Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131332e302f32342d3234203d3e20323039383534.roa
File: 38332e39372e3131332e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: gSZuVf86ZRdeAXKETYRhb5m6L5hnlf3mTvjyxhG9Ymc=
Subject key identifier: BF:84:A7:29:C5:27:59:26:38:E2:BB:D1:86:7D:A7:9A:6A:66:C2:EA
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 09D81AF40517E8D98B8C20600B4DD4688CB2E386
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131332e302f32342d3234203d3e20323039383534.roa
Signing time: Tue 30 Jul 2024 14:04:28 +0000
ROA not before: Tue 30 Jul 2024 13:59:28 +0000
ROA not after: Tue 29 Jul 2025 14:04:28 +0000
asID: 209854
IP address blocks: 83.97.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:d8:1a:f4:05:17:e8:d9:8b:8c:20:60:0b:4d:d4:68:8c:b2:e3:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Jul 30 13:59:28 2024 GMT
Not After : Jul 29 14:04:28 2025 GMT
Subject: CN=BF84A729C527592638E2BBD1867DA79A6A66C2EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f4:48:c7:30:88:db:e1:ea:34:77:1b:f6:fa:
c0:c8:a7:a9:be:fd:2e:f9:65:69:23:8f:14:70:68:
37:10:33:bb:3c:45:d5:d8:62:ef:66:d3:5a:d2:5f:
4c:eb:77:de:82:fd:43:44:ab:10:41:b0:c0:99:8e:
16:1f:72:df:05:14:50:c0:10:4c:6e:49:e6:a7:91:
5e:0a:4f:32:25:c9:35:f1:e7:ee:b5:4c:70:c4:6e:
74:0c:f7:3a:da:d1:f9:02:1f:1b:0c:9d:3f:f9:70:
b6:e5:9a:b0:49:df:e4:98:aa:56:a0:c3:e2:bf:f3:
82:31:3b:9a:ad:57:20:bc:e7:50:12:64:25:e7:e8:
5d:16:15:2a:eb:a0:e6:b5:5c:94:7e:88:ce:f6:93:
61:fd:d6:58:c1:4b:49:d8:14:bc:ff:31:df:97:81:
7e:71:f5:20:3a:38:83:0a:9a:99:55:08:ab:b4:2b:
4a:73:0b:15:99:1f:a4:5f:22:db:b6:ef:8d:6c:2a:
5d:28:4d:c4:66:b6:c0:27:97:9e:8d:0e:e0:e0:03:
92:dd:29:5f:da:02:1b:a0:8c:e1:8d:68:9d:d4:de:
af:ec:d5:5d:e2:c5:a5:2d:46:b5:4e:48:31:4b:74:
08:9b:e1:64:20:77:e6:d0:58:41:6c:23:a3:e8:ab:
6c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:84:A7:29:C5:27:59:26:38:E2:BB:D1:86:7D:A7:9A:6A:66:C2:EA
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131332e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.113.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:c1:41:2c:47:9b:90:82:f7:6d:c8:3a:ed:4a:c1:53:7f:38:
33:18:10:5b:0a:76:d7:ff:51:82:4d:9a:51:4a:be:47:be:20:
83:98:34:8f:03:4d:a1:4c:36:38:4f:f2:13:26:c1:af:b2:5f:
25:d1:ff:7d:08:5e:76:fc:c6:8e:b5:02:dc:3b:6c:14:c9:b5:
88:06:90:83:ad:0d:2b:d0:a3:a5:0d:84:51:c5:e9:72:03:1f:
56:76:c7:27:a5:96:b6:e0:a0:ec:a5:ce:be:11:83:f3:82:df:
db:57:6f:95:29:a8:b1:28:c7:82:4e:15:38:c1:f1:16:8e:c5:
90:78:05:1c:d5:a2:4c:d8:1f:eb:eb:91:3e:6b:a5:1e:21:23:
73:2f:1d:f6:a3:a6:aa:bb:36:c4:85:77:0e:c2:6c:5c:39:81:
a8:5b:54:da:89:53:5d:64:8f:f7:88:25:f2:4e:0c:8b:ad:ab:
bc:ec:3f:51:29:50:ad:b7:09:16:27:5d:31:b3:65:7e:1e:37:
19:29:c4:86:e0:fa:c9:47:ee:3d:a3:8d:5f:03:22:34:6b:fb:
e4:73:d3:56:4a:f9:26:7d:a5:17:9e:14:7a:c9:35:6e:16:50:
f7:53:89:2b:8e:3c:0c:16:d3:c8:15:0b:7a:1c:92:3f:d8:8d:
c7:58:56:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:44:11 2024 by rpki-client on console-fra.rpki-client.org