Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138322e33322e302f32342d3234203d3e20313431303339.roa
File: 352e3138322e33322e302f32342d3234203d3e20313431303339.roa (raw, json)
Hash identifier: 3KVZPFtUH+5qkt4RuGUaF9zK4CUjPQ6M2fUnCV1/+fM=
Subject key identifier: E1:CB:62:CB:3D:E4:96:BE:D8:80:21:F2:F3:6C:E7:08:73:E1:FB:FF
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 7188F20E9E3E8A9CEDF50C25E8BD2C60B86EE835
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138322e33322e302f32342d3234203d3e20313431303339.roa
Signing time: Mon 26 Feb 2024 08:52:41 +0000
ROA not before: Mon 26 Feb 2024 08:47:41 +0000
ROA not after: Mon 24 Feb 2025 08:52:41 +0000
asID: 141039
IP address blocks: 5.182.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:88:f2:0e:9e:3e:8a:9c:ed:f5:0c:25:e8:bd:2c:60:b8:6e:e8:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Feb 26 08:47:41 2024 GMT
Not After : Feb 24 08:52:41 2025 GMT
Subject: CN=E1CB62CB3DE496BED88021F2F36CE70873E1FBFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:72:ba:02:d1:d8:b2:b6:32:f0:5f:84:59:c5:
37:0e:c8:de:ed:dd:28:cf:24:35:6f:bd:d6:7f:91:
07:91:c6:52:63:cd:b3:c5:db:be:f3:24:96:53:8c:
1f:ac:29:f8:88:d6:62:26:40:ba:b7:20:d4:70:ac:
77:16:52:0e:8a:07:71:e0:1c:12:02:1e:c7:5d:3e:
51:63:ab:18:a6:3b:ec:56:b1:3a:52:e8:6a:67:55:
7d:3f:04:67:0c:29:02:cb:9a:ee:54:d9:ef:83:5c:
87:e8:8a:ee:4b:9b:61:d4:e1:25:da:39:6b:53:6e:
81:51:e8:67:eb:32:99:5f:ba:02:6a:31:91:69:03:
5a:5b:ac:86:83:4f:e7:5c:f4:de:ea:bc:f0:6d:5a:
66:42:85:63:34:c2:4c:46:b7:96:ee:ad:e0:8d:65:
a0:0a:9c:df:ec:b6:5b:d8:dd:42:d3:be:6f:0a:00:
0d:ec:46:e7:25:eb:08:0f:e9:90:03:c5:42:1d:6b:
e3:6f:cb:3c:de:1a:80:2f:3f:af:ad:c2:ea:53:53:
f8:1d:9d:4b:79:92:6e:6b:7a:39:12:01:18:d6:e4:
2b:2c:ef:27:b5:3c:3d:b3:d9:f4:fe:8c:1b:14:48:
89:bf:66:12:ca:91:aa:40:48:76:09:45:47:c8:7c:
a3:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:CB:62:CB:3D:E4:96:BE:D8:80:21:F2:F3:6C:E7:08:73:E1:FB:FF
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138322e33322e302f32342d3234203d3e20313431303339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.32.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:2c:e7:42:23:7e:0b:c4:19:99:a2:5b:4c:6e:a5:6b:ed:c4:
46:2a:da:29:a9:ed:ba:19:57:f8:d8:df:4e:62:b3:b3:91:ef:
14:ff:0a:2e:62:2a:5a:40:04:f1:37:af:da:e1:57:ae:5c:3d:
25:0a:47:2d:82:60:3d:90:5a:7b:de:40:2f:bb:fb:fc:c2:48:
8b:47:23:5a:11:9e:79:27:fe:0a:0f:fd:b4:65:31:19:47:bd:
52:87:fb:9b:68:a6:62:3a:4d:11:8a:15:88:52:bd:57:44:70:
47:18:62:10:d6:8e:85:98:50:2c:6d:14:8d:49:5e:8a:cd:2f:
46:5a:00:6b:85:6d:5c:79:77:d6:86:72:6b:99:fa:39:07:87:
d8:3f:d2:81:95:8f:21:ee:f3:f7:4e:44:49:c9:80:88:74:8f:
48:fd:55:3e:2d:cb:4c:0a:c4:56:4e:34:ff:aa:6a:b0:a5:15:
c6:0f:97:d9:9e:68:ea:8a:59:b7:8d:3b:77:e7:29:fa:d8:ca:
1f:64:11:5c:26:56:e1:cd:42:53:74:a3:e0:20:b1:ab:b9:e8:
69:1b:3d:2f:73:9e:84:0e:1b:9e:23:d0:22:72:46:98:3e:d4:
87:8f:0f:1a:a0:31:95:60:4c:e0:47:3e:ca:4f:ac:79:b2:0a:
65:42:e2:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org