Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138322e3138342e302f32332d3332203d3e203531313637.roa
File: 3138352e3138322e3138342e302f32332d3332203d3e203531313637.roa (raw, json)
Hash identifier: UZuks953dCQ5YRKpyHSs6X2KWyIIqv/yEbatEsHWGFw=
Subject key identifier: 64:86:56:42:00:12:F8:FC:84:CD:03:29:4A:E5:2A:68:91:1F:4D:E1
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 7E8B42659DF22BDC93339AE50203C1FB29EBA4AC
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138322e3138342e302f32332d3332203d3e203531313637.roa
Signing time: Fri 20 Oct 2023 13:41:58 +0000
ROA not before: Fri 20 Oct 2023 13:36:58 +0000
ROA not after: Fri 18 Oct 2024 13:41:58 +0000
asID: 51167
IP address blocks: 185.182.184.0/23 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 16:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:8b:42:65:9d:f2:2b:dc:93:33:9a:e5:02:03:c1:fb:29:eb:a4:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:58 2023 GMT
Not After : Oct 18 13:41:58 2024 GMT
Subject: CN=648656420012F8FC84CD03294AE52A68911F4DE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:03:de:b5:2b:46:26:ec:1e:00:b4:62:c5:fc:
9d:b9:0f:9d:de:f1:ff:40:f2:20:fe:b9:72:22:05:
1b:ed:82:ab:00:f7:42:4c:67:02:d6:ff:ed:bd:99:
5d:7a:9e:72:ee:d1:06:dc:d2:fc:d5:e7:d1:a3:38:
0b:6d:3e:72:6c:ac:e9:d7:89:3b:e5:7d:ae:ca:9a:
e0:90:7d:3f:7b:1f:23:09:b9:7f:5b:7a:4a:27:f6:
99:d6:6e:2f:2c:32:45:85:d4:f5:eb:df:8a:e6:78:
58:56:8c:cf:62:5c:87:6f:90:3d:b1:84:8c:c8:d3:
b8:6d:c4:2a:da:bf:f2:2a:57:d8:70:5e:17:3d:2c:
65:61:1c:1c:24:de:b7:2d:31:69:5d:f3:71:2b:53:
00:2e:a1:e6:ed:cf:a2:c8:02:9e:6b:7a:91:8f:06:
48:c9:63:f4:b6:bc:0c:58:e5:fa:0a:01:ed:da:95:
c3:e1:91:6d:b9:7b:d7:92:59:fb:65:2a:c9:7a:fa:
0b:7f:13:30:e3:76:1d:e2:fd:44:28:25:20:28:13:
85:fb:5c:cd:96:5b:ed:4d:69:07:34:f6:87:04:f6:
99:88:7e:c6:59:53:00:b6:cc:14:15:9d:62:09:fb:
d4:ec:d5:03:db:2a:7a:39:69:66:96:38:1a:fd:76:
45:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:86:56:42:00:12:F8:FC:84:CD:03:29:4A:E5:2A:68:91:1F:4D:E1
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138322e3138342e302f32332d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.184.0/23
Signature Algorithm: sha256WithRSAEncryption
76:f3:6a:85:1c:63:d5:3b:05:3e:49:ce:0c:7e:42:43:50:bc:
2f:3c:3a:70:a6:98:0a:11:5e:88:7f:3a:f9:44:45:a4:08:a7:
a6:52:13:70:37:ca:50:44:b6:27:5b:c2:a5:86:36:d2:2c:3d:
b8:1f:01:d5:7d:4a:ec:ac:bf:93:00:9f:19:ce:f3:61:bf:79:
6e:a0:eb:28:08:15:df:b9:cc:cd:b6:92:8a:16:74:3f:55:54:
1b:8c:40:2a:76:8a:46:70:69:eb:81:33:fb:cc:0f:33:a5:e3:
b1:74:bb:71:ee:de:d6:91:89:02:2c:d8:78:db:5f:f0:02:86:
be:82:aa:71:46:1a:a0:c7:dd:28:27:ce:6e:2c:a1:7d:d6:42:
2e:9e:73:3f:e8:0f:ee:31:b2:db:c9:00:90:26:07:ad:ae:e4:
12:c5:05:18:f6:21:f3:7a:17:f4:0f:da:b0:13:ec:ea:d6:15:
df:e9:01:55:7d:c6:bb:1e:ce:21:9c:31:25:1a:6a:45:60:cb:
93:b1:4e:26:cb:e6:a8:cb:e7:28:53:3b:86:99:5a:38:e1:44:
7d:77:bb:8c:41:0e:86:e1:c2:06:23:80:90:34:20:26:28:90:
e9:ad:40:2d:3e:2f:7a:86:29:14:12:0b:73:cd:ed:79:f2:3b:
18:05:b4:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 19:28:04 2024 by rpki-client on console-fra.rpki-client.org