Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131342e302f32342d3234203d3e20323039383534.roa
File: 38332e39372e3131342e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: bE5A/H4qCgaS59ot6IwhgDCBzR2u6M6WQNaNUXNSmnw=
Subject key identifier: 53:2A:C3:40:72:DB:3F:63:81:5E:DD:0E:8C:A9:95:8E:DA:6C:0C:59
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 67B5CFA3B07267364579CF4662F389CF30B04B64
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131342e302f32342d3234203d3e20323039383534.roa
Signing time: Tue 29 Aug 2023 13:32:34 +0000
ROA not before: Tue 29 Aug 2023 13:27:34 +0000
ROA not after: Tue 27 Aug 2024 13:32:34 +0000
asID: 209854
IP address blocks: 83.97.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:b5:cf:a3:b0:72:67:36:45:79:cf:46:62:f3:89:cf:30:b0:4b:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Aug 29 13:27:34 2023 GMT
Not After : Aug 27 13:32:34 2024 GMT
Subject: CN=532AC34072DB3F63815EDD0E8CA9958EDA6C0C59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f6:d8:6b:7a:af:fc:20:d3:63:74:2d:41:fd:
a6:83:be:04:80:a7:80:ab:bc:51:5d:15:cc:63:ba:
89:9b:98:41:2e:ad:c0:a3:d5:57:e5:41:83:aa:a2:
41:8f:7c:51:79:fb:fe:95:50:ec:8c:c7:17:05:1f:
84:b5:b6:c8:2a:a5:38:96:d5:30:dd:c6:23:81:73:
b5:fd:bc:f2:26:3c:18:7b:f8:c4:87:95:cc:16:23:
23:c4:2a:78:9c:83:c0:66:5c:ef:29:7b:15:4f:82:
28:cc:22:25:37:b4:2a:b1:2f:fc:cd:4a:29:48:88:
d7:83:d5:e3:8c:05:a6:ce:e1:77:c1:be:f4:28:c6:
5c:52:d0:26:35:e5:93:07:af:7a:51:99:e4:ee:da:
97:85:5e:4d:42:de:10:e1:0f:3a:3a:63:ef:89:58:
cb:95:d9:a4:b1:19:7a:01:25:c0:3a:67:b6:49:aa:
c7:65:a7:5e:30:ab:4c:7a:f0:d5:9d:fc:2c:ed:e4:
e9:f0:cd:2c:d6:4e:3a:08:24:53:2d:8f:fd:31:26:
21:d2:53:58:10:b0:e8:66:0d:dd:2e:ca:f3:dc:51:
57:a3:6d:c8:ba:f5:8b:93:e7:9e:dc:1b:18:a5:7a:
b9:c5:e5:09:f8:6e:e7:2a:e0:23:9e:79:ef:b4:c1:
43:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:2A:C3:40:72:DB:3F:63:81:5E:DD:0E:8C:A9:95:8E:DA:6C:0C:59
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131342e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.114.0/24
Signature Algorithm: sha256WithRSAEncryption
57:b7:88:e7:d1:c2:5e:56:0d:dc:a2:06:cd:17:93:a1:41:73:
54:d5:6e:0a:c2:9b:dc:2c:7c:0b:7a:a1:a4:2c:56:ac:4e:1f:
c5:44:67:15:8a:28:ee:a8:f7:5d:08:35:20:cf:b7:91:aa:e2:
26:7c:f4:e0:91:a6:3e:33:5f:78:22:2f:3d:4e:3f:bf:4b:f6:
40:b3:3c:91:b3:fe:1f:81:2e:57:e9:fa:cb:40:18:3b:6a:32:
05:d9:00:f3:5a:da:9b:a6:31:bc:09:ee:fa:a7:6a:a2:97:1b:
c7:c0:61:59:3b:ca:bd:37:2a:e7:84:3f:8f:7d:cd:3b:7c:b2:
a9:b5:dd:85:66:f5:fb:1a:db:90:68:00:5d:7f:2d:1c:01:4e:
9e:2b:be:48:4a:e5:f3:8e:4c:b4:39:ff:91:2d:c3:15:66:9b:
ca:67:26:6d:c7:41:28:89:25:ab:65:39:8a:33:bf:85:e8:20:
b8:d2:64:8b:a1:9a:ef:e9:11:71:a0:74:8d:2b:91:3c:e8:26:
b5:7a:e7:a5:68:e3:f1:50:35:2b:69:95:1b:05:55:d5:e5:30:
f7:b4:e3:49:6d:f2:8f:dc:3d:ef:15:39:df:6f:ce:05:94:ed:
61:7c:f3:b0:3a:37:70:be:89:3c:b4:24:54:0f:f0:66:49:4d:
82:c7:d0:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:33:00 2024 by rpki-client on console-ams.rpki-client.org