Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131352e302f32342d3234203d3e20323039383534.roa
File: 38332e39372e3131352e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: 2V42aUb5HyOOFs/tFWbkPXdv4WT008ohA78iQmzgAng=
Subject key identifier: E7:31:8B:2B:2A:AF:AA:FD:9D:2B:69:22:DE:A8:FC:DF:0D:2C:1E:3D
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 38F6D1CBFC9A58D03F697C2858147B53D9E441F5
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131352e302f32342d3234203d3e20323039383534.roa
Signing time: Tue 29 Aug 2023 13:32:41 +0000
ROA not before: Tue 29 Aug 2023 13:27:41 +0000
ROA not after: Tue 27 Aug 2024 13:32:41 +0000
asID: 209854
IP address blocks: 83.97.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 16:15:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:f6:d1:cb:fc:9a:58:d0:3f:69:7c:28:58:14:7b:53:d9:e4:41:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Aug 29 13:27:41 2023 GMT
Not After : Aug 27 13:32:41 2024 GMT
Subject: CN=E7318B2B2AAFAAFD9D2B6922DEA8FCDF0D2C1E3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:79:d0:47:33:ce:5e:d6:bf:3d:0e:67:5f:d5:
be:99:15:9b:6d:dc:9c:78:d6:79:08:79:80:d5:f2:
a7:98:d1:1a:f3:4f:42:f6:60:a9:03:78:ad:d5:01:
9a:ab:22:f6:d3:64:9b:78:75:e8:e8:7d:1d:6c:f8:
63:21:52:19:8b:00:23:69:f3:47:dc:c3:93:9e:1e:
84:a2:a4:85:af:25:5d:d8:6c:9a:d5:2a:5d:b0:c8:
2a:5b:29:3b:f5:7e:f3:92:23:e6:31:98:63:85:f6:
23:02:3c:a2:40:65:fd:8e:50:63:b8:72:80:f1:42:
2b:b6:9c:c1:ce:e5:07:da:57:88:a2:2c:f7:36:65:
2f:67:02:be:85:2e:e1:a7:4f:81:5d:56:62:77:48:
38:2a:de:dd:ea:55:47:84:db:4a:6e:77:7a:fe:f1:
2a:ab:72:6a:44:09:aa:b1:0a:eb:9a:02:01:64:fe:
ad:c6:24:3b:e2:58:dc:20:e2:e7:f6:66:cc:08:7a:
56:57:0f:d8:54:84:95:89:fa:24:87:28:6b:e4:7e:
96:41:fc:77:c0:ea:9f:8e:fc:42:16:5b:ca:8d:a5:
d2:d4:c3:41:41:1c:35:64:b4:0b:e1:c9:23:8f:95:
b3:a7:10:62:34:83:14:03:d6:fb:a2:fc:d0:6a:a5:
04:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:31:8B:2B:2A:AF:AA:FD:9D:2B:69:22:DE:A8:FC:DF:0D:2C:1E:3D
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131352e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.115.0/24
Signature Algorithm: sha256WithRSAEncryption
40:27:19:0c:b6:45:a7:10:91:51:14:cd:69:3b:bf:fb:ad:ee:
81:f8:0a:c1:a1:ac:df:34:06:3b:64:55:da:e1:05:24:3c:13:
e3:3e:60:ea:70:06:7f:99:64:57:23:56:50:d4:e8:c0:bf:e1:
4b:82:85:00:18:21:6e:ea:d4:78:8d:d4:45:04:89:73:cc:c1:
87:89:8f:1d:18:20:fd:d7:a2:f6:ec:8d:d8:a4:75:db:15:cd:
0c:03:99:23:af:81:3a:5f:a1:83:c1:5b:57:a9:e2:68:36:b1:
1f:0d:50:e6:3b:c7:59:5a:0c:49:08:a0:8e:8c:2e:46:b0:80:
cb:52:90:b7:ca:bc:02:ba:a3:1c:57:37:b8:83:2d:45:44:d0:
cf:9f:36:93:7d:42:6d:8c:b8:bc:3c:a3:bf:42:54:c9:68:67:
40:46:e1:df:fd:81:34:27:3c:91:5d:ee:df:94:95:d9:ab:ca:
50:2a:a7:81:1a:de:fa:1d:91:52:b6:b2:a1:4d:40:a5:6a:a4:
d1:94:0e:b8:d3:45:98:f2:ac:66:60:f6:de:a6:b8:b5:45:a8:
cd:fe:0e:9c:57:85:9f:bc:0f:e5:08:31:87:25:0b:4f:88:68:
56:cd:30:c3:c4:b7:91:9f:70:71:b4:9b:68:ce:1c:33:e1:06:
75:39:cd:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 01:22:09 2024 by rpki-client on console-ams.rpki-client.org