Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131322e302f32342d3234203d3e20323039383534.roa
File: 38332e39372e3131322e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: sfNIURUmXToGpfDso0g5lnpncauZp58VyhRu5SRz6mg=
Subject key identifier: B0:D5:BF:04:CB:92:57:4E:69:90:6B:38:18:29:76:48:91:85:AF:AF
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 086D56FC5DE84A962D1FA34B1703A4FAECAF7188
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131322e302f32342d3234203d3e20323039383534.roa
Signing time: Tue 30 Jul 2024 14:04:28 +0000
ROA not before: Tue 30 Jul 2024 13:59:28 +0000
ROA not after: Tue 29 Jul 2025 14:04:28 +0000
asID: 209854
IP address blocks: 83.97.112.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:6d:56:fc:5d:e8:4a:96:2d:1f:a3:4b:17:03:a4:fa:ec:af:71:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Jul 30 13:59:28 2024 GMT
Not After : Jul 29 14:04:28 2025 GMT
Subject: CN=B0D5BF04CB92574E69906B38182976489185AFAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8c:c8:88:b0:fa:3d:d9:3d:09:b1:e5:70:9c:
00:d2:28:6a:f5:95:db:c4:a8:92:c6:d6:2e:e8:36:
57:35:29:ac:37:be:33:4b:68:b6:84:77:3b:84:53:
79:90:db:76:6b:42:5a:83:a7:33:f5:55:d6:53:f7:
6b:1f:8f:69:e1:69:6c:b3:17:8e:54:ad:f4:6f:9e:
56:55:3f:37:b0:c2:f6:6c:70:7f:fc:10:1d:84:da:
e7:29:82:af:76:1b:f1:36:a9:d6:2d:6e:ea:14:60:
b6:c3:8f:70:80:d9:0d:0e:3c:19:1e:b9:47:c5:77:
97:98:7e:57:bf:00:cb:a2:08:a8:fc:a6:96:c1:cf:
2c:a3:18:92:13:a0:c6:75:7a:83:1b:10:26:60:4b:
1e:44:19:84:f7:e2:ea:db:9e:7d:d7:8e:79:48:95:
7c:22:5a:f1:dd:ac:1d:b6:be:fd:a2:b5:2d:55:30:
05:d4:f6:88:1e:19:04:5d:77:7b:69:f8:c8:c9:33:
67:66:a3:59:ee:90:0b:35:6d:fa:3e:23:00:53:3a:
ee:1a:79:5d:d7:8d:0e:c1:8d:42:34:55:30:c9:db:
49:a3:0d:fa:0f:cf:99:75:c6:6d:56:54:0f:8d:5d:
d2:da:79:0b:18:cc:ce:f4:93:be:c9:b5:74:70:0d:
e8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:D5:BF:04:CB:92:57:4E:69:90:6B:38:18:29:76:48:91:85:AF:AF
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131322e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.112.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:ae:fe:a9:0c:e4:6d:04:a7:7c:1f:57:eb:4a:ef:b7:e1:95:
da:b4:0c:ba:d9:3b:3a:23:86:a7:00:95:c5:d6:d7:cf:d8:13:
8c:c9:b6:20:13:69:a6:41:7a:71:66:06:99:e3:56:ff:1b:f2:
95:6c:2d:4b:40:2d:8e:dc:db:a3:86:25:75:a1:57:a4:f1:dd:
61:33:30:a4:16:15:ad:f2:a8:94:44:73:04:83:c3:ec:ee:18:
46:2e:07:88:8d:0a:9a:05:13:56:5b:ae:9d:7f:94:a8:ad:bf:
1c:6a:7e:c8:79:d8:06:4a:df:3b:96:d2:90:7c:94:69:f8:5f:
5a:d8:b0:bd:bd:9f:07:b6:f7:c7:bb:b6:23:18:db:b5:7c:58:
dd:6f:02:8e:30:31:cd:3a:fc:14:c9:13:be:e2:72:02:c3:10:
84:9d:69:0b:4c:ef:fb:8d:85:29:46:be:a5:37:e3:2e:d1:fd:
8a:ac:a9:cb:7e:8e:c7:e1:40:83:1e:f9:2f:72:9c:a2:d8:16:
f5:be:9e:c6:d5:7c:77:75:d8:da:8c:c0:48:78:8b:db:dc:0f:
3d:d6:7d:74:22:bc:1c:1c:ed:2f:fc:7d:39:a2:f9:f1:9a:ea:
ee:cc:ff:92:3f:35:5c:16:66:7f:84:72:5f:45:dc:24:6c:d0:
4e:b7:ec:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org