Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131322e302f32342d3234203d3e20323039383534.roa
File: 38332e39372e3131322e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: 8Su4h7iT9bCx7vb6YOE2V/suKtyg/EAvj+ElgP/WeMQ=
Subject key identifier: E5:F2:8F:9B:C2:49:A5:56:61:43:3B:01:EE:27:FB:F5:47:8F:14:DB
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 05E8BCCA00BFD4BD8E5D4C0591FBC363D37B5715
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131322e302f32342d3234203d3e20323039383534.roa
Signing time: Tue 29 Aug 2023 13:32:21 +0000
ROA not before: Tue 29 Aug 2023 13:27:21 +0000
ROA not after: Tue 27 Aug 2024 13:32:21 +0000
asID: 209854
IP address blocks: 83.97.112.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 16:15:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:e8:bc:ca:00:bf:d4:bd:8e:5d:4c:05:91:fb:c3:63:d3:7b:57:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Aug 29 13:27:21 2023 GMT
Not After : Aug 27 13:32:21 2024 GMT
Subject: CN=E5F28F9BC249A55661433B01EE27FBF5478F14DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:39:31:0f:bb:ee:71:f2:94:9e:cf:83:a9:28:
56:54:00:85:89:82:5d:94:d6:a4:89:28:3b:49:de:
0b:e9:cc:8b:c2:a0:f6:31:4b:9d:da:f2:8c:79:99:
68:21:92:af:fd:98:88:4f:43:60:2b:f8:fb:1b:ad:
33:59:76:48:cc:4e:7a:12:c0:e7:8d:3e:8c:b1:03:
b8:c4:88:6f:9f:90:66:81:a4:43:dc:f1:fe:f7:7a:
58:8a:3b:b7:0c:9d:fb:b6:4b:2c:ac:bc:2d:02:39:
05:14:01:e4:6a:aa:6c:e1:1f:97:b3:de:bc:03:11:
8f:69:e3:06:e7:63:1c:7e:fb:04:f3:53:5e:01:cc:
5e:1f:68:40:83:44:dd:40:98:f5:82:32:16:23:37:
0e:ac:54:16:c6:0c:1b:94:60:8b:15:e4:84:90:d6:
81:eb:0b:c9:6d:e9:f6:ac:7a:a0:5d:71:68:69:0c:
22:a9:c7:43:18:5a:ef:5f:a2:1e:49:d3:80:c9:ac:
2a:65:16:52:90:56:31:37:e6:31:4f:04:7d:82:f0:
f1:4b:47:56:da:c1:e1:7d:f8:5a:03:60:66:96:5c:
f1:e8:34:57:dc:f5:2b:18:2d:fd:94:8a:70:53:e9:
7f:de:8d:61:ed:16:b1:ad:9f:28:dd:39:b1:88:3b:
5e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:F2:8F:9B:C2:49:A5:56:61:43:3B:01:EE:27:FB:F5:47:8F:14:DB
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131322e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.112.0/24
Signature Algorithm: sha256WithRSAEncryption
72:b5:c6:34:58:cd:ce:9e:5a:22:38:f9:85:fc:4d:02:c4:c9:
bc:e4:f2:14:d0:81:e8:68:81:f9:93:1d:b1:fd:b7:cf:9e:d9:
e5:2c:79:e8:e9:c0:e6:7d:c5:26:c5:0f:24:9d:18:39:5c:c2:
9d:7e:1b:b9:37:d6:b8:89:46:b4:e5:cb:53:6a:04:74:6c:6e:
c8:e0:54:23:b3:ae:bd:db:52:5f:fe:21:49:9e:97:f4:61:6b:
2d:4f:da:5b:24:ba:c1:d2:b8:ad:62:15:ba:06:56:a0:24:ce:
97:ec:34:ef:5e:f7:89:2a:f1:34:e9:9d:40:a2:15:bb:f1:2d:
8d:f7:f4:56:8b:de:0e:c3:67:e0:a4:98:1d:ab:6a:30:eb:ae:
75:e1:14:ad:29:1e:48:8d:3e:2d:5a:df:5b:4a:7b:0f:46:9a:
81:29:b1:41:9c:46:c4:77:81:33:ac:30:4c:b5:cd:41:69:3c:
bc:6f:09:d2:2e:e3:3c:51:bb:b1:93:18:c8:22:aa:67:c7:99:
c9:64:86:0c:24:5c:71:05:d8:8c:b2:b4:41:87:cd:73:cc:96:
69:b9:60:ec:45:ed:b5:bc:dc:1e:65:00:c6:b6:f9:4e:23:ad:
54:7e:b5:92:31:5b:0d:74:4d:37:36:ab:5c:db:3d:1b:97:ac:
23:91:25:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 01:08:36 2024 by rpki-client on console-fra.rpki-client.org