Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138322e302f32342d3234203d3e20313431303339.roa
File: 38332e3133362e3138322e302f32342d3234203d3e20313431303339.roa (raw, json)
Hash identifier: k7PuhJZvCkQ6tE4jMzI9xryI8Y44Sh9XBxxlGDR7Ajk=
Subject key identifier: FB:DA:30:0A:50:18:7A:09:F6:89:D1:E4:24:C3:9E:F4:9D:7D:72:31
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6A030F86AD0BBD7B7DA0D567BF1542BC0642D039
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138322e302f32342d3234203d3e20313431303339.roa
Signing time: Fri 20 Oct 2023 13:41:59 +0000
ROA not before: Fri 20 Oct 2023 13:36:59 +0000
ROA not after: Fri 18 Oct 2024 13:41:59 +0000
asID: 141039
IP address blocks: 83.136.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:03:0f:86:ad:0b:bd:7b:7d:a0:d5:67:bf:15:42:bc:06:42:d0:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:59 2023 GMT
Not After : Oct 18 13:41:59 2024 GMT
Subject: CN=FBDA300A50187A09F689D1E424C39EF49D7D7231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:00:fc:af:7f:34:ee:5e:3a:40:9b:c5:4c:23:
43:21:d6:bf:21:45:7b:7c:23:4a:99:d0:c6:16:b9:
36:7a:5a:2e:f0:c0:07:3b:d5:d4:29:bb:83:8e:99:
d8:45:e2:83:a8:aa:8f:d3:f2:ce:b0:f6:83:0e:0d:
e7:9c:44:da:02:23:28:ed:a8:cf:5e:7a:9e:a7:a7:
c2:d7:ba:06:9c:36:47:05:33:60:45:cf:68:de:9f:
33:c1:2b:96:8d:a0:80:8b:fe:0b:a4:3b:86:36:c6:
6f:37:3e:cd:41:36:31:68:43:cf:18:d5:fd:16:6f:
89:b9:45:70:f5:f7:a2:b4:21:df:b8:62:c2:60:78:
ec:10:52:19:fd:60:0e:99:89:62:a1:db:2e:a3:b2:
6b:1c:74:6d:b5:ad:82:ab:4e:84:63:39:a5:73:4a:
84:e7:f6:b8:50:48:11:07:fa:56:49:d9:7e:6e:9e:
07:40:12:b4:c1:37:6d:94:2a:ab:b4:56:e9:74:41:
6b:ae:bc:92:36:00:ce:10:3a:fb:b1:2f:4e:dc:ba:
2b:94:c4:42:06:de:65:46:6c:3d:93:e8:ba:8a:53:
38:15:88:de:2c:49:ae:64:ef:e6:c7:3f:ca:ec:45:
5f:ee:7f:ea:b2:26:9b:f2:54:ba:e0:aa:5b:a7:5a:
e5:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:DA:30:0A:50:18:7A:09:F6:89:D1:E4:24:C3:9E:F4:9D:7D:72:31
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138322e302f32342d3234203d3e20313431303339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.182.0/24
Signature Algorithm: sha256WithRSAEncryption
40:e2:14:e9:fc:d4:4d:70:91:5c:a8:2f:b5:33:b5:c4:d0:1b:
1b:2b:cf:70:0e:f7:7b:37:23:05:3a:90:0a:d2:c2:af:a8:8b:
53:c0:aa:e6:3f:a8:bd:69:50:4b:2f:8a:9f:52:cf:82:5e:d4:
96:a0:53:11:52:9c:2b:6d:69:dd:fe:67:e7:85:c8:a4:98:f7:
bf:c5:e4:df:d5:34:1f:1c:d0:e8:92:c9:da:07:5e:6c:15:8f:
ca:57:59:af:9b:a8:85:06:db:5e:bd:5f:a1:dd:c6:b7:06:04:
fa:4b:7d:03:c7:1e:8e:66:df:0f:7a:52:91:eb:bb:91:ec:8d:
62:09:2f:00:f0:ec:c5:9c:00:86:6a:ef:b1:d1:0a:03:ee:b3:
6d:ea:43:bb:e5:f9:14:d1:ed:d0:c9:24:a1:8d:30:7c:a6:53:
34:bb:5a:83:e0:b0:d7:e2:d2:84:35:6d:79:46:fa:c5:c4:50:
b7:46:9d:6c:4a:35:bb:aa:49:8c:b6:3e:dc:f8:f2:ce:38:ae:
55:fc:0b:12:d6:00:ce:ed:1d:b7:ae:ca:ea:2a:be:be:6a:64:
b0:d1:6b:bd:09:f3:85:8d:03:d3:f6:07:8f:b6:1f:99:f5:06:
96:95:28:6c:a0:75:1e:01:3a:e2:5f:cf:89:30:6e:87:bf:17:
3e:33:f8:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 09:23:50 2024 by rpki-client on console-ams.rpki-client.org