Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3234352e3138302e302f32342d3234203d3e203437353833.roa
File: 3138352e3234352e3138302e302f32342d3234203d3e203437353833.roa (raw, json)
Hash identifier: ZTj32ArxnhdUEsFL/drLcBBFmDl2z9oYrcWrs0n+iQM=
Subject key identifier: E7:B7:06:D3:0F:2D:0A:AA:74:00:0B:31:C8:A4:C9:56:7B:C7:B0:C9
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 771174F5F40F87EFA29ABB74F672D8A8DC2DC8B5
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3234352e3138302e302f32342d3234203d3e203437353833.roa
Signing time: Fri 20 Oct 2023 13:41:46 +0000
ROA not before: Fri 20 Oct 2023 13:36:46 +0000
ROA not after: Fri 18 Oct 2024 13:41:46 +0000
asID: 47583
IP address blocks: 185.245.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 16:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:11:74:f5:f4:0f:87:ef:a2:9a:bb:74:f6:72:d8:a8:dc:2d:c8:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:46 2023 GMT
Not After : Oct 18 13:41:46 2024 GMT
Subject: CN=E7B706D30F2D0AAA74000B31C8A4C9567BC7B0C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:38:6e:2c:82:5d:30:8d:75:d1:a6:bc:60:83:
69:5c:17:74:83:6e:02:71:fd:74:8b:85:76:33:cd:
32:b2:8d:60:00:b9:1d:5b:bf:e0:b5:fa:ed:af:47:
10:75:77:f0:19:98:49:fb:87:3e:8d:98:74:29:b5:
57:6d:f8:22:c5:22:0d:f5:ee:e0:9a:9a:ae:88:8e:
05:f7:2c:97:f7:30:9c:00:13:3b:b2:12:8c:03:be:
94:b7:d7:0e:84:6f:0d:99:72:31:9d:26:25:94:88:
ae:52:20:8b:84:2a:67:26:1a:f9:9b:70:6c:09:9e:
be:13:04:8c:42:f5:66:c4:74:f9:c4:8a:66:49:2a:
b4:5c:9c:58:68:c8:59:9a:3b:be:b6:8e:7c:9f:6a:
55:40:46:9f:87:16:96:4f:9b:39:4e:81:1e:eb:d4:
10:ae:c2:f6:33:bc:e4:c6:40:e5:4f:fa:12:39:f0:
cb:a7:0c:12:8a:f7:68:aa:d7:9c:96:aa:7e:f1:ef:
18:ee:d3:78:5c:50:4a:ea:80:3b:41:5b:4d:29:5e:
a5:7e:27:89:9e:3c:c6:2f:91:58:1a:55:b0:16:13:
e6:71:15:2d:c9:06:41:d3:47:3f:cb:91:32:1c:fd:
ab:e1:d6:0a:1d:45:58:49:05:70:80:71:19:40:9a:
4b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:B7:06:D3:0F:2D:0A:AA:74:00:0B:31:C8:A4:C9:56:7B:C7:B0:C9
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3234352e3138302e302f32342d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.180.0/24
Signature Algorithm: sha256WithRSAEncryption
23:ee:6c:7e:ca:b9:be:ce:6a:85:cd:63:ca:71:ad:dd:57:df:
5c:51:90:d2:1e:66:52:fe:53:c7:fe:19:9c:52:88:d7:c0:d9:
1b:f0:69:28:01:5b:75:da:d4:9a:ce:27:ba:3b:c8:6b:aa:0b:
db:3d:cc:ec:a9:90:5b:d2:e8:01:82:91:15:e1:b3:a2:b4:2a:
fc:a3:92:c0:f3:e4:1d:18:34:89:bb:04:46:a6:f6:4c:f2:3b:
06:5e:ef:e0:aa:fd:b9:30:84:da:fc:56:99:d0:bd:81:a4:ea:
a8:19:0a:35:f6:d1:69:eb:ed:4b:7c:90:0d:2f:ad:18:e0:3b:
17:94:22:81:1a:56:c1:a2:44:74:d3:c8:5b:ac:b2:ab:8c:dc:
f8:bc:81:85:b0:03:ce:c1:3b:54:ea:38:34:0e:8c:f8:46:76:
cc:6a:f9:76:59:21:5e:2d:03:d3:5d:66:b6:3c:8f:8b:b5:e2:
4f:52:0d:0d:3b:c5:19:23:42:fe:21:ad:25:3a:05:d7:9c:3d:
12:0a:fe:ec:ff:b5:82:40:9d:ec:d2:89:a5:29:91:43:2f:f8:
a0:8c:f1:10:8b:84:07:df:2c:30:f7:9f:16:a4:88:a3:3a:c4:
54:93:88:b1:7e:eb:7f:3a:f3:9d:19:a3:17:e1:48:31:d2:7c:
c5:51:99:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 20:18:10 2024 by rpki-client on console-ams.rpki-client.org