Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39342e3134302e392e302f32342d3332203d3e20313336373837.roa
File: 39342e3134302e392e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: VzQW6ngYJzQJnQWwpKE+oWVIUIT339JDHbH6Bqq8I/s=
Subject key identifier: D8:A3:E7:A0:01:5E:EC:6B:40:AC:A6:B9:61:53:30:30:90:C2:C9:34
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 41175FD74DF58127D1E6D398A7C662A82137598B
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39342e3134302e392e302f32342d3332203d3e20313336373837.roa
Signing time: Mon 26 Feb 2024 08:53:11 +0000
ROA not before: Mon 26 Feb 2024 08:48:11 +0000
ROA not after: Mon 24 Feb 2025 08:53:11 +0000
asID: 136787
IP address blocks: 94.140.9.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:17:5f:d7:4d:f5:81:27:d1:e6:d3:98:a7:c6:62:a8:21:37:59:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 26 08:48:11 2024 GMT
Not After : Feb 24 08:53:11 2025 GMT
Subject: CN=D8A3E7A0015EEC6B40ACA6B96153303090C2C934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:98:73:cb:47:3f:36:b2:b5:c8:ee:9d:d7:0d:
27:0a:10:2d:3f:71:58:d0:05:21:97:49:ab:ad:26:
93:d7:50:fa:f3:51:54:9f:d1:42:46:e9:4d:2b:b2:
3a:f7:1f:cd:da:d4:73:28:9e:f3:41:80:14:8e:8d:
9b:22:54:80:6a:7e:5d:49:29:b4:4e:a7:9a:cb:56:
e4:10:54:88:af:d0:53:d2:24:f8:e3:4a:9a:ec:9e:
89:56:db:e4:db:43:bd:6b:bd:c0:18:cd:09:89:8c:
45:9d:9c:bf:ba:5b:76:18:88:17:b5:51:e5:90:c8:
53:13:43:f9:77:cd:41:07:6f:70:45:ec:0e:ca:7c:
7f:69:de:0b:ff:31:b9:56:af:6d:18:bf:26:ea:83:
78:96:fd:33:dd:1e:a5:b3:60:1c:d4:fd:ec:95:93:
cb:6d:1b:8c:18:f9:89:6a:08:81:5a:34:ee:c9:df:
f6:a5:70:67:96:50:91:4f:8a:f2:e8:51:4f:78:4f:
0c:b1:ae:b9:b8:fc:e9:f6:48:1c:43:4b:c5:42:d2:
3a:93:cf:68:1f:43:57:d0:c9:0e:a6:7f:4d:00:53:
b9:60:72:88:e8:67:1b:e0:fa:b6:3b:8d:b1:79:2d:
dd:bb:d6:1e:1b:2b:23:5e:13:0a:36:11:fe:a7:fe:
3e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:A3:E7:A0:01:5E:EC:6B:40:AC:A6:B9:61:53:30:30:90:C2:C9:34
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39342e3134302e392e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.140.9.0/24
Signature Algorithm: sha256WithRSAEncryption
72:aa:c7:34:ed:bd:ae:a7:75:ba:e2:ca:c6:23:a2:7f:0b:62:
4e:78:8a:c8:12:fd:9e:cc:89:b8:52:84:86:f6:d3:e3:50:ad:
e6:a8:ac:66:f9:1c:42:db:1e:0c:76:3a:73:f5:60:08:a2:c9:
aa:89:fd:ad:47:0b:f4:a2:bf:e8:69:f1:b7:10:cf:1d:09:15:
91:b6:bb:db:48:8a:48:13:fa:a5:61:21:4c:6e:5a:3f:5d:d4:
4e:6b:9f:6e:69:28:7c:be:b4:6b:a5:03:38:2f:1b:c6:7b:d5:
ca:97:93:67:eb:18:c3:7b:e2:92:b4:e9:66:e0:73:5a:99:00:
e2:f4:3e:b3:e8:7b:fd:01:45:21:b5:d1:75:04:f2:a3:ef:f7:
52:06:c6:b8:b0:10:6d:88:d6:9e:f2:42:f2:89:97:2b:f8:91:
f1:c5:51:29:cf:5b:4d:70:71:29:df:7d:c3:f1:6e:df:93:82:
5d:7a:e7:a6:2b:4d:7c:de:98:ad:20:0d:04:37:5a:1f:99:db:
f3:04:89:a7:3e:87:5f:37:4d:7b:10:65:39:75:33:67:23:33:
07:9f:40:11:b0:f5:bf:ce:9d:b4:f4:fd:1a:0e:81:42:4a:af:
76:59:4c:7c:c2:7e:36:93:0e:d8:77:2a:8b:f6:0a:19:42:57:
fc:de:d9:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 21:49:16 2024 by rpki-client on console-ams.rpki-client.org