Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139332e36362e302f32332d3332203d3e203531313637.roa
File: 3138352e3139332e36362e302f32332d3332203d3e203531313637.roa (raw, json)
Hash identifier: 7+rPKoOkOmBA2VdaW2/x1qzf4+q+pJRhUVE5dcX7jqQ=
Subject key identifier: F4:F7:6B:E2:F2:3B:3E:F9:7D:40:8F:D7:2F:FB:67:47:66:18:72:86
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1E00C7944ED2D15C5D9B3FC7E3EE47D7C372B242
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139332e36362e302f32332d3332203d3e203531313637.roa
Signing time: Fri 20 Oct 2023 13:41:54 +0000
ROA not before: Fri 20 Oct 2023 13:36:54 +0000
ROA not after: Fri 18 Oct 2024 13:41:54 +0000
asID: 51167
IP address blocks: 185.193.66.0/23 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:00:c7:94:4e:d2:d1:5c:5d:9b:3f:c7:e3:ee:47:d7:c3:72:b2:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:54 2023 GMT
Not After : Oct 18 13:41:54 2024 GMT
Subject: CN=F4F76BE2F23B3EF97D408FD72FFB674766187286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ac:82:53:aa:fc:e1:db:a3:5f:c3:e9:24:89:
91:b7:19:28:cf:91:69:ba:c8:de:fb:f7:83:59:51:
49:64:46:d4:68:77:05:bf:87:06:f4:f7:c4:f6:4b:
01:b3:f8:e7:a8:55:fc:84:18:9b:30:9d:46:6d:db:
a6:bd:7c:2b:d5:ce:00:a5:78:b7:54:95:60:9d:fe:
d7:6d:f7:cf:95:a4:5d:7b:3c:99:53:d1:3a:7a:29:
fa:cf:67:5d:09:7e:75:bd:94:e7:3e:2d:8b:fe:e3:
5f:31:31:5b:e3:eb:af:16:c4:e1:08:89:2b:14:1a:
b2:a1:ad:f2:08:6c:4b:fb:64:2f:f2:77:47:4e:ff:
82:7d:b1:fa:69:d6:43:b7:a7:45:80:88:ba:16:03:
a8:03:5d:8a:a8:70:6b:da:66:df:f0:24:a8:8f:3c:
4a:3b:03:74:b3:fa:62:dc:29:b8:c1:a5:8c:85:a8:
2a:fe:c0:35:a2:f9:17:2f:6d:69:9c:09:4c:56:54:
c9:8f:60:cc:48:99:d9:4a:ea:b6:55:8c:a9:c9:05:
bd:e2:52:3d:38:c8:f7:71:13:d1:bc:bd:93:98:c0:
3e:55:23:41:96:50:dc:af:66:fe:53:4c:7e:38:d1:
45:a9:cd:df:6c:d5:19:56:c9:3e:8c:8f:34:c0:72:
d5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F7:6B:E2:F2:3B:3E:F9:7D:40:8F:D7:2F:FB:67:47:66:18:72:86
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139332e36362e302f32332d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.66.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:16:cb:da:d6:a1:34:d8:e3:ec:34:cf:6d:68:a2:4d:26:a6:
af:30:1d:23:a0:13:89:97:ec:77:bc:fe:b0:aa:5d:63:09:f0:
5c:23:58:e1:e9:17:37:d2:0f:f5:a1:8f:ec:8e:8f:a7:9d:9c:
29:c2:ee:f5:cf:3d:fb:7b:fe:3c:b2:d4:35:e9:8f:e5:68:d0:
7c:9f:af:e8:ad:1f:32:c9:7f:72:78:dd:ef:8c:80:19:16:1d:
2f:7b:bf:02:ea:96:f6:31:31:13:7f:84:75:c8:b6:88:cd:c0:
5a:41:75:43:3b:75:54:cf:a9:2d:5f:10:4a:a5:6b:ec:f9:d6:
7b:2c:e1:71:e3:fc:bb:cc:f7:8e:f0:52:f7:c1:24:90:ca:23:
f4:eb:ca:90:49:a8:ba:ce:c3:34:b2:85:cc:69:91:2e:e8:80:
a4:58:0f:76:59:99:3c:55:9f:aa:4d:15:ed:6a:6d:c2:d3:7e:
fb:72:81:b1:7b:54:6c:ba:01:fc:71:9b:9b:4d:62:3d:40:40:
9c:9f:e1:cb:53:b9:75:72:76:6d:ca:0d:19:e8:14:b3:0f:39:
2d:4d:c3:5b:dd:c3:3a:45:d4:a1:78:bd:3e:a6:a8:94:74:67:
6e:d4:41:62:ae:cb:80:e4:7f:1a:0f:56:5a:3e:22:ae:cb:14:
23:08:7e:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 13:47:06 2024 by rpki-client on console-ams.rpki-client.org