Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/38302e36352e3230382e302f32342d3332203d3e20313431393935.roa
File: 38302e36352e3230382e302f32342d3332203d3e20313431393935.roa (raw, json)
Hash identifier: +myfgvDw3ynCT/DuJUfuEMU9RRRTXcrFIIhBkyg/ybk=
Subject key identifier: B7:81:F7:6D:FB:8C:0A:9C:EF:4D:97:A7:B3:C1:4C:2B:DC:D6:3D:54
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 13C81FC3084BFD3BDFD3C24E321FABEF386C334F
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/38302e36352e3230382e302f32342d3332203d3e20313431393935.roa
Signing time: Mon 10 Jun 2024 11:03:03 +0000
ROA not before: Mon 10 Jun 2024 10:58:03 +0000
ROA not after: Mon 09 Jun 2025 11:03:03 +0000
asID: 141995
IP address blocks: 80.65.208.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:c8:1f:c3:08:4b:fd:3b:df:d3:c2:4e:32:1f:ab:ef:38:6c:33:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Jun 10 10:58:03 2024 GMT
Not After : Jun 9 11:03:03 2025 GMT
Subject: CN=B781F76DFB8C0A9CEF4D97A7B3C14C2BDCD63D54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:26:97:fe:71:31:24:5d:82:c0:b1:11:e7:7f:
aa:e9:3c:75:41:2c:56:a3:fa:29:bc:4d:c5:4d:55:
73:67:c8:97:af:52:09:60:9e:49:91:87:f8:66:3d:
b0:43:8e:0c:41:40:17:a7:e7:32:ac:5b:38:5b:46:
b0:bd:58:8a:78:ca:15:b9:39:2e:66:26:35:a3:4c:
15:3d:55:87:c1:f0:5e:8f:09:f8:14:bc:ba:98:14:
c6:d4:cd:ce:26:e4:3d:23:39:37:eb:3b:1f:68:41:
a0:6c:57:1a:fc:c1:df:91:6c:0c:35:22:30:ac:75:
ec:b8:53:f4:07:84:ca:04:0d:1d:69:45:41:cb:e0:
40:9a:f4:9d:07:14:26:5c:3a:d8:dd:85:26:4f:f8:
5d:7d:7b:a3:cc:9a:87:7e:ed:2f:e9:60:6f:e4:c4:
33:27:b4:4b:95:a1:a9:b1:15:1d:77:87:8b:6f:4b:
8c:c7:a9:b8:5c:ff:39:53:c5:93:d6:a4:28:81:3a:
9f:57:74:fd:58:45:37:2a:49:2b:06:db:1c:03:87:
da:3a:54:0c:5a:28:e4:c6:b8:2d:c5:62:95:0b:2b:
e8:6a:dc:81:96:49:a4:ad:b1:a5:5c:75:ba:76:05:
60:ab:ab:b4:b3:f9:bd:9f:d2:91:4a:2d:f5:31:c9:
b9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:81:F7:6D:FB:8C:0A:9C:EF:4D:97:A7:B3:C1:4C:2B:DC:D6:3D:54
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/38302e36352e3230382e302f32342d3332203d3e20313431393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.65.208.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:1a:46:14:43:58:ce:d3:85:d9:42:72:b2:4e:ae:43:7e:3b:
d5:4b:e5:7e:70:65:92:58:0c:05:28:a9:10:8b:9b:b1:8c:51:
a9:62:2a:43:85:c0:52:28:c2:81:34:79:96:ea:fe:e0:23:36:
f8:43:3d:38:26:11:4b:18:e3:5e:af:ee:e1:35:51:1c:86:f7:
2f:4d:ee:37:8c:e6:ed:1e:4a:8a:98:14:b9:e7:48:38:76:8e:
44:59:7b:41:83:f0:50:4e:b3:67:79:c2:8c:ee:b1:b5:75:86:
bd:51:09:87:4b:76:52:c8:1b:62:2c:77:09:91:92:97:66:e6:
27:16:11:85:05:6f:82:c3:12:90:07:00:a6:cd:69:32:bd:13:
8b:3e:62:5d:7d:2f:93:71:20:2d:d6:17:e5:b1:cf:75:f6:76:
35:b5:e9:1e:38:1e:8b:05:36:d7:42:56:40:b4:62:b6:b0:1d:
48:9e:16:19:0b:53:fa:c6:07:33:f5:02:85:b8:8c:b0:b2:ff:
b2:c3:ce:ed:a0:72:f9:ce:40:1d:f0:36:a4:b9:a7:0a:bf:5b:
bd:14:0d:6f:13:20:b8:83:c4:65:70:c9:e0:a5:e9:19:72:c2:
54:93:36:5f:b4:a5:50:e8:86:c5:05:d8:f6:62:a0:2c:71:3f:
e6:da:72:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org