Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131332e302f32342d3234203d3e20323039383534.roa
File: 38332e39372e3131332e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: /KeLAInJkTu7H6MfmbyeGQ/niUbbEYBFzViqJHzVDHw=
Subject key identifier: 1C:6B:0C:CB:8D:90:00:52:88:5A:2A:64:BA:7D:7F:3A:24:EC:EB:B7
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 5A81C8BED9B24205B182AD307E1853F4C1D6E211
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131332e302f32342d3234203d3e20323039383534.roa
Signing time: Tue 29 Aug 2023 13:32:28 +0000
ROA not before: Tue 29 Aug 2023 13:27:28 +0000
ROA not after: Tue 27 Aug 2024 13:32:28 +0000
asID: 209854
IP address blocks: 83.97.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:81:c8:be:d9:b2:42:05:b1:82:ad:30:7e:18:53:f4:c1:d6:e2:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Aug 29 13:27:28 2023 GMT
Not After : Aug 27 13:32:28 2024 GMT
Subject: CN=1C6B0CCB8D900052885A2A64BA7D7F3A24ECEBB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4b:14:38:ad:2a:68:c5:67:7d:55:c8:3e:9b:
8d:8e:8a:74:da:dc:e5:2e:f2:ac:1b:16:ed:69:b3:
ef:bb:59:f9:2f:6d:8e:55:4e:be:82:c7:59:e3:00:
9f:9a:de:18:1d:44:33:44:52:63:f5:bc:45:30:4c:
3a:1a:20:36:91:40:23:be:ff:d3:f5:21:d7:20:61:
3c:76:2a:45:ad:ea:29:72:97:6a:af:52:52:19:66:
44:4a:8f:03:49:36:81:32:fa:2a:02:39:4e:1b:7a:
a9:f2:e0:03:7a:3b:10:c3:ff:a3:74:8f:0c:d2:bd:
9d:25:d0:e1:5e:40:63:09:8c:34:76:1f:cb:2e:de:
b1:e1:54:71:94:80:0a:24:70:d9:7d:36:c0:8e:6d:
ce:7f:f8:59:6d:7e:44:28:15:f1:3d:15:cd:dd:b4:
e5:68:1b:dd:48:30:db:5d:f9:1d:d6:19:13:aa:e6:
7e:92:5d:98:7c:19:86:89:06:77:72:e7:fb:2d:17:
cf:d9:74:79:a7:4e:10:71:3c:20:78:e5:97:df:8e:
a5:41:d8:d1:db:57:11:51:a4:55:15:90:34:9f:cc:
ac:43:d9:5c:36:bf:fc:4a:62:13:1e:44:7b:1c:fc:
a3:c3:b0:61:60:ba:15:ec:1a:13:f2:cc:8f:2d:36:
64:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:6B:0C:CB:8D:90:00:52:88:5A:2A:64:BA:7D:7F:3A:24:EC:EB:B7
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131332e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.113.0/24
Signature Algorithm: sha256WithRSAEncryption
81:32:e3:c8:b7:73:38:9d:7e:96:d8:5d:ff:fb:26:ce:96:2d:
b0:6c:55:33:28:b9:5e:93:29:fd:f1:9b:43:cf:a4:af:1b:12:
4c:8b:46:14:c4:67:de:31:02:5b:4a:b0:50:e3:e3:85:75:e2:
30:ad:d2:02:9b:43:81:4e:78:84:52:5a:36:aa:d6:1d:4f:60:
43:2d:bb:35:ab:bf:0f:15:f4:d9:89:15:64:ab:75:cc:8e:a6:
0a:1c:d0:46:0d:6f:fc:da:f6:52:43:83:03:fb:e9:bb:fa:62:
74:f4:5b:9f:7c:59:9c:3b:85:bb:39:8e:31:63:f9:6c:b7:4a:
50:2a:d4:5f:03:e5:5f:c8:03:0a:1b:ee:68:d7:21:33:63:59:
24:cf:9b:85:93:ba:ea:32:55:0c:d5:09:7b:41:c9:7b:7e:e6:
44:21:2e:f5:59:91:2a:37:42:f5:fd:8e:54:d1:2a:2a:46:8a:
08:4f:7b:b4:e2:10:cf:f3:56:b0:2b:f8:6c:90:22:3f:eb:9d:
28:b4:35:d7:bd:1f:1b:6d:ea:84:6d:b5:57:ab:94:b6:0b:af:
fa:ce:0b:57:fe:3f:ce:cf:4f:98:d2:76:3a:36:79:b1:0b:64:
ee:f9:a8:d0:b1:18:7a:1a:6f:d7:d2:f5:df:24:a8:ad:6c:b9:
35:af:0e:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 19:21:54 2024 by rpki-client on console-ams.rpki-client.org