Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39312e3233302e3131312e302f32342d3332203d3e203531313637.roa
File: 39312e3233302e3131312e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: eTeABRpxw7rxO0MpUCcHVrP1PCyGAibfZlmRQi3L1yc=
Subject key identifier: 35:65:EC:D4:DB:D9:32:45:C3:69:47:9C:F5:EE:1B:55:24:EE:6B:42
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 78BC04D7E1B1E6B46FE76D3F82E0E75B92CCADBB
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39312e3233302e3131312e302f32342d3332203d3e203531313637.roa
Signing time: Wed 27 Sep 2023 13:40:12 +0000
ROA not before: Wed 27 Sep 2023 13:35:12 +0000
ROA not after: Wed 25 Sep 2024 13:40:12 +0000
asID: 51167
IP address blocks: 91.230.111.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:bc:04:d7:e1:b1:e6:b4:6f:e7:6d:3f:82:e0:e7:5b:92:cc:ad:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 27 13:35:12 2023 GMT
Not After : Sep 25 13:40:12 2024 GMT
Subject: CN=3565ECD4DBD93245C369479CF5EE1B5524EE6B42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d7:e5:b7:ad:ef:a9:23:0a:af:67:c4:8c:7d:
01:46:c4:ca:b9:6c:63:b6:c7:70:0c:49:38:da:63:
6a:7f:b4:f0:fa:4a:1d:45:3a:87:39:b0:79:4c:b6:
41:e8:e3:7b:5c:c3:18:23:1c:7f:39:d0:8e:c6:07:
9f:ec:58:83:4f:1e:22:01:61:3b:29:9b:90:5d:f9:
f7:f4:8b:01:24:c7:f2:e2:06:a8:ec:92:ec:b5:5c:
32:53:ec:0b:f1:b0:07:c8:31:6b:1a:57:af:8f:67:
aa:c8:37:25:4e:35:03:ae:0f:03:7d:d9:73:1e:a7:
ad:7b:02:2d:c3:9a:4a:92:d1:64:e2:2e:90:d0:13:
a7:85:49:76:7a:b9:60:fe:74:ed:47:cc:ae:00:34:
4b:54:32:04:93:04:21:2d:d3:4d:9e:ff:e8:37:4c:
b6:a1:85:93:60:9b:3f:67:52:42:cf:05:90:1b:6c:
15:f4:19:1c:8e:de:62:d2:62:f3:e4:31:15:2d:33:
57:95:38:25:4e:ab:71:16:7c:ea:b5:17:60:4d:14:
75:8c:6d:53:f5:f2:ab:bb:a8:67:d7:7c:d0:78:1d:
bc:73:99:61:31:97:b5:fe:ba:c1:20:b9:e5:e2:c8:
43:8a:b8:b9:4e:a2:6e:da:26:fd:43:71:17:1a:99:
93:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:65:EC:D4:DB:D9:32:45:C3:69:47:9C:F5:EE:1B:55:24:EE:6B:42
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39312e3233302e3131312e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.111.0/24
Signature Algorithm: sha256WithRSAEncryption
74:31:8d:63:81:bf:3d:dd:7e:7d:e3:9d:4e:79:93:01:b9:7c:
34:62:50:34:b8:90:23:af:56:38:4b:5e:c5:ee:7a:2c:3d:07:
f7:7a:d3:1e:f5:8f:e4:41:b9:51:70:89:6b:40:f5:ca:3d:25:
12:b2:a2:e8:e3:90:8a:6d:e1:fd:be:6d:07:d3:5d:6e:41:40:
aa:0c:e4:67:e1:09:5a:34:8d:78:6f:8f:7e:87:e7:a2:a7:b2:
73:8b:a4:75:77:51:9c:88:8c:09:af:5c:12:f2:62:96:e8:9f:
9c:fa:4a:a4:a5:7c:de:85:a0:92:6c:fd:4f:a3:cd:00:40:45:
e9:ab:21:37:81:5c:cc:ab:f8:c4:98:53:20:a4:1f:cb:42:b6:
9d:48:72:39:cc:e3:b8:36:0f:01:58:53:ad:d9:0a:f3:b8:db:
89:a4:cd:aa:12:de:cb:ec:3e:7f:ce:47:8a:1c:32:d5:70:16:
79:a6:1e:45:44:40:15:47:bd:52:5b:a8:8a:0f:7a:a8:d7:45:
f1:1b:4c:e5:0b:03:88:d3:64:50:1f:ce:bc:e3:66:a5:b9:e1:
ba:ef:49:dd:c6:75:62:c4:1b:ec:7d:2a:ef:9a:92:66:c0:93:
c6:95:9e:7d:64:53:82:59:e1:70:ca:be:3e:d7:5c:0e:1c:36:
de:0d:b0:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 08:01:46 2024 by rpki-client on console-fra.rpki-client.org