Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/352e3138312e3138342e302f32342d3234203d3e20323131333733.roa
File: 352e3138312e3138342e302f32342d3234203d3e20323131333733.roa (raw, json)
Hash identifier: c5PcO3Osrb2UWMuCNviDJTtJk2ChzpM9W6flacAGkGQ=
Subject key identifier: 59:54:E7:8F:FA:29:7D:00:07:4E:78:AD:0B:07:E1:2E:FB:58:9E:CB
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 7D81A7BB0CD718DADD27BCCE416DA61DDDC66913
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/352e3138312e3138342e302f32342d3234203d3e20323131333733.roa
Signing time: Fri 22 Dec 2023 08:05:08 +0000
ROA not before: Fri 22 Dec 2023 08:00:08 +0000
ROA not after: Fri 20 Dec 2024 08:05:08 +0000
asID: 211373
IP address blocks: 5.181.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.mft
rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 04:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:81:a7:bb:0c:d7:18:da:dd:27:bc:ce:41:6d:a6:1d:dd:c6:69:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Dec 22 08:00:08 2023 GMT
Not After : Dec 20 08:05:08 2024 GMT
Subject: CN=5954E78FFA297D00074E78AD0B07E12EFB589ECB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:82:5c:82:ca:6e:4b:9d:67:50:5c:52:03:23:
30:d1:d8:7d:1e:7b:cd:1f:22:2b:31:1d:3e:3d:73:
fb:89:61:de:c3:4c:08:41:4b:cf:a9:1d:2c:6c:42:
8e:7e:85:4a:b7:9e:3d:04:c6:83:5f:f5:4d:f1:e9:
29:4d:76:ac:ac:02:2a:2e:bc:8c:11:86:4b:00:12:
8d:8b:9c:ca:e0:af:02:17:cc:db:8c:6f:99:ce:1a:
bb:20:16:af:a5:d4:b9:c3:56:de:8e:76:34:0a:43:
a8:ec:e9:c5:6d:55:d7:7f:b1:26:bc:83:cc:35:b5:
64:2b:f7:73:29:bb:80:1a:9e:5d:fc:8d:6a:2b:4a:
1c:d4:2e:04:38:1c:42:f8:43:40:25:01:3e:b4:09:
b3:be:e6:aa:e6:49:98:6e:50:3d:01:4a:b9:f5:ec:
1f:b0:5b:10:5f:4f:b7:24:bc:76:76:30:94:6d:3d:
72:11:a7:19:1c:10:94:2e:a9:2f:3b:71:85:a9:79:
d2:6f:ea:a1:08:a3:d0:02:b6:32:d4:46:fc:a9:8f:
9e:d5:cf:98:31:48:21:a4:a4:d1:40:6a:8e:82:d0:
f3:a3:dc:a2:eb:12:30:a4:45:39:a9:00:b3:19:da:
f7:5d:f9:e7:ba:71:cf:91:0b:5b:36:4e:e6:a5:c3:
b4:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:54:E7:8F:FA:29:7D:00:07:4E:78:AD:0B:07:E1:2E:FB:58:9E:CB
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/352e3138312e3138342e302f32342d3234203d3e20323131333733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.184.0/24
Signature Algorithm: sha256WithRSAEncryption
51:9c:61:ee:3e:a2:af:1f:b6:84:d9:61:a8:8a:cc:b5:e9:9a:
50:b6:51:a8:30:0a:59:6c:42:43:ad:17:fb:40:83:10:ff:5f:
1a:e8:71:d4:37:2b:21:61:36:12:a9:47:22:42:d5:bc:b7:12:
c7:dc:3b:22:88:aa:73:2a:b3:b4:59:c5:8e:72:c9:7b:e1:9d:
89:73:b5:7b:fb:28:de:5b:23:4a:5e:70:19:7d:c8:c7:d9:85:
a5:f5:9c:98:04:5c:06:7e:d9:63:d2:bc:0b:a0:f6:02:52:ea:
05:9b:4d:a2:12:64:be:d4:04:c7:77:ed:9c:00:25:82:71:d5:
d6:aa:6a:cb:d2:5c:19:e0:8f:d6:33:cb:3f:4a:e7:eb:78:0e:
9a:db:66:24:74:7b:c7:68:96:a3:0e:da:c9:0c:8b:fa:5d:b2:
cd:58:82:94:97:ed:87:7d:31:78:9c:98:d0:fd:0e:f4:5a:58:
57:dd:84:70:3c:ad:b2:f0:bf:1f:a7:a4:03:78:39:18:ab:55:
9f:e0:a1:9b:87:3f:46:07:c6:4a:e6:70:ae:d3:61:14:4e:16:
06:82:97:60:d9:41:5a:52:52:18:62:32:e8:eb:7f:9e:4f:ff:
21:4b:1a:de:9d:1d:3b:10:f8:e9:2e:33:35:47:74:5c:fa:8c:
a3:b4:70:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 08:58:37 2024 by rpki-client on console-ams.rpki-client.org