Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3136382e302f32312d3234203d3e203430383631.roa
File: 3137382e3230382e3136382e302f32312d3234203d3e203430383631.roa (raw, json)
Hash identifier: oQjWNRf0cgCVIEQgGA3kxn4S5Jmbnb7Gn9nQ6ptSjLY=
Subject key identifier: B0:22:35:9A:9A:10:EC:44:68:4A:AA:66:3F:FE:43:4F:70:41:27:61
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 133D7AF89413196F9437C296738D5B2BD6C90697
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3136382e302f32312d3234203d3e203430383631.roa
Signing time: Thu 26 Sep 2024 19:43:22 +0000
ROA not before: Thu 26 Sep 2024 19:38:22 +0000
ROA not after: Thu 25 Sep 2025 19:43:22 +0000
asID: 40861
IP address blocks: 178.208.168.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 06:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:3d:7a:f8:94:13:19:6f:94:37:c2:96:73:8d:5b:2b:d6:c9:06:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Sep 26 19:38:22 2024 GMT
Not After : Sep 25 19:43:22 2025 GMT
Subject: CN=B022359A9A10EC44684AAA663FFE434F70412761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ea:e3:e6:b4:65:99:fd:9b:25:12:f4:da:7c:
f7:30:17:a5:1b:c3:fb:b7:a6:2c:09:6c:11:d6:26:
1d:3e:a5:e7:5e:2d:09:d6:56:37:0f:6c:0d:1f:e0:
b2:28:63:fa:10:85:e7:6f:de:22:87:85:00:99:ec:
6a:e1:09:97:66:06:de:34:de:5b:c9:11:b6:75:e1:
da:de:e3:f8:48:3a:ee:18:61:79:cf:78:0b:47:4c:
0c:18:a8:85:f2:e0:a8:95:19:e1:49:9e:e6:00:ae:
b4:2c:51:f8:d1:04:77:60:47:3b:2a:9d:73:2f:51:
b3:2e:e9:df:ee:28:13:71:d6:21:60:c3:99:42:a0:
75:a3:c3:66:f6:ea:e5:5c:36:6e:a1:f3:3a:b1:b0:
66:ca:b5:b8:71:e8:fe:18:9c:68:c6:87:1a:80:80:
5a:62:c4:d8:43:57:56:77:7f:e1:5f:0d:da:02:f6:
f6:25:03:f5:41:25:5f:98:5b:39:fe:65:13:77:5c:
8e:30:45:03:c7:2e:9d:5b:2b:e4:ea:6d:ea:8b:76:
d9:3c:45:39:4a:51:64:1f:0b:d1:5b:4e:b5:d0:71:
41:e7:7e:0f:12:74:7f:a5:a4:f3:a1:bc:54:66:1e:
50:cc:4f:ca:ae:a2:f9:8e:f4:39:d4:43:1d:b8:59:
b2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:22:35:9A:9A:10:EC:44:68:4A:AA:66:3F:FE:43:4F:70:41:27:61
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3136382e302f32312d3234203d3e203430383631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.168.0/21
Signature Algorithm: sha256WithRSAEncryption
39:07:a0:e5:f3:74:0d:73:f7:d7:36:c9:77:f2:37:d5:83:11:
27:78:e9:7d:4d:0a:f8:1e:59:3f:58:b3:4a:e0:a1:ae:fc:c0:
18:01:31:75:4a:12:c1:61:66:55:8f:04:63:07:de:23:0e:a3:
b4:01:44:42:25:13:0b:4f:f9:4e:aa:10:b9:68:89:87:74:a8:
3e:30:9a:49:3b:8c:8c:98:21:92:0d:fc:e0:11:60:64:ed:5f:
70:57:1a:7a:97:ea:bf:73:0e:d1:f3:65:db:a8:1f:64:ad:57:
71:6f:44:10:7d:3c:80:0e:1e:21:09:5a:60:af:e3:a9:da:03:
53:4e:b8:2f:96:25:de:77:4e:77:17:f7:01:15:14:57:1d:2b:
ca:90:c7:fb:57:d2:93:c2:9c:de:67:49:2f:3b:d8:b4:12:7c:
e3:34:ef:45:7d:ec:47:91:21:a7:7f:79:96:22:59:e6:ac:dc:
71:b2:98:b1:66:ec:ff:c9:f6:28:50:6e:25:ab:2e:0d:65:06:
8c:6b:33:33:12:4f:4f:f2:94:a4:93:0b:5d:a3:82:32:01:16:
e8:ec:29:c9:de:f9:d5:33:6d:60:07:50:08:bc:b0:eb:63:83:
8b:7a:43:72:44:ad:b4:8d:60:0a:57:2b:df:02:60:d8:de:6d:
3f:36:30:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 12:03:44 2024 by rpki-client on console-fra.rpki-client.org