Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e38362e302f32342d3234203d3e203633343733.roa
File: 3137362e3132362e38362e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: 8Nd8Xw/hIFKZpk5OJi6YBGy/KtyM0rhdlrjjlod5/gg=
Subject key identifier: D5:9F:28:9C:23:AD:9B:19:79:22:94:BC:ED:EF:2C:FB:7A:E0:C3:16
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 694C62B46AAC9AC3B55DAADB9FF4B1FEC883D345
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e38362e302f32342d3234203d3e203633343733.roa
Signing time: Sun 20 Aug 2023 07:15:44 +0000
ROA not before: Sun 20 Aug 2023 07:10:44 +0000
ROA not after: Sun 18 Aug 2024 07:15:44 +0000
asID: 63473
IP address blocks: 176.126.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:4c:62:b4:6a:ac:9a:c3:b5:5d:aa:db:9f:f4:b1:fe:c8:83:d3:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Aug 20 07:10:44 2023 GMT
Not After : Aug 18 07:15:44 2024 GMT
Subject: CN=D59F289C23AD9B19792294BCEDEF2CFB7AE0C316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ee:57:bc:c5:3c:82:81:fc:6e:74:b9:ae:68:
46:1f:39:00:49:cf:c0:35:b7:6d:49:88:d1:3f:b4:
79:b0:69:e5:96:28:c8:11:55:fb:62:03:6d:c1:69:
c2:31:9a:63:10:16:4d:36:32:ee:f3:1d:a9:44:3f:
31:85:ad:85:e0:f0:33:4e:d9:c8:99:3d:de:fe:9c:
78:73:9c:87:f4:6a:2e:a7:40:48:ee:91:43:50:27:
8d:5d:0d:06:22:2c:7f:b6:3e:2f:95:4b:35:fb:0c:
e8:b8:ff:3a:7d:c4:ff:1e:3a:e0:bc:e7:1d:39:94:
71:be:18:4e:d9:f2:9e:62:47:f2:43:31:ad:a0:76:
e3:f4:d0:7a:20:85:38:8f:01:95:a7:59:3f:e9:e4:
58:0f:d3:91:8d:df:10:05:6d:7e:37:74:86:6c:42:
bb:ae:64:e5:e2:fe:22:e9:ee:5c:9b:c0:3d:c1:b8:
c3:dc:b6:93:d8:e3:69:17:19:c1:e0:fd:2b:a3:7f:
21:85:04:54:92:da:4f:99:24:cb:a1:df:a1:e7:45:
10:53:fe:ee:48:e3:86:f1:eb:8b:7c:96:01:25:37:
0a:cd:e9:6a:3e:ca:36:a3:1d:f9:7d:10:76:67:5d:
bd:37:6e:d1:cc:9c:33:b8:c5:94:7a:58:bb:92:c0:
12:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:9F:28:9C:23:AD:9B:19:79:22:94:BC:ED:EF:2C:FB:7A:E0:C3:16
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e38362e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.86.0/24
Signature Algorithm: sha256WithRSAEncryption
35:a6:7d:0a:cf:4c:1c:25:3a:03:d6:b3:07:98:25:8e:80:33:
88:45:2b:06:50:a3:ab:96:17:ad:a0:0f:a1:08:9a:8d:a3:a0:
3e:9f:a4:2c:47:a8:8a:4f:37:bf:df:72:89:67:96:ce:27:b8:
28:0d:24:62:f6:d2:eb:86:62:fa:48:f8:df:30:c1:f5:47:8e:
58:d3:83:29:59:3f:60:10:23:eb:51:78:7f:f8:86:6c:cd:84:
ef:1a:74:27:1a:8c:9c:95:7f:27:38:ac:95:a8:44:1c:11:d7:
54:51:81:cb:fa:3b:26:eb:d9:ec:ce:69:03:83:c4:1d:02:1a:
94:30:e8:8d:f5:44:c9:74:02:0b:64:3a:f7:0d:15:5b:a7:3f:
a2:81:49:f3:05:a4:bd:57:e0:f8:d7:d4:3c:81:eb:9f:17:66:
49:ce:ba:0f:73:14:5a:1f:da:64:fb:a5:ad:3f:9d:b3:35:d5:
f2:6e:b8:90:27:9e:3a:07:c3:9f:05:68:7b:92:3b:92:a1:1c:
1e:87:80:d5:e3:3a:ab:20:a4:32:54:c9:1a:41:5d:19:00:f8:
10:28:52:b2:76:ff:7e:25:d3:04:a5:e5:59:4a:5b:60:76:76:
92:bd:b9:ad:05:20:80:9d:f5:24:3f:7e:49:95:b1:b8:75:c5:
4f:07:dd:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 13:47:06 2024 by rpki-client on console-ams.rpki-client.org