Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39312e3233302e3131302e302f32342d3332203d3e203531313637.roa
File: 39312e3233302e3131302e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: sj5YTbo1DGoHknPMRUOgqdo0AxrRZRxXejaVmP60phc=
Subject key identifier: 00:56:7C:EC:0D:EC:21:9D:87:0A:7B:38:57:01:DB:90:1C:CF:2B:CB
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 37F1D187A69224AD8637A2916DD5CA7B55D0F2CE
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39312e3233302e3131302e302f32342d3332203d3e203531313637.roa
Signing time: Wed 28 Aug 2024 14:04:45 +0000
ROA not before: Wed 28 Aug 2024 13:59:45 +0000
ROA not after: Wed 27 Aug 2025 14:04:45 +0000
asID: 51167
IP address blocks: 91.230.110.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:f1:d1:87:a6:92:24:ad:86:37:a2:91:6d:d5:ca:7b:55:d0:f2:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Aug 28 13:59:45 2024 GMT
Not After : Aug 27 14:04:45 2025 GMT
Subject: CN=00567CEC0DEC219D870A7B385701DB901CCF2BCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1d:d5:d6:5c:a3:e7:56:f2:b8:29:f6:4d:40:
bf:48:e3:9b:91:ac:a7:d2:3c:de:be:90:00:c9:ad:
b2:62:ef:61:39:b8:f7:6a:59:95:1a:3c:92:ea:34:
9c:0e:93:01:4b:ef:34:fd:24:f3:45:79:eb:db:0c:
d6:93:e9:17:b2:79:b5:b5:93:9b:96:ed:69:01:9f:
1c:c1:7d:05:8e:a9:19:83:be:ef:52:e9:47:b0:97:
c7:ea:ee:5e:b3:c6:24:9d:8a:6a:6a:5c:23:01:b8:
fa:c9:c5:13:18:99:01:55:75:9b:ad:00:93:db:f8:
52:ea:ec:65:88:b9:0a:a1:80:b6:66:47:5c:d5:22:
eb:50:f2:07:4e:c6:98:19:94:3a:25:8b:4d:03:5a:
65:10:65:20:c8:ba:b6:e5:a9:cf:5f:d2:94:ba:67:
2d:04:6f:d2:96:c5:39:8a:61:91:27:c5:2a:c0:55:
ba:c7:5f:74:1b:19:8c:3a:00:97:12:45:e0:e5:1a:
2f:10:5a:4b:c5:5e:03:88:81:40:c3:58:9a:31:49:
4a:3e:50:f4:42:95:5d:ac:4a:63:a3:ac:2a:92:f8:
89:a3:b8:d4:39:7b:ad:f6:8e:93:d1:7b:ed:70:3e:
93:62:da:b5:e4:4b:5c:0c:00:19:ac:80:2d:46:e7:
3f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:56:7C:EC:0D:EC:21:9D:87:0A:7B:38:57:01:DB:90:1C:CF:2B:CB
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39312e3233302e3131302e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.110.0/24
Signature Algorithm: sha256WithRSAEncryption
32:50:f7:44:a5:0a:30:0a:67:82:b8:f7:f0:28:76:f2:09:2c:
cf:fb:0d:6e:54:aa:d9:7c:53:fe:94:1e:09:14:da:21:78:71:
fe:c2:04:65:ba:0b:47:47:e0:b9:06:96:d7:ee:bb:4a:e8:98:
ab:f9:73:90:9b:cd:89:01:89:05:45:55:53:86:ca:1d:fc:13:
6f:e5:87:04:c8:b6:ee:ba:2e:d0:36:c6:26:5e:b8:12:c3:37:
4c:24:1c:17:a8:d9:e4:47:e0:6e:4b:67:8c:f3:39:25:94:5d:
f8:41:d9:3a:ef:d3:85:bb:0f:e5:69:3e:73:68:7f:c6:f1:07:
8b:82:23:fa:4c:ce:ef:be:82:7d:e5:18:cc:89:b5:22:e6:40:
e0:40:74:94:1e:1f:8c:fa:b2:30:37:4b:3e:f3:e5:6f:9d:70:
f5:4e:bc:7d:58:19:97:66:1f:78:74:c0:4b:c3:28:55:43:16:
45:a3:49:e5:be:02:1b:d9:c1:4a:99:ce:5b:e2:8a:b3:c5:c4:
67:d0:1f:2f:d9:5a:1b:2f:7a:09:5b:7a:74:24:cb:6a:78:33:
ce:b5:f8:00:1c:cd:b0:05:7e:c7:d9:e6:59:0a:74:15:0a:24:
f4:d4:c1:60:30:4f:db:a4:32:c8:48:37:80:18:4c:56:4e:b3:
66:4a:58:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org