65:ae:de:f6:57:dc:3a:ae:44:f9:b6:35:55:4a:d7:
2e:7c:8c:a7:d4:34:5b:72:fa:b7:a5:63:e1:ca:b2:fc:0a:44:
a6:0a:51:17:99:8a:f9:bb:d5:eb:8a:63:51:0b:08:84:87:8c:
82:db:01:59:2e:1e:37:43:3b:6d:bd:ee:f5:b7:b2:9a:8a:eb:
8f:21:1e:e0:a5:d9:07:d7:2c:50:74:ba:f9:2d:d7:48:e9:43:
c1:f5:3a:63:31:a5:31:5e:26:0b:d0:9f:9d:24:76:89:00:be:
49:23:fc:77:4f:dd:a7:19:ae:24:7f:2b:ed:79:c2:42:4d:38:
25:1a:0f:a9:62:d5:20:f7:1c:3a:0c:43:8d:8a:1f:39:bb:af:
55:61:50:fe:7a:d0:4c:c7:ee:82:d0:47:cb:b4:c4:da:d4:ab:
6d:63:ae:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:02:06 2025 by rpki-client