Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39322e3131382e34382e302f32342d3234203d3e20313336373837.roa
File: 39322e3131382e34382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 4hd4kj5YSqlG23wRaOYjbOdaMO2vpxVIMv67IsKsYtA=
Subject key identifier: 12:19:A3:50:7D:33:98:98:0E:08:A8:CB:B0:F0:40:5D:EE:70:7D:B0
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1C30EC7D6CBA65C927C2229453E546FA864AA004
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39322e3131382e34382e302f32342d3234203d3e20313336373837.roa
Signing time: Sat 02 Mar 2024 21:54:25 +0000
ROA not before: Sat 02 Mar 2024 21:49:25 +0000
ROA not after: Sat 01 Mar 2025 21:54:25 +0000
asID: 136787
IP address blocks: 92.118.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:30:ec:7d:6c:ba:65:c9:27:c2:22:94:53:e5:46:fa:86:4a:a0:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Mar 2 21:49:25 2024 GMT
Not After : Mar 1 21:54:25 2025 GMT
Subject: CN=1219A3507D3398980E08A8CBB0F0405DEE707DB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:03:2b:d6:cb:63:75:96:b9:b8:0d:58:61:42:
08:0c:d3:76:20:70:da:49:46:69:b2:51:ad:d6:3a:
88:99:42:09:55:94:ed:2b:11:6f:ad:d0:18:d8:d9:
2b:78:8d:63:22:d0:a4:a6:8f:cd:36:71:ce:fa:55:
0f:21:3f:fb:5e:06:39:16:58:bd:4a:e0:b4:bd:96:
d0:bd:93:4c:4f:76:45:ea:42:b2:9a:d8:ea:ff:85:
a4:d9:b3:2c:e0:b9:96:32:8b:60:f6:d0:c5:e7:f4:
fd:20:7a:d7:22:ce:32:dd:fc:a9:d9:9f:f9:11:12:
89:12:f4:86:dc:1b:82:ff:45:ee:c7:76:32:12:29:
a8:a4:0f:6a:8b:4a:69:e6:8e:72:f3:e3:2e:32:1b:
ad:d7:23:e4:34:ed:23:17:4e:16:4c:58:ed:b8:2a:
51:dc:4a:19:95:66:4f:b7:64:57:0d:7f:cf:a4:a8:
c0:4c:1c:7a:37:c7:c8:1c:d1:19:cd:10:99:c3:74:
99:67:fe:fe:b5:4c:b9:72:b6:97:de:c5:53:74:47:
c4:3d:d3:a7:62:61:cf:23:ee:10:8e:f2:b8:37:0c:
ca:80:bb:7d:19:47:88:8d:45:2b:8b:3e:20:39:f8:
35:2d:43:82:7c:f6:a2:04:4e:70:d8:f9:c8:54:b1:
6c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:19:A3:50:7D:33:98:98:0E:08:A8:CB:B0:F0:40:5D:EE:70:7D:B0
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39322e3131382e34382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.48.0/24
Signature Algorithm: sha256WithRSAEncryption
33:7e:7e:74:8c:ba:a3:ba:40:64:88:52:54:ea:6f:e3:30:8a:
26:f1:d2:1f:4e:9b:ea:6e:be:2c:b0:0f:07:fa:1d:4b:20:e6:
07:af:92:9a:b9:e8:6f:fe:bc:88:66:a1:20:6d:f2:52:78:1f:
24:0c:3b:b8:b1:d8:a6:4a:1e:60:40:03:7d:0c:74:4f:bb:87:
78:a4:f4:37:f2:b4:0c:2b:5e:cb:4a:2a:d8:fd:1a:71:37:20:
2f:13:5b:a7:ab:c8:72:1d:ff:f4:c3:81:47:97:14:ba:6f:68:
7d:71:1e:b7:b5:bc:0c:f6:52:6a:b5:1d:c9:43:e4:54:64:87:
dc:67:2a:6b:1b:05:fe:65:a2:03:82:e5:ea:04:5f:90:7e:f7:
ec:61:0b:bc:a6:ba:16:ce:61:e7:ac:95:ec:7a:3b:c2:ec:9c:
2c:6e:d6:10:ff:45:2a:3c:24:7a:cf:dd:44:54:22:33:e1:4d:
00:d9:38:bf:d2:e0:19:cf:57:7c:e6:5c:74:ba:c6:2e:32:8b:
7d:e3:d7:7b:2d:db:47:c9:c1:9f:c7:b2:9e:d4:3b:87:78:c7:
a1:b8:3b:2b:51:06:1b:9a:e7:e0:1d:20:63:83:c8:7a:e4:80:
6c:9f:82:7a:31:28:b0:51:55:90:7b:52:64:88:7a:c1:4d:88:
10:7e:ad:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 21:49:16 2024 by rpki-client on console-ams.rpki-client.org