Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131392e302f32342d3234203d3e20313336373837.roa
File: 3138352e3137372e3131392e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: mpu14K3xfahxj+7yczO7ZS6Q61wwRdqEKAa52T3bd04=
Subject key identifier: 7D:73:BC:65:19:02:C6:F7:F1:30:8D:8D:97:26:9E:8F:C4:28:92:16
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 3B42E848FF02593B0F61DCCF9DC18352FA084697
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131392e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 12 May 2024 11:03:38 +0000
ROA not before: Sun 12 May 2024 10:58:38 +0000
ROA not after: Sun 11 May 2025 11:03:38 +0000
asID: 136787
IP address blocks: 185.177.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 22:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:42:e8:48:ff:02:59:3b:0f:61:dc:cf:9d:c1:83:52:fa:08:46:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 12 10:58:38 2024 GMT
Not After : May 11 11:03:38 2025 GMT
Subject: CN=7D73BC651902C6F7F1308D8D97269E8FC4289216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:00:a2:63:e4:2f:75:36:de:14:d4:69:11:ab:
ee:2f:81:c8:bb:0f:53:5c:64:d3:a5:ea:3b:d7:a0:
76:1a:4b:27:49:ca:22:e6:67:57:b8:be:f5:89:91:
ef:2d:1a:64:96:fc:ae:ef:29:25:74:45:fc:ff:d2:
36:9b:df:b9:cf:12:95:d6:a6:db:17:36:61:00:b4:
59:91:39:dd:6e:02:9b:e3:38:00:e1:06:ac:04:99:
9b:26:20:94:6a:a2:fb:27:9b:f0:cf:b4:e1:e1:52:
e2:2c:01:9b:c0:e2:86:90:3d:8c:c6:d8:5b:88:28:
cb:e3:71:0a:a8:17:ac:f3:25:f7:1d:e2:46:56:57:
50:68:78:0b:2c:b1:a6:9e:b8:96:31:ee:1c:36:91:
4f:05:3e:ad:49:1e:90:e3:0b:44:85:cf:5c:df:3c:
3a:a3:22:ea:0f:ca:66:c9:8d:13:ea:9b:f5:7d:eb:
86:5f:26:bf:24:24:db:c6:66:85:52:8c:0a:0b:ae:
86:6b:e4:bb:b6:68:a0:f9:20:de:ed:7e:f6:84:94:
34:0f:9e:c1:6e:03:ed:50:f3:8f:6a:bb:cb:a0:8d:
2f:31:07:d3:d8:52:c1:d6:d7:37:6c:72:15:2d:d6:
d2:d5:55:49:c5:a0:9b:b0:ca:44:bb:f5:c5:3a:60:
70:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:73:BC:65:19:02:C6:F7:F1:30:8D:8D:97:26:9E:8F:C4:28:92:16
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131392e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.119.0/24
Signature Algorithm: sha256WithRSAEncryption
62:24:d1:03:10:76:85:73:12:87:9e:28:af:e2:f3:25:01:1f:
0e:2b:95:f8:1c:2f:62:72:48:a9:b7:0d:de:8f:17:12:c9:b0:
c4:54:cd:a7:e3:0b:75:fa:b8:48:9f:d4:07:0e:a3:0d:09:c8:
46:45:71:71:4f:3c:c0:94:d4:45:8a:8d:61:74:53:49:dd:21:
f6:02:6d:5f:ef:66:df:5e:a6:56:47:45:1e:1a:f3:63:7c:b9:
29:dd:ec:56:76:a3:86:e9:76:9b:29:c7:0b:51:96:62:e3:ed:
f0:ac:54:0d:a8:3f:33:ba:62:69:99:e7:d5:59:c3:b3:b0:84:
05:2a:b2:45:89:db:68:69:7b:0f:b1:bf:8a:9e:20:a7:58:d3:
a1:5c:cb:db:c8:43:f7:36:be:8f:fc:4c:c6:b7:83:6b:6f:69:
65:8e:98:63:70:bb:49:6c:14:b8:d1:ad:a3:60:b5:9a:48:83:
fb:17:35:f9:01:59:56:0e:39:ab:76:26:40:a0:98:94:2c:c0:
11:e9:c3:92:02:cf:5b:49:99:aa:8f:8e:87:8e:39:29:c2:54:
d0:f8:41:d7:1e:37:65:90:1e:61:67:a5:e8:6f:43:c6:21:78:
6f:42:92:ed:ca:63:ab:91:fd:9e:0b:fa:69:e4:70:83:17:2a:
f2:c0:28:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 01:41:13 2024 by rpki-client on console-fra.rpki-client.org