Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e33312e3232342e302f32312d3231203d3e203437353833.roa
File: 38352e33312e3232342e302f32312d3231203d3e203437353833.roa (raw, json)
Hash identifier: UJQaDhxCAGc1xwjYl4zWtPuVuaexzq2x4qOzG3S88wk=
Subject key identifier: 36:31:9A:19:2B:F8:2B:DB:04:E2:BA:FE:EC:B5:ED:56:6B:DD:FA:63
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1FCB14EA8E0259A5C2AFADA51D10FE3C5BD36684
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e33312e3232342e302f32312d3231203d3e203437353833.roa
Signing time: Tue 08 Aug 2023 07:36:16 +0000
ROA not before: Tue 08 Aug 2023 07:31:16 +0000
ROA not after: Tue 06 Aug 2024 07:36:16 +0000
asID: 47583
IP address blocks: 85.31.224.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 14:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:cb:14:ea:8e:02:59:a5:c2:af:ad:a5:1d:10:fe:3c:5b:d3:66:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Aug 8 07:31:16 2023 GMT
Not After : Aug 6 07:36:16 2024 GMT
Subject: CN=36319A192BF82BDB04E2BAFEECB5ED566BDDFA63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:15:83:87:13:bb:a2:69:ae:70:51:e8:98:5f:
0b:1c:16:6f:b1:e7:52:2e:52:80:fb:17:c0:9a:4c:
b7:78:a5:c6:6b:c3:7f:93:bb:cb:83:8d:cc:2c:53:
21:b0:75:ef:75:fb:47:22:b1:52:dc:b9:2d:02:8b:
1f:90:ce:5d:51:f6:a7:84:ba:e8:49:ce:92:4c:11:
2f:2c:61:bc:2a:2a:4e:65:4e:ef:f6:44:ea:e8:fd:
8b:9e:f1:04:cc:b4:5b:01:6d:05:23:19:45:0f:66:
ba:ad:bf:8d:25:37:ea:14:2f:3b:5d:d0:2f:66:28:
1f:71:b6:18:f1:b1:c8:27:56:32:4e:a3:7e:3f:83:
c9:a1:d3:3c:d7:f1:16:6a:71:cf:10:23:05:6e:20:
23:79:39:76:78:bd:b6:c6:35:22:43:58:4f:b3:eb:
32:1c:0f:1f:e4:17:d5:de:e8:4e:96:df:5a:69:e5:
71:3d:52:c7:06:ff:8a:04:e6:0b:05:d2:b2:42:1f:
32:89:f8:05:9f:f0:b1:47:91:c3:49:69:d8:f4:be:
80:ba:3d:54:80:a6:14:00:c8:50:f3:17:70:dd:2b:
09:b9:83:c0:55:6d:79:2d:b9:20:d4:11:98:40:2f:
59:e3:ab:be:63:0c:90:7e:39:17:3f:24:81:bf:fb:
b2:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:31:9A:19:2B:F8:2B:DB:04:E2:BA:FE:EC:B5:ED:56:6B:DD:FA:63
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e33312e3232342e302f32312d3231203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.31.224.0/21
Signature Algorithm: sha256WithRSAEncryption
3a:6e:68:ec:0e:39:ad:9c:d6:8b:0b:d8:c9:3b:ba:e2:89:30:
09:64:e7:d1:f7:59:03:09:bb:a6:dc:39:fa:46:e5:0a:1d:00:
2f:03:85:ed:25:8b:27:dc:7f:99:08:1d:7c:59:35:4b:c3:6f:
8c:90:5f:07:a9:e0:15:9a:73:f3:7b:95:d4:fc:3f:4f:89:b3:
ef:6f:85:4d:1c:34:7c:28:c4:02:11:20:92:d2:9a:c7:46:86:
a0:d3:98:8b:25:bb:b8:2a:a2:5e:1b:bc:64:86:a7:32:be:6f:
d9:68:f3:d6:ef:a2:61:ef:f6:b6:5d:b9:6c:8a:e9:18:2c:68:
13:89:3e:e0:f7:5d:22:02:28:e5:ab:5d:8d:04:95:65:d6:17:
99:89:92:cd:9e:3f:c6:51:b2:38:ce:ac:b8:98:17:fd:11:b4:
c9:2f:62:ff:f3:31:d4:33:69:e3:6f:e8:13:07:68:a6:a0:0e:
b4:e9:d1:ae:b8:a1:ae:e7:4f:1c:81:cb:49:11:f8:9e:b1:7e:
22:6d:1a:36:44:50:74:63:a6:53:e4:e9:de:54:ed:7e:33:a2:
22:57:b9:2b:67:63:00:28:41:d7:f0:d5:5e:27:a2:48:a7:6e:
a6:4c:5e:6a:24:e6:62:3a:3b:46:d1:2d:db:eb:2d:d6:79:d3:
78:33:78:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 23:31:25 2024 by rpki-client on console-ams.rpki-client.org