Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3233372e302f32342d3234203d3e20313336373837.roa
File: 38352e3139302e3233372e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 8jDND8+yiZnDM5lxvMHQ1eWyc1w7zkISIVpHpN4HQEE=
Subject key identifier: 7A:8A:7D:EA:F9:58:73:52:F8:E2:05:E0:DA:9B:85:74:03:9B:3B:D7
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 5F2045EE16295256CA1532307EE5FAB1D7A8808C
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3233372e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 26 Nov 2023 19:48:54 +0000
ROA not before: Sun 26 Nov 2023 19:43:54 +0000
ROA not after: Sun 24 Nov 2024 19:48:54 +0000
asID: 136787
IP address blocks: 85.190.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:20:45:ee:16:29:52:56:ca:15:32:30:7e:e5:fa:b1:d7:a8:80:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Nov 26 19:43:54 2023 GMT
Not After : Nov 24 19:48:54 2024 GMT
Subject: CN=7A8A7DEAF9587352F8E205E0DA9B8574039B3BD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1f:6a:21:ce:19:6e:3e:d9:77:67:2c:6c:a1:
3d:59:b9:c0:bd:1d:00:fd:b0:8c:c3:77:cc:fa:f5:
24:73:9b:0b:27:2c:f7:62:a8:40:a1:c7:1a:1b:5d:
ac:8e:08:bf:ea:d9:7d:5e:1f:d6:f9:fb:fb:8d:54:
8c:06:ef:1b:3e:df:fd:6f:44:26:51:57:96:92:73:
ac:1b:a8:db:65:c8:16:3e:17:c9:65:bf:fb:56:c7:
bf:34:6a:ce:ca:ad:e4:c6:69:d7:df:1a:47:c9:c9:
13:d9:99:33:8b:c6:46:62:b1:e5:78:63:3d:40:0e:
07:6e:0c:e3:e9:87:03:35:28:35:0d:46:0c:29:48:
a9:1d:2c:ab:be:53:79:47:51:77:a0:f4:06:fb:02:
86:8c:24:b3:a1:c0:df:47:a4:cf:4c:b3:e3:49:d4:
31:c9:ca:81:83:17:ae:09:6b:05:f4:6b:ea:64:a0:
7d:cd:7e:4a:e7:af:37:e9:d4:e9:5c:4a:f5:1d:bd:
9c:e8:28:8c:3f:ba:69:50:5f:23:9b:1b:15:2d:d1:
aa:30:df:46:d0:2c:92:a2:04:5d:15:0c:d5:1b:c7:
8c:3b:c9:0f:28:f8:92:50:c2:a0:7b:c5:37:35:9d:
01:7b:03:c9:99:71:68:05:62:8e:5d:dc:96:56:04:
34:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:8A:7D:EA:F9:58:73:52:F8:E2:05:E0:DA:9B:85:74:03:9B:3B:D7
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3233372e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.190.237.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:7b:72:43:1a:69:84:43:7a:cf:af:cb:69:bd:f1:25:0e:a7:
4a:c6:d2:26:a7:14:ea:8e:24:ea:30:52:fb:42:ed:da:81:6e:
7d:35:2a:ec:d9:a8:56:c9:7c:14:eb:9d:b7:8c:06:b2:3f:f5:
8b:0c:00:79:a8:c5:c5:43:42:ed:4c:5c:ad:2d:c6:db:e2:76:
9b:9a:4c:6c:1a:3c:24:53:21:63:a4:bb:05:0a:ec:2f:90:7b:
82:59:93:80:7a:10:6c:4c:b7:1a:39:9d:52:2a:f5:de:67:bd:
43:e3:d3:c4:b6:32:dd:02:8e:76:5d:2b:59:7e:b1:c4:2e:f8:
53:28:58:8f:ec:58:ec:94:fa:c4:75:d4:d7:ca:08:7f:3f:08:
49:43:a8:a8:98:02:33:0f:62:ea:3c:f9:57:d7:d0:6c:6a:6c:
23:91:0b:0e:99:0e:9a:47:e5:9b:d7:10:3a:5c:f5:a7:b2:fd:
3f:e8:d1:99:de:c0:14:eb:fc:05:33:aa:7c:8d:b1:56:ec:83:
2c:a5:d1:6d:60:cf:5d:d1:d2:47:fb:4e:36:60:d0:f2:01:e7:
df:7e:ee:9c:15:0b:fa:4a:eb:b0:d1:44:82:8e:00:94:10:c9:
e2:1b:65:f2:90:c0:a7:70:2d:26:c1:05:fa:75:28:07:79:c1:
22:f5:71:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:32:59 2024 by rpki-client on console-ams.rpki-client.org