Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39342e3134302e31312e302f32342d3332203d3e20313336373837.roa
File: 39342e3134302e31312e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: xy/mN1vqmLEPyb7zBH8A0AUlETTaQlwBqutys5RMhko=
Subject key identifier: 82:F0:42:AF:69:4F:32:CA:A9:07:0B:B9:E2:DA:59:4F:82:E4:C7:09
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 69B88ED57C969752B56B3A6201776440D7200B86
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39342e3134302e31312e302f32342d3332203d3e20313336373837.roa
Signing time: Mon 26 Feb 2024 08:53:20 +0000
ROA not before: Mon 26 Feb 2024 08:48:20 +0000
ROA not after: Mon 24 Feb 2025 08:53:20 +0000
asID: 136787
IP address blocks: 94.140.11.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:b8:8e:d5:7c:96:97:52:b5:6b:3a:62:01:77:64:40:d7:20:0b:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 26 08:48:20 2024 GMT
Not After : Feb 24 08:53:20 2025 GMT
Subject: CN=82F042AF694F32CAA9070BB9E2DA594F82E4C709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4f:2c:c7:1a:15:66:d0:7b:60:ea:ce:30:74:
87:69:50:d7:f7:65:bb:f4:0f:44:52:1e:e4:ab:85:
f2:b6:fd:1d:c2:76:32:db:45:e3:9f:70:96:35:5f:
30:9c:3c:83:c9:cd:e3:a2:49:13:cc:85:9d:24:75:
2b:dd:a7:94:01:2c:94:0c:86:1c:72:09:a4:11:98:
68:0b:0a:d1:92:f7:f0:02:56:d6:66:12:aa:6f:97:
de:da:af:fe:b3:84:8d:7f:ca:0d:ae:ce:fc:e5:f8:
06:a6:b4:ca:7c:48:d6:da:5b:12:ba:f5:d0:56:06:
ec:79:3b:e7:f6:f6:92:42:7f:2a:50:47:e3:ea:6c:
56:49:8d:30:a7:75:f7:24:30:29:44:b5:d6:f8:ed:
16:42:a7:d6:ca:0b:cc:cd:ec:a4:36:38:66:26:47:
04:cb:ad:51:8b:c2:3b:82:ae:75:29:ec:2d:76:09:
96:9d:92:0c:ff:dc:d8:54:92:95:35:60:8d:df:48:
78:a4:8a:5f:94:f4:40:40:e1:36:da:3f:6f:c9:c2:
f7:d4:b8:b6:26:27:f1:50:82:d7:3b:5f:62:e0:28:
5e:de:01:d0:48:d2:ab:2a:2b:bc:ec:2d:cd:0a:c9:
4d:07:b8:45:30:b7:ca:bc:08:8b:25:0d:33:dd:34:
fc:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:F0:42:AF:69:4F:32:CA:A9:07:0B:B9:E2:DA:59:4F:82:E4:C7:09
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39342e3134302e31312e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.140.11.0/24
Signature Algorithm: sha256WithRSAEncryption
80:e6:fe:d6:3d:b5:1a:62:d1:86:5d:32:c4:28:c0:b4:ac:f6:
10:19:1b:39:66:d2:34:01:fb:e8:bd:fb:fe:7c:94:d3:b3:da:
4f:22:c4:23:9b:7f:b4:a5:68:20:c9:be:6f:e7:e6:fd:c6:55:
cd:65:1b:1f:51:b4:10:d8:1b:a0:31:9c:07:54:4b:4d:8f:b4:
e4:18:ad:da:bb:d9:80:0f:8e:35:74:a7:2b:6e:d1:2a:a3:3e:
c3:c2:8b:fa:5a:8c:da:d2:a8:96:a7:83:bd:c9:d7:c5:3c:5a:
d6:4a:b8:b1:43:8d:8c:55:0e:40:78:b3:10:5f:62:5a:a5:a0:
d2:1d:d3:b8:4c:84:5b:aa:11:aa:00:3b:3e:70:7e:bb:60:a8:
02:6f:ed:99:df:c0:d8:97:8c:ba:42:2d:3e:7e:0e:43:91:5f:
db:a3:5c:44:01:0b:9a:99:9c:e9:99:89:bc:7f:bf:3e:da:b8:
7e:de:01:c2:f0:b0:88:9f:3d:4d:e5:78:0a:fb:17:41:b3:93:
6e:9c:f2:49:26:e6:48:cf:19:82:53:24:d2:51:cc:4a:08:2b:
5c:98:88:5a:89:e1:18:28:48:67:64:77:4f:b3:35:3d:0d:d6:
2d:98:d9:3f:2b:97:80:48:2d:32:92:06:c9:ce:6e:cb:66:36:
bb:b6:c7:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 21:04:28 2024 by rpki-client on console-fra.rpki-client.org