Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136342e3131302e302f32332d3234203d3e203437353833.roa
File: 3138352e3136342e3131302e302f32332d3234203d3e203437353833.roa (raw, json)
Hash identifier: ae1mwCmvGzdP64KutgutMSC5sjYzXMxWi9FOSNBgIeU=
Subject key identifier: 6F:78:62:63:B4:07:7F:5E:52:A8:F4:C7:F0:8E:36:8F:4E:9C:E2:82
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 4371B3A6A1FBB98605648A0505E6FF6CA6CCE3F3
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136342e3131302e302f32332d3234203d3e203437353833.roa
Signing time: Thu 13 Jun 2024 10:41:23 +0000
ROA not before: Thu 13 Jun 2024 10:36:23 +0000
ROA not after: Thu 12 Jun 2025 10:41:23 +0000
asID: 47583
IP address blocks: 185.164.110.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 06:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:71:b3:a6:a1:fb:b9:86:05:64:8a:05:05:e6:ff:6c:a6:cc:e3:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Jun 13 10:36:23 2024 GMT
Not After : Jun 12 10:41:23 2025 GMT
Subject: CN=6F786263B4077F5E52A8F4C7F08E368F4E9CE282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f0:d6:5e:ca:7e:6c:79:30:a8:3b:79:63:8d:
7b:5f:a7:f4:7d:2f:84:7e:4e:71:d9:a3:28:3e:88:
e0:47:4a:98:e5:82:d6:a2:93:0f:63:a5:91:7f:d9:
51:43:06:3e:eb:7e:d2:8c:b3:d5:db:40:27:73:63:
54:ca:ca:96:03:7c:eb:35:68:2b:24:84:59:ef:ea:
84:af:5e:0c:bf:f9:92:42:e3:69:a1:40:61:89:72:
02:67:4f:8d:36:11:66:dd:d0:c0:80:60:e9:e7:50:
e2:26:b8:ec:1e:9e:11:ca:dc:03:b7:af:20:e1:1b:
d9:88:a1:be:d1:76:4b:37:d5:dd:fd:79:e3:25:6d:
00:c2:1b:88:40:65:a0:41:13:66:06:3d:66:8d:8f:
1f:8a:8b:04:1b:eb:07:c6:68:54:e5:a9:99:d1:7b:
7a:3a:8c:09:2c:08:d0:5f:fc:a6:34:e9:0a:ca:75:
00:c9:5e:87:61:01:d8:ea:02:1c:09:76:19:0f:57:
c0:61:4e:bf:11:48:a7:36:81:7a:94:da:5b:97:22:
66:e1:fd:4e:4a:96:71:32:fb:bc:64:a6:b9:77:01:
99:d7:fd:12:d5:ee:44:01:95:5a:69:3a:e3:e3:97:
ce:18:8c:26:b0:36:e1:3b:6d:f2:8e:62:00:5f:e0:
bb:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:78:62:63:B4:07:7F:5E:52:A8:F4:C7:F0:8E:36:8F:4E:9C:E2:82
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136342e3131302e302f32332d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.110.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:a7:ce:f0:f7:9c:b3:d6:6f:84:28:0e:1e:10:d2:a2:cb:af:
82:ab:f1:16:6b:6f:bd:26:7f:95:d0:98:0a:41:3d:bd:c8:3b:
87:25:01:ce:02:35:cd:d7:bd:3b:8a:16:73:9e:90:2c:8b:ef:
25:7a:c0:97:a3:af:a8:23:51:3e:f7:33:81:ef:11:45:64:29:
84:5d:5c:7d:6e:e1:9b:33:c1:45:72:1c:e7:c6:a7:3e:a6:fc:
c9:a3:e2:a2:9e:47:ef:e8:52:21:f8:a3:34:c5:f7:bf:8f:dd:
0d:b2:06:26:1f:97:97:a6:3f:85:a4:cb:99:f1:04:23:5e:25:
70:1a:f3:53:9f:52:3d:91:04:a9:38:bf:3d:78:0e:50:d5:6e:
61:4f:f5:c7:c9:82:bc:96:3d:30:88:7d:4a:f8:0c:bb:34:c3:
1d:9d:06:fa:c5:17:b3:0a:ea:2e:6e:98:50:7c:bf:c1:e6:28:
81:2b:d6:20:e4:4f:1b:2a:a0:bf:00:b0:03:4a:11:fb:2e:9e:
a9:26:4d:c4:09:9e:5c:ef:d2:7f:03:ac:0e:a2:2e:6f:e6:e6:
a3:ba:2d:49:03:0e:c5:13:59:91:c3:6b:65:ce:55:ad:c5:bb:
dc:8d:e0:e0:7e:5b:af:77:cd:54:54:4b:1c:75:8d:af:d2:64:
32:39:c9:98
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Jun 23 13:19:28 2024 by rpki-client on console-fra.rpki-client.org