Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230372e3235302e302f32342d3332203d3e203531313637.roa
File: 3138352e3230372e3235302e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: ZRHXf/7kJSo43XHkeCwgyfwIojjQ6l5tqIo1OjKdwjA=
Subject key identifier: 14:BB:38:53:2E:24:C9:E2:94:C7:FF:48:12:5A:0A:07:50:93:10:3F
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 27B85A309A8DDD9D600B4E191CC9E4B9245E18D1
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230372e3235302e302f32342d3332203d3e203531313637.roa
Signing time: Fri 20 Oct 2023 13:41:43 +0000
ROA not before: Fri 20 Oct 2023 13:36:43 +0000
ROA not after: Fri 18 Oct 2024 13:41:43 +0000
asID: 51167
IP address blocks: 185.207.250.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 16:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:b8:5a:30:9a:8d:dd:9d:60:0b:4e:19:1c:c9:e4:b9:24:5e:18:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:43 2023 GMT
Not After : Oct 18 13:41:43 2024 GMT
Subject: CN=14BB38532E24C9E294C7FF48125A0A075093103F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:47:42:12:c0:a2:06:15:6a:f8:75:e2:c5:31:
b0:f0:a7:f8:8c:81:2f:f2:25:f6:01:bf:af:42:ad:
fb:4c:96:25:86:19:5b:ed:6b:13:a3:20:91:30:a7:
5c:26:e4:3c:ec:a4:0b:fc:ae:d0:72:0a:ee:de:e6:
77:c2:ec:79:1c:11:19:ee:32:b9:dd:46:97:c0:94:
69:6c:19:d3:e2:58:ad:3c:c4:54:24:09:d8:ab:b3:
15:14:78:cb:a1:bb:54:8c:af:a5:ef:3f:a5:cf:f4:
33:39:80:f4:e7:8c:4d:0a:76:fd:00:ee:d1:ef:a5:
c0:2c:a7:5f:14:84:69:77:78:d1:81:2e:ae:f8:e5:
3b:83:58:af:0f:c6:1b:ba:5a:d6:87:96:3c:fc:a0:
9c:ba:ff:6a:42:d0:64:3c:a1:16:18:ae:6f:c7:31:
98:55:b5:e7:9e:e9:b1:90:64:9b:39:bb:ee:7c:7c:
0c:3f:dd:cb:73:43:c3:aa:d5:12:4c:1a:5c:77:55:
2e:db:aa:46:aa:57:7c:1a:48:4e:19:92:12:87:5a:
bb:b2:50:70:f8:89:1d:24:0c:9a:fe:ab:cd:d9:f3:
6f:2a:4a:00:49:46:84:5a:35:86:44:d6:44:76:c0:
82:bc:15:66:06:20:39:29:38:f9:be:87:fd:53:99:
21:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:BB:38:53:2E:24:C9:E2:94:C7:FF:48:12:5A:0A:07:50:93:10:3F
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230372e3235302e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.250.0/24
Signature Algorithm: sha256WithRSAEncryption
77:83:31:8b:88:f5:ec:a7:de:00:99:a7:e2:8e:7c:46:60:b8:
10:12:c3:2c:69:30:4c:1a:da:9d:4d:cf:5d:fe:04:ad:e7:b6:
ea:e1:2a:fe:89:e0:a5:1d:be:52:b0:5a:2d:10:72:28:6a:87:
f1:69:33:61:6d:6d:1c:18:ea:58:b8:b8:bd:a7:d4:43:61:d8:
f0:0d:96:4a:b8:c2:39:41:e3:ed:ab:a6:ea:26:92:db:db:e3:
fe:74:ae:9d:55:51:00:bd:fc:38:a6:ef:cf:b1:1b:d2:44:2d:
6b:26:99:02:2b:e2:5e:ad:58:d9:e4:6d:73:31:33:f7:32:80:
eb:92:ac:30:f7:d5:7f:91:b8:71:f7:ab:c3:ad:c0:cb:3d:d4:
92:c8:44:f5:1f:30:f0:16:77:f3:ef:59:bf:ea:d1:90:21:d7:
6e:02:8c:7a:bc:16:c4:1f:ec:7e:51:be:3c:28:45:0a:f5:3b:
66:a0:9a:03:35:51:e8:4d:f0:93:ff:f2:08:d6:9d:43:c8:12:
52:31:22:91:88:8b:b9:79:3b:3a:bc:46:c7:98:06:9d:56:25:
87:80:40:f3:4a:6b:37:bd:0f:e6:91:95:0d:f6:59:cf:4d:ae:
b9:86:e8:03:00:a8:d6:97:4e:2c:ac:57:c5:c5:21:01:d3:6d:
0e:11:9a:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 19:28:04 2024 by rpki-client on console-fra.rpki-client.org