Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230322e3233382e302f32332d3332203d3e203531313637.roa
File: 3138352e3230322e3233382e302f32332d3332203d3e203531313637.roa (raw, json)
Hash identifier: MmEIic1RbYCYeocIDEubw6X4ucw2Gw3T5IKd5H0HkbU=
Subject key identifier: CD:28:4D:B8:27:A8:40:67:2B:38:35:74:7F:7A:0B:E4:0A:00:DE:C7
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6B8D8AA29F1DFFCC2BE968B8B9804A92E6DA63CF
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230322e3233382e302f32332d3332203d3e203531313637.roa
Signing time: Fri 20 Oct 2023 13:41:47 +0000
ROA not before: Fri 20 Oct 2023 13:36:47 +0000
ROA not after: Fri 18 Oct 2024 13:41:47 +0000
asID: 51167
IP address blocks: 185.202.238.0/23 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 16:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:8d:8a:a2:9f:1d:ff:cc:2b:e9:68:b8:b9:80:4a:92:e6:da:63:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:47 2023 GMT
Not After : Oct 18 13:41:47 2024 GMT
Subject: CN=CD284DB827A840672B3835747F7A0BE40A00DEC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e4:0f:f2:95:fd:a4:da:98:d7:72:23:67:5c:
c7:8a:32:ed:53:23:d3:35:87:9d:50:c0:e2:ca:aa:
9c:fc:a1:ed:46:d0:b9:73:cb:d9:56:25:cc:78:27:
af:93:c2:dc:8d:4f:0e:ae:30:16:38:9f:aa:31:ca:
b5:7e:3a:3d:0e:15:a6:6a:91:7f:2a:27:76:9c:53:
12:bf:fa:c3:9e:4b:5f:96:2c:19:d9:cb:7f:34:3c:
38:b6:73:41:ce:65:b8:e1:22:70:30:17:c6:82:75:
8b:29:95:fd:76:9d:8c:e1:27:7f:2c:21:1c:2a:a5:
fd:82:44:0f:de:d8:96:df:2a:d0:6d:bd:fc:bf:93:
02:2d:cd:5b:1a:cd:21:2d:f1:dd:10:65:24:8c:e4:
a8:4d:66:5a:8d:cb:f6:26:e3:90:0b:47:09:de:9f:
1a:db:f1:76:6e:b4:a8:a9:67:4a:31:76:f2:69:b4:
dc:2d:b2:b5:30:16:74:e2:82:7a:66:92:42:3f:9a:
2a:b4:15:14:1b:65:e3:65:57:e2:11:47:9a:ad:0b:
62:97:e3:dd:5b:3f:7f:d5:ff:0f:ad:5c:f4:a5:54:
53:41:4e:de:e2:92:79:12:13:4f:97:94:e7:b1:0e:
91:2e:45:f9:9a:44:31:fd:b0:3e:cd:70:38:9e:93:
35:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:28:4D:B8:27:A8:40:67:2B:38:35:74:7F:7A:0B:E4:0A:00:DE:C7
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230322e3233382e302f32332d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.238.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:9e:6e:4a:00:48:71:b7:0e:a2:04:ed:63:32:bb:41:ee:98:
04:c9:f4:c8:ae:4c:7a:33:a2:49:45:a8:df:da:47:74:40:81:
a6:53:36:c9:5c:3d:c9:a7:f0:ff:54:21:5e:3f:f9:6a:13:61:
67:1b:fe:6e:5f:6d:b0:c5:19:fa:ef:44:8b:b2:da:0a:2b:ce:
f5:23:09:ce:ca:35:3e:75:5d:7a:b7:5f:76:72:cb:3b:0e:f1:
4e:61:2c:51:a9:23:1a:67:cb:28:e1:89:f9:50:f0:b4:34:ea:
d7:0c:37:b0:d8:fb:aa:ed:ba:80:dd:cd:02:32:98:bd:b3:a0:
d9:b1:5c:af:d3:9b:d2:f7:1a:db:3d:8f:27:a1:51:0b:51:da:
b4:b0:95:9b:d5:d8:e4:2d:74:9a:fe:52:a0:33:9c:82:c7:14:
ed:8f:e8:b5:be:a2:0d:1c:58:4c:59:64:70:25:fe:98:f5:e4:
f0:c6:0f:fb:7b:20:d0:39:66:c5:de:7e:b1:31:3f:bc:ee:be:
2e:41:7a:49:72:d4:d0:db:a9:b8:b2:e2:e5:45:45:f1:24:bd:
08:da:5f:9d:ba:94:23:07:16:f0:64:36:59:b0:40:a3:05:c6:
c1:fd:fb:3f:66:08:13:03:7b:1d:ca:ee:9d:12:76:d6:53:17:
5b:3e:02:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 19:28:04 2024 by rpki-client on console-fra.rpki-client.org