Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e31342e3135322e302f32322d3234203d3e203437353833.roa
File: 3134352e31342e3135322e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: CGvJCgYYwWMmC3iq8h3GF4gojGpThfZCMi5svPwyPSo=
Subject key identifier: 14:CC:CB:2F:C6:27:F4:1E:EA:D3:59:B5:8C:0B:5C:4A:8D:8C:07:9F
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 7E59ABCC0334F899B703825DE6068F271B46488F
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e31342e3135322e302f32322d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:53:18 +0000
ROA not before: Mon 26 Feb 2024 08:48:18 +0000
ROA not after: Mon 24 Feb 2025 08:53:18 +0000
asID: 47583
IP address blocks: 145.14.152.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:59:ab:cc:03:34:f8:99:b7:03:82:5d:e6:06:8f:27:1b:46:48:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 26 08:48:18 2024 GMT
Not After : Feb 24 08:53:18 2025 GMT
Subject: CN=14CCCB2FC627F41EEAD359B58C0B5C4A8D8C079F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:49:b4:c1:9b:8c:87:ed:17:43:4c:16:d5:f3:
52:ed:a1:b6:b1:9b:05:19:09:65:c3:56:96:27:a7:
60:0b:e3:35:af:78:3b:34:fd:af:45:80:c7:48:65:
8d:31:2f:33:88:4e:47:47:57:a5:17:7f:5a:0e:6b:
ce:92:4d:8f:e8:28:12:c1:c4:31:c8:84:40:6a:38:
32:60:bc:eb:1a:7b:0f:0a:b2:cf:ad:d3:05:24:d9:
7d:c9:71:f4:3d:fb:7f:d9:bb:42:cd:99:95:ed:e3:
44:1c:60:b7:93:25:0b:e6:ef:57:87:ff:90:c6:39:
69:e4:e1:bd:f8:47:4f:02:62:08:c0:2c:80:77:a9:
e1:f0:a3:65:15:e9:46:1a:64:8a:9b:7d:ac:43:a8:
67:95:88:36:9c:60:9e:bd:cb:6f:d1:a5:20:e4:a7:
27:7d:17:26:67:dd:ed:a5:1c:16:22:09:d4:69:97:
df:72:a6:9a:cc:8f:1a:98:58:4d:f1:c4:36:0d:9a:
8a:42:08:79:17:f4:a2:1f:11:9d:9e:e1:e1:c7:f2:
9c:1f:6d:d0:57:67:4e:f5:cd:5c:19:ed:43:bd:ba:
73:80:28:34:e6:4f:a6:40:4b:e5:8c:48:ba:04:fe:
a7:dc:60:9d:59:9e:6d:a3:af:5c:26:ee:7d:96:20:
c0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:CC:CB:2F:C6:27:F4:1E:EA:D3:59:B5:8C:0B:5C:4A:8D:8C:07:9F
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3134352e31342e3135322e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.14.152.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:01:75:5d:c4:8f:35:a6:35:c2:34:83:56:df:2a:e4:2b:71:
5f:c1:9e:a4:18:3a:d3:6e:08:c2:96:e4:d6:a3:0e:6b:c9:66:
ac:f5:1e:71:57:0f:a0:58:05:53:6c:95:48:ac:08:47:6c:89:
91:ab:45:5c:1a:af:0c:98:c9:9a:e7:87:5b:cc:26:41:44:3c:
39:82:d6:05:23:60:b2:ad:2b:22:98:9c:0d:2d:58:77:98:53:
0d:11:43:26:71:9b:c0:d5:fc:ca:89:b9:ad:30:4d:80:48:f3:
5e:d4:c7:f4:21:c4:75:49:d4:0a:dd:d1:ef:3a:97:2b:42:c8:
7d:f7:81:a2:f4:7d:af:7a:9d:43:72:48:91:b9:2e:48:90:33:
a9:26:7a:79:a9:51:c1:43:0d:f9:b7:fe:ce:92:49:71:cc:f3:
99:6f:8d:5c:ec:ec:e2:5c:22:a9:05:40:35:6d:83:ae:7b:13:
8e:cd:32:1a:1a:4c:46:dd:26:42:d7:1b:20:ea:dc:00:47:19:
a3:3b:21:24:b1:f6:52:ca:e1:c1:e3:59:78:36:e5:50:ba:8f:
96:97:1c:20:0e:de:1c:08:d4:1d:7e:44:bb:95:22:83:cd:a5:
13:73:6b:30:0b:ef:ce:ad:a0:48:f7:88:5a:5d:f4:70:3f:e2:
5d:7a:18:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 14:35:46 2024 by rpki-client on console-fra.rpki-client.org