Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3234312e3135302e302f32342d3234203d3e203631333137.roa
File: 3138352e3234312e3135302e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: FwhW98DYMkugGs+QOotqqfyR4rJXQx5jSO+j+GZZMIE=
Subject key identifier: 1F:43:DC:0D:A5:FF:85:AE:84:0A:2E:04:05:01:BE:75:3F:0B:CA:93
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: DC6C5FFE761B4F62060DE4E082CCE80BBA3047
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3234312e3135302e302f32342d3234203d3e203631333137.roa
Signing time: Fri 20 Oct 2023 13:41:48 +0000
ROA not before: Fri 20 Oct 2023 13:36:48 +0000
ROA not after: Fri 18 Oct 2024 13:41:48 +0000
asID: 61317
IP address blocks: 185.241.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
dc:6c:5f:fe:76:1b:4f:62:06:0d:e4:e0:82:cc:e8:0b:ba:30:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:48 2023 GMT
Not After : Oct 18 13:41:48 2024 GMT
Subject: CN=1F43DC0DA5FF85AE840A2E040501BE753F0BCA93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:52:41:0c:f7:57:40:96:d8:b2:50:a3:30:85:
99:d6:89:fb:74:8d:aa:54:cd:18:51:ee:b8:41:da:
27:a5:5a:6a:d8:56:1f:90:45:ee:1b:74:b6:94:ad:
73:db:ea:f1:38:8b:3b:74:15:6f:4c:ce:e2:1c:c2:
a1:07:56:63:ff:79:36:d3:16:b4:37:26:80:d7:25:
35:c3:e4:2a:a2:6b:dd:a4:4b:6b:73:dd:b7:c3:bc:
1b:27:3f:d2:0b:8b:7a:e5:1e:b8:2c:e8:1d:06:50:
a6:d8:5b:cd:64:f6:29:da:b1:73:61:5d:d5:50:5e:
01:c7:07:42:e7:73:06:bf:5a:26:12:c5:a6:8c:ec:
44:5e:12:74:60:90:68:44:3c:a2:bf:0e:13:39:e9:
ce:76:a7:ff:16:21:d1:20:eb:94:d4:e9:54:1b:d5:
24:83:bd:41:30:0d:6e:eb:86:c5:8f:7a:a3:df:ed:
55:0c:61:b2:38:d6:8f:cc:2d:4a:4a:bf:8e:ec:1f:
b2:c0:91:88:ef:c5:9c:50:1e:fa:05:39:11:97:7e:
d5:dc:1b:98:64:12:05:34:44:e8:80:3d:71:b7:04:
20:41:c8:50:99:78:0e:ac:c9:2c:d1:66:da:2b:29:
fc:7c:02:34:5c:ef:0c:ee:54:71:95:bf:be:6b:83:
50:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:43:DC:0D:A5:FF:85:AE:84:0A:2E:04:05:01:BE:75:3F:0B:CA:93
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3234312e3135302e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.150.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:87:46:9d:08:7d:fb:5a:ac:5e:eb:a7:8e:d8:c7:ab:bf:93:
c2:10:93:e0:3a:25:be:5d:fc:1c:77:76:0c:ba:24:2e:62:62:
a2:3b:e0:4d:a0:05:38:ba:a0:18:11:90:eb:76:10:ee:21:c0:
75:80:b0:b0:38:77:0f:63:58:d0:e8:68:93:8a:88:04:f4:a0:
a4:0c:14:cf:08:60:d3:dd:3a:50:18:16:43:e6:e1:5b:45:09:
ed:98:c7:fb:4a:cd:34:c6:53:c0:d4:9d:9a:cf:b5:58:bc:9d:
e7:dc:ae:69:03:b6:9c:c9:48:8b:44:65:4a:88:7b:36:12:5c:
85:a2:80:d2:36:55:40:0a:26:15:58:8f:09:00:0b:2d:2b:dd:
f4:95:36:e3:08:fd:89:3c:db:bf:8f:ed:a3:4f:b0:de:dc:d7:
99:d2:c6:43:d4:36:f8:01:3a:b9:96:3f:8c:95:eb:ea:2b:ba:
72:f2:9f:5d:96:24:06:c5:35:28:51:f7:fd:ef:c9:31:7e:fb:
95:39:5f:26:a5:54:93:ee:af:87:87:5d:ff:66:aa:14:eb:07:
97:50:d5:f4:dd:1d:7f:e3:fa:9c:7a:a7:66:07:72:94:71:ca:
ff:dc:6f:2a:a9:b9:96:09:78:9f:d4:2a:23:5c:a3:43:66:12:
82:2d:37:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 08:06:11 2024 by rpki-client on console-ams.rpki-client.org