Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138332e302f32342d3234203d3e20313336373837.roa
File: 38332e3133362e3138332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: E09dj+uC46pFsWMZ3BAieV/ZDbBsaUFbN6jMiEwyMYA=
Subject key identifier: B7:F7:50:93:BB:22:F5:C7:75:75:F6:C7:3F:FF:70:75:D5:E9:A6:C8
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 5ED21B62EA1423E30DB21710575EABA678AC55C2
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138332e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 20 Oct 2023 13:41:56 +0000
ROA not before: Fri 20 Oct 2023 13:36:56 +0000
ROA not after: Fri 18 Oct 2024 13:41:56 +0000
asID: 136787
IP address blocks: 83.136.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:d2:1b:62:ea:14:23:e3:0d:b2:17:10:57:5e:ab:a6:78:ac:55:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:56 2023 GMT
Not After : Oct 18 13:41:56 2024 GMT
Subject: CN=B7F75093BB22F5C77575F6C73FFF7075D5E9A6C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:1e:44:ca:eb:fe:a3:94:b3:59:f3:10:1b:be:
c4:6d:31:15:ea:0c:24:40:4c:77:64:51:39:af:e5:
6d:0e:54:66:db:b0:64:1b:e0:83:25:47:4e:b3:8a:
9d:62:c5:9e:53:b2:64:f2:bb:fb:a8:0a:8e:44:eb:
67:6f:64:cd:c8:cd:57:1a:b7:a8:26:ba:52:a0:23:
7f:29:0a:b5:14:e2:f4:f5:80:c4:ca:a2:09:1d:87:
81:f0:38:25:8a:18:86:77:b5:19:2f:15:4e:e7:03:
7d:1c:81:9f:69:de:35:90:77:4d:6e:62:67:05:4c:
f7:c1:89:96:51:72:35:14:30:32:88:a8:b7:25:2a:
20:43:11:7d:36:ea:2a:e4:b9:ae:2c:a3:ab:58:2b:
4c:01:f6:21:2d:32:ee:3a:b6:09:29:af:f9:0f:92:
5c:7b:45:c9:16:c9:e5:2e:4a:47:d7:0a:2b:f3:d1:
97:ec:3a:4c:39:62:0e:24:8e:6e:26:4b:f3:87:f1:
e8:7e:4e:47:94:60:24:7d:81:1b:d1:bb:c0:7f:1c:
4e:94:64:6e:6e:12:5c:35:9e:8f:9f:59:1d:94:8d:
b2:55:d0:e4:77:80:bb:34:be:be:5d:4b:a7:e4:a8:
f5:92:11:74:81:42:c9:ee:ae:44:af:66:f2:0a:24:
96:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:F7:50:93:BB:22:F5:C7:75:75:F6:C7:3F:FF:70:75:D5:E9:A6:C8
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.183.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:23:51:dc:52:2f:4d:de:ea:f8:bd:3f:df:f4:e8:d4:2d:cb:
a4:35:a5:2b:2d:bf:14:15:f0:32:9e:a3:57:32:3d:02:84:ea:
b9:4e:9d:ee:9c:9a:4d:28:ea:7f:8a:af:6a:42:22:c4:24:1c:
a3:f3:c7:d2:2a:5a:18:25:1d:6a:5d:ee:30:79:6d:82:09:09:
78:f1:44:3b:b7:d1:51:27:17:e6:68:b1:ea:3d:fc:3d:2b:e6:
93:90:21:f9:36:81:03:a2:4e:6f:a9:44:7e:8e:d7:7e:90:fe:
42:ac:ff:bc:1e:95:62:2f:84:66:96:62:eb:77:91:e6:30:4b:
03:43:88:3f:b0:10:4e:48:36:da:4b:7c:33:e8:70:2a:08:ba:
40:4f:0e:f8:12:b4:ec:69:12:1b:3e:40:cf:da:37:e8:2d:33:
86:89:c2:45:95:bc:38:7c:6d:0d:83:9a:48:56:df:be:4c:59:
d3:d6:03:9e:cf:95:29:34:c4:a6:51:fe:d8:59:fc:2e:60:ce:
d2:d7:18:1e:3e:cd:83:4a:a1:8c:35:3d:09:35:8d:cd:08:17:
63:12:9f:c3:7d:df:a2:74:50:d6:ca:30:56:e7:19:6e:ed:98:
02:dc:6f:10:de:97:5a:00:0b:c5:7f:18:87:f9:54:1c:f6:58:
b3:c2:b5:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:32:59 2024 by rpki-client on console-ams.rpki-client.org