Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39342e3135362e3230372e302f32342d3234203d3e203330393637.roa
File: 39342e3135362e3230372e302f32342d3234203d3e203330393637.roa (raw, json)
Hash identifier: ug+YuKNmi7UOGLMcMjMqrP7bNKwYE9zz7cFHZfcnDLc=
Subject key identifier: CA:DB:73:D1:D4:9C:E3:B6:1E:DC:1E:A6:21:DE:B2:3F:B7:01:40:13
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 370E0D4ACAAAB990B5E9BF5534F93B73304B922E
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39342e3135362e3230372e302f32342d3234203d3e203330393637.roa
Signing time: Fri 20 Sep 2024 10:24:49 +0000
ROA not before: Fri 20 Sep 2024 10:19:49 +0000
ROA not after: Fri 19 Sep 2025 10:24:49 +0000
asID: 30967
IP address blocks: 94.156.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:0e:0d:4a:ca:aa:b9:90:b5:e9:bf:55:34:f9:3b:73:30:4b:92:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 20 10:19:49 2024 GMT
Not After : Sep 19 10:24:49 2025 GMT
Subject: CN=CADB73D1D49CE3B61EDC1EA621DEB23FB7014013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:21:15:7d:dd:4e:59:d0:30:07:77:f5:7d:bd:
f6:24:18:13:2f:36:57:0c:46:eb:f7:77:c9:94:9e:
a4:88:d9:9b:03:db:33:85:f5:e3:73:72:cc:f2:01:
ce:2a:27:f7:5f:09:09:00:ab:b7:a3:2a:45:03:f4:
f5:5f:5a:c7:d2:7f:53:e8:78:40:df:89:ae:0c:33:
58:03:7e:22:7a:fb:a5:f5:3e:c9:4b:bc:f3:5c:b1:
10:22:bd:49:c9:72:e4:7e:63:84:02:de:1d:06:e9:
ea:c2:a5:ed:ef:1c:ab:11:64:cf:9c:03:f2:49:6a:
cb:e7:65:61:fd:43:bb:86:e1:5b:13:71:66:c3:d0:
2c:71:0d:6d:47:50:60:dc:f5:5e:a9:6d:ee:b4:13:
23:fe:3b:ef:90:b8:1e:10:87:0d:97:8d:07:d3:01:
c5:bf:cc:4d:34:ad:32:f4:64:81:69:7e:d8:22:fa:
49:2f:42:53:ea:a7:91:f4:a9:8e:00:4e:34:f6:91:
07:ef:fd:e2:3a:2b:8e:6e:db:d4:10:f9:83:28:f5:
c9:b5:09:02:6d:69:be:b2:14:58:ee:e7:15:61:f8:
91:4f:9c:ca:4f:50:e5:57:dd:bb:75:74:60:1d:22:
14:fb:10:36:7c:72:e8:75:ba:41:db:c5:64:66:ef:
ef:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:DB:73:D1:D4:9C:E3:B6:1E:DC:1E:A6:21:DE:B2:3F:B7:01:40:13
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39342e3135362e3230372e302f32342d3234203d3e203330393637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.156.207.0/24
Signature Algorithm: sha256WithRSAEncryption
25:4a:89:05:25:55:44:2a:8c:39:ef:4e:53:45:94:24:52:56:
6c:a7:05:aa:11:a0:66:1d:d7:70:03:6b:22:15:ce:af:d1:a5:
2b:e5:24:57:7d:04:ff:3f:f0:ce:83:ee:c8:79:4c:33:bc:3c:
c8:b4:47:37:d1:39:63:bd:53:4f:a4:ea:db:99:cb:be:b2:ae:
e7:7d:81:a3:b6:10:c7:34:f9:4e:46:8c:2d:94:43:cb:e0:5b:
11:33:db:87:d5:f0:c3:4f:36:2c:78:08:18:67:c9:89:9b:20:
0b:35:bc:a7:ce:c5:c5:bb:a6:2a:ec:20:9b:55:6e:34:59:34:
7a:f4:7a:bc:cb:06:6d:0a:38:08:8e:a4:d9:f1:70:8e:1b:fb:
18:c0:14:7b:b6:ee:3e:91:da:a1:54:8a:1b:af:91:00:a9:7b:
bb:9b:2a:a5:05:10:f6:8e:b3:59:3a:a3:9e:11:46:d6:3e:84:
28:10:a2:b4:24:4f:55:13:29:a8:0b:98:a1:95:9a:db:b7:24:
77:8e:51:fb:70:57:5b:84:71:3a:aa:52:d7:a7:1e:37:b3:a5:
df:23:1b:f1:00:03:84:b1:bd:67:8c:94:94:55:3d:2c:c2:c1:
d6:e8:5a:c2:93:7a:27:d8:d5:26:90:f6:83:df:1f:b2:37:fe:
97:0c:7a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:29:16 2024 by rpki-client on console-ams.rpki-client.org