Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38342e33392e3135302e302f32342d3332203d3e203531313637.roa
File: 38342e33392e3135302e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: YqqWkDtQgEN9xxhEgnewTXjOfFLwRyolirwlQBB7f1c=
Subject key identifier: B9:0E:70:8A:32:44:D3:80:D9:E5:37:62:03:42:CA:0B:47:F9:5E:21
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 2D245BD4FFD55B5B762B1603C461C1E643CA92FB
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38342e33392e3135302e302f32342d3332203d3e203531313637.roa
Signing time: Mon 29 Jul 2024 13:04:26 +0000
ROA not before: Mon 29 Jul 2024 12:59:26 +0000
ROA not after: Mon 28 Jul 2025 13:04:26 +0000
asID: 51167
IP address blocks: 84.39.150.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:24:5b:d4:ff:d5:5b:5b:76:2b:16:03:c4:61:c1:e6:43:ca:92:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jul 29 12:59:26 2024 GMT
Not After : Jul 28 13:04:26 2025 GMT
Subject: CN=B90E708A3244D380D9E537620342CA0B47F95E21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f9:c2:15:db:54:fb:f6:88:ab:0c:ce:28:58:
dc:ae:1d:bf:cc:8c:36:9b:7a:b1:31:52:1b:8c:48:
38:58:88:77:ab:32:9a:d0:45:9e:f8:3b:64:56:39:
b9:44:8b:55:80:27:f3:47:e7:80:bf:4e:19:b9:54:
9f:51:27:c4:06:d9:ad:5e:d3:7a:14:7f:68:a3:c2:
2c:de:4d:1d:c4:dd:33:6a:6a:e3:f8:97:da:ab:43:
01:ab:94:1d:fe:a4:98:aa:dd:0a:71:c1:8e:d3:da:
77:82:83:9c:c6:45:b9:7c:45:3a:be:f4:9a:ed:f6:
3b:04:3c:fd:75:59:f7:75:78:a3:38:2d:01:68:39:
ea:9c:de:da:19:ca:8b:06:98:16:74:6b:a2:c5:09:
2e:97:8d:39:49:29:98:44:a0:df:25:7b:2f:21:ed:
66:83:a0:24:30:d7:c6:bd:4f:60:2f:eb:07:09:50:
8b:96:ba:2f:e2:b1:2c:51:3c:4a:63:e1:00:cb:21:
53:af:4c:f8:f4:2d:22:f7:54:e5:3d:22:65:c2:f6:
e3:f9:78:b6:38:9a:88:13:73:fd:fb:d8:f4:9f:1f:
19:b4:f7:d1:b7:18:9f:d3:97:2f:ab:f1:08:d7:93:
80:32:5c:f4:21:02:64:0f:32:b8:90:4d:5f:c6:a1:
82:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:0E:70:8A:32:44:D3:80:D9:E5:37:62:03:42:CA:0B:47:F9:5E:21
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38342e33392e3135302e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.39.150.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:74:f6:bd:6d:7d:a0:ce:9c:93:65:4a:3c:1f:41:26:88:ee:
13:6a:14:2f:5e:89:1c:24:aa:89:c7:b0:30:6b:ea:62:98:fa:
60:ca:0d:29:da:8a:99:54:4d:1f:90:de:d8:d7:20:2d:97:53:
b0:1f:81:a5:0c:ab:b4:dc:f1:44:25:22:a5:17:86:8b:f6:05:
1b:e9:27:5a:74:e8:21:1f:6d:46:39:fb:8c:c3:21:8b:5f:ad:
60:ff:9c:81:a9:fb:e2:1a:ae:b9:71:29:af:fa:4a:98:e1:af:
5b:bc:cb:55:1d:92:34:3a:a5:75:a4:7d:95:34:53:a5:7b:ea:
b5:2e:97:5c:dd:5d:30:44:de:42:b6:7a:a5:a7:01:11:af:0a:
2a:f2:72:4b:d8:a5:f1:a6:69:f5:58:36:85:d7:f1:eb:2a:b5:
ac:cc:0d:2f:e9:08:ca:4f:4c:34:54:0c:d7:e0:19:91:0c:9d:
9a:99:9b:c2:f0:d5:5b:6f:d6:e1:40:6d:39:3f:8f:e5:cf:85:
1e:dd:03:a4:5f:94:c3:16:2e:44:8e:dd:b2:31:04:38:eb:91:
60:e6:bb:f9:e0:47:44:a0:a0:bd:11:60:0d:dc:a8:3b:ef:ff:
82:08:8a:7b:c6:36:e8:12:5a:37:b5:2c:d6:9f:64:d9:db:f4:
ad:8e:f7:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:04 2024 by rpki-client on console-fra.rpki-client.org