Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39322e3131382e35332e302f32342d3234203d3e20313336373837.roa
File: 39322e3131382e35332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: zCnfDd/kZEOS9DdN7lBFV8SNPDrpCjo/z3htTgOzLgM=
Subject key identifier: 1C:AD:B9:8A:1E:76:0F:58:1D:8A:FC:B9:E3:DB:4D:79:23:C0:B2:60
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 29A4212170AB14A758DD1D1B73FC7A2D38D4775F
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39322e3131382e35332e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 13 Feb 2024 12:54:32 +0000
ROA not before: Tue 13 Feb 2024 12:49:32 +0000
ROA not after: Tue 11 Feb 2025 12:54:32 +0000
asID: 136787
IP address blocks: 92.118.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:a4:21:21:70:ab:14:a7:58:dd:1d:1b:73:fc:7a:2d:38:d4:77:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Feb 13 12:49:32 2024 GMT
Not After : Feb 11 12:54:32 2025 GMT
Subject: CN=1CADB98A1E760F581D8AFCB9E3DB4D7923C0B260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f2:2f:1d:3e:2e:e6:99:54:dc:57:bf:13:d4:
dd:6a:23:3e:7f:a7:61:e6:d8:b2:2b:e3:fc:d7:31:
8d:4f:22:dc:e7:be:cf:f4:8e:5c:92:d4:31:16:90:
5f:b0:fb:b1:82:64:c8:bb:b2:77:bd:7a:45:80:03:
af:e8:1f:b6:71:03:ea:29:bb:2a:b5:72:52:a1:39:
89:4f:18:e6:a8:a8:32:6d:c3:9c:db:b2:9b:1b:42:
8a:6b:e5:e9:3a:93:05:36:55:d0:c4:e0:1e:71:8c:
d2:17:55:d1:10:dd:35:39:e7:a1:7f:5b:98:51:09:
94:d7:a4:fe:ff:b5:c6:df:62:ee:fa:20:04:e7:61:
fd:e6:a8:d3:31:0a:c9:71:16:76:0d:1c:6e:9a:19:
4f:ad:c6:31:b8:10:50:a6:7b:90:3d:01:17:78:46:
92:9e:3f:38:56:e2:43:86:30:85:2e:0d:44:3e:5e:
19:59:ba:81:42:d7:1c:45:54:d8:ad:34:4b:58:64:
60:80:79:a8:e6:b4:5d:9a:94:99:65:61:2e:02:81:
62:8d:85:8d:bb:0f:cb:5b:4a:ff:a6:34:41:ba:38:
70:a1:5b:92:ba:06:79:27:9b:e7:c6:08:83:c8:ad:
23:e8:12:b1:5c:58:01:2d:ab:c5:9c:1c:d6:36:f0:
f1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:AD:B9:8A:1E:76:0F:58:1D:8A:FC:B9:E3:DB:4D:79:23:C0:B2:60
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39322e3131382e35332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.53.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:2b:5b:f7:7a:b2:08:c4:9e:5d:ca:27:3b:fc:90:3e:af:7a:
88:94:e3:ae:74:ac:e4:23:a9:ba:3c:c3:d5:2e:4d:d8:b1:0f:
5b:9f:74:20:7a:c6:b6:64:fb:1c:1a:f6:3d:2b:89:dd:5b:c2:
82:f9:3e:74:08:dd:72:b0:e0:7a:af:a8:57:dd:4c:fa:be:18:
72:85:0e:ea:ad:f6:ed:7a:bb:1e:49:c8:96:15:85:73:87:19:
ad:f0:af:a5:b8:9c:2b:14:70:01:1a:bf:a2:6a:4e:90:38:b6:
c7:b4:ed:f0:9b:c9:86:70:ed:45:22:77:8b:46:4b:ac:fd:2c:
ff:31:f3:1a:77:ca:1d:fd:2e:26:46:64:86:d9:61:82:96:c6:
b7:67:90:a5:a7:c9:a2:e9:32:76:7c:8d:c6:69:a6:99:6f:ec:
ae:e8:82:9c:b2:38:45:78:90:ba:c6:b7:2a:2b:d4:92:96:2f:
f9:21:20:51:65:85:66:af:d9:81:27:be:44:a7:73:78:e1:6b:
86:b9:5b:f5:36:d2:78:52:18:c4:19:06:59:a1:0b:c2:df:e4:
e9:77:1c:bd:28:ac:ed:72:ed:13:a5:e3:bd:05:f5:3c:f6:82:
2e:fe:d5:2c:e3:27:5d:b2:70:9e:4d:89:7c:40:19:01:ac:cd:
ec:46:7a:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 19:21:55 2024 by rpki-client on console-ams.rpki-client.org