Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131352e302f32342d3234203d3e20323039383534.roa
File: 38332e39372e3131352e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: h3dsvY1GtNIuPMd7tUF4x89iVGXmOgrjupHBIAvijfU=
Subject key identifier: CB:51:3B:18:1C:23:48:0B:18:02:B8:1E:ED:8F:E1:80:E3:36:B1:9E
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 69769F3FB0197AB30D17403FE94253B6781D9B4F
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131352e302f32342d3234203d3e20323039383534.roa
Signing time: Tue 30 Jul 2024 14:04:27 +0000
ROA not before: Tue 30 Jul 2024 13:59:27 +0000
ROA not after: Tue 29 Jul 2025 14:04:27 +0000
asID: 209854
IP address blocks: 83.97.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:76:9f:3f:b0:19:7a:b3:0d:17:40:3f:e9:42:53:b6:78:1d:9b:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Jul 30 13:59:27 2024 GMT
Not After : Jul 29 14:04:27 2025 GMT
Subject: CN=CB513B181C23480B1802B81EED8FE180E336B19E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3e:cb:28:3a:b0:02:94:d9:f4:f2:b6:31:96:
92:c9:7c:44:bf:1e:4e:19:c2:ce:54:9a:c4:41:37:
11:39:e7:c3:6c:3b:fd:94:4b:28:80:a6:57:30:5d:
91:a5:4a:e7:5d:0d:71:ba:c9:75:79:e7:18:8f:c1:
34:92:f0:18:70:31:ac:46:cb:f6:d6:3c:d7:9d:85:
1f:3c:f6:08:6f:e8:a1:69:9e:fa:6e:9d:57:4a:1f:
47:e8:55:cf:7d:98:0a:24:f2:bf:bb:6b:49:2c:61:
a0:62:8e:53:0e:3a:dd:36:4b:1e:8f:b6:93:82:ca:
ff:ad:c5:d8:24:9e:bb:a3:cb:2b:ce:87:56:87:56:
0c:81:de:7c:5c:e7:58:ed:32:06:a9:43:47:bf:95:
0b:67:df:af:29:03:aa:fb:6e:5e:d7:df:4d:42:cc:
b4:29:81:b2:58:b6:27:21:67:55:7b:29:96:ed:6b:
0d:62:5b:7e:d3:10:e4:68:8e:bb:de:2c:e1:ba:84:
4d:ce:f9:0b:03:03:dc:2b:36:ab:6b:65:51:ce:17:
79:77:16:e4:80:e6:f0:2c:a7:7c:a1:eb:19:94:90:
0c:37:69:16:c3:96:0a:86:e9:e7:f6:48:c7:ed:c7:
31:59:d1:79:1d:a9:7b:d8:71:7e:2c:ef:48:12:0f:
03:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:51:3B:18:1C:23:48:0B:18:02:B8:1E:ED:8F:E1:80:E3:36:B1:9E
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/38332e39372e3131352e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.115.0/24
Signature Algorithm: sha256WithRSAEncryption
85:b9:61:a5:6f:5e:5d:2f:83:1b:21:99:99:6c:f5:5e:a2:08:
28:4c:97:7a:65:28:73:39:f3:7c:0b:4e:1d:29:73:64:9c:dd:
54:d8:19:dd:d7:ce:5f:a2:f5:49:5e:59:6f:42:ec:bf:b6:ae:
64:60:35:b5:12:36:a3:32:20:12:4c:04:1d:37:dd:eb:d7:fc:
91:63:8c:0d:ff:61:86:07:a1:44:ba:25:ec:d2:73:61:47:91:
31:65:3e:ee:fd:ee:2c:a5:d5:a7:93:05:10:9a:e9:62:8c:c9:
bb:33:ee:e1:b7:d6:10:14:70:3e:8d:74:22:b0:f3:6d:2b:d0:
14:5d:5c:66:ae:73:15:c2:52:7c:70:79:11:db:ab:bc:e1:7b:
be:71:63:23:37:dd:49:8f:a7:64:61:b7:a4:08:1e:f3:84:63:
95:1c:6e:27:3c:34:9a:0f:6f:bf:06:86:90:80:cb:2f:9c:f8:
34:99:d5:1c:12:94:79:28:ca:e1:23:d2:ef:38:b8:11:84:72:
69:6d:c1:80:83:a6:7e:9a:45:c0:08:46:e3:53:4d:ac:8a:07:
18:62:10:67:09:29:00:c8:b9:12:d8:3b:f5:62:51:f4:4e:2e:
48:66:35:2d:05:d6:8e:fd:80:75:f9:6c:51:e7:2a:eb:c2:0a:
10:56:b7:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org