Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139372e3139342e302f32332d3332203d3e203531313637.roa
File: 3138352e3139372e3139342e302f32332d3332203d3e203531313637.roa (raw, json)
Hash identifier: Wj5jr+6GZalkXJq/hvbc4FQchSwcgxAoNMC7JVMdHp8=
Subject key identifier: 21:AD:A1:17:E9:40:BF:F5:C5:AA:E7:94:49:86:CD:1D:AE:E5:A8:A4
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 08825790F7EBF3F8FBA837BD25253369DDAF8DB2
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139372e3139342e302f32332d3332203d3e203531313637.roa
Signing time: Fri 20 Oct 2023 13:41:48 +0000
ROA not before: Fri 20 Oct 2023 13:36:48 +0000
ROA not after: Fri 18 Oct 2024 13:41:48 +0000
asID: 51167
IP address blocks: 185.197.194.0/23 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 16:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:82:57:90:f7:eb:f3:f8:fb:a8:37:bd:25:25:33:69:dd:af:8d:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:48 2023 GMT
Not After : Oct 18 13:41:48 2024 GMT
Subject: CN=21ADA117E940BFF5C5AAE7944986CD1DAEE5A8A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:34:36:61:22:e5:48:cf:98:92:47:d4:e6:98:
5b:99:36:71:1d:40:69:94:b0:28:9a:e6:79:7d:20:
26:f0:cc:24:29:c8:4d:dc:1d:53:db:03:90:36:7a:
09:94:88:b5:f3:fa:7f:fb:d1:9f:8e:9d:95:b7:c1:
9f:8b:61:e1:2d:36:29:d2:62:fe:41:4c:4f:b4:1e:
1b:21:75:22:7f:11:70:96:19:d7:03:7c:f8:a0:91:
b1:34:39:53:97:ca:11:65:0a:10:c1:99:7c:4c:23:
1a:c6:61:85:e9:1f:eb:7b:c0:cf:87:fe:38:ed:f5:
b8:73:fa:c0:ae:c0:f1:a2:2b:73:c4:2f:b4:16:fe:
ed:95:50:e4:d1:1d:98:17:5a:7a:9f:6d:64:a2:1d:
a5:74:74:76:6f:46:3f:f5:66:22:5e:8a:e3:c7:ad:
0a:09:c7:c3:26:40:5c:9c:5e:64:fd:75:a0:7e:c0:
1a:92:b4:f7:89:d4:6a:43:04:4c:b3:0d:63:75:24:
3d:ff:2f:1b:65:8e:2e:67:94:76:ea:63:d3:b3:fc:
12:4a:d6:6c:04:59:bc:88:62:34:cd:e6:f7:35:cc:
7d:c7:8b:b1:b1:fd:9c:1d:61:8d:62:9b:cd:6f:b5:
a2:82:ab:e5:3a:5f:87:bb:1e:1d:63:6e:6f:6a:1d:
90:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:AD:A1:17:E9:40:BF:F5:C5:AA:E7:94:49:86:CD:1D:AE:E5:A8:A4
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139372e3139342e302f32332d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.194.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:db:06:c8:ee:56:03:1e:37:c1:1c:0e:57:31:21:9a:39:b8:
be:53:e2:0c:2d:9d:17:8a:17:6d:e6:bd:5c:37:75:ad:c9:22:
25:43:58:70:c2:ea:2e:1a:99:f6:82:ad:cf:32:0c:6c:c1:8d:
20:d4:87:9f:54:71:fe:ea:07:63:68:ba:6d:eb:61:11:c1:b7:
17:20:e0:89:42:46:92:4b:4b:21:19:c0:c5:7d:d1:ab:dc:ea:
f5:c7:df:2c:aa:c8:92:b2:12:7f:f2:02:22:d6:7a:19:90:38:
d1:6e:51:7e:c9:13:d0:74:2f:7d:07:2f:1e:cc:8f:29:e2:49:
df:04:32:7c:3e:a7:e4:2b:f0:6d:d1:b8:16:40:6b:03:bb:b6:
f9:b0:4b:06:54:f5:e0:cf:6d:dd:45:8c:3f:9f:3b:05:a2:4a:
a2:2a:a4:0a:3c:df:81:8d:cf:4b:2b:8d:36:11:5c:e8:a5:0e:
51:70:96:70:22:4c:86:83:c0:14:51:43:7c:9b:90:b7:5d:56:
3c:6b:35:b6:25:4a:c1:7d:24:9e:8f:be:81:eb:cf:c8:63:bd:
8f:81:58:58:84:98:5d:b9:7c:be:df:00:13:19:f5:2f:18:48:
7f:c4:61:1a:52:f0:8b:08:7f:ac:b6:9e:c2:63:0f:3d:4c:79:
e4:97:0e:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 20:18:10 2024 by rpki-client on console-ams.rpki-client.org