Route Origin Authorization
$ rpki-client -vvf rpki.pudu.be/repo/pudu/0/36342e3138372e3230382e302f32332d3332203d3e203437363839.roa
File: 36342e3138372e3230382e302f32332d3332203d3e203437363839.roa (raw, json)
Hash identifier: g8go6dxua8g/0t7Jdd80UIuuhKrffAyxWf1szF58+CE=
Subject key identifier: 23:58:AD:9B:DA:57:6E:DF:57:99:81:7B:7C:00:E3:76:1A:B5:0F:ED
Certificate issuer: /CN=73a83c810157e3e8511eebe39cfcad16fa329700
Certificate serial: 3D5DB9AB15A3E572398F77042DF93502D238BEA4
Authority key identifier: 73:A8:3C:81:01:57:E3:E8:51:1E:EB:E3:9C:FC:AD:16:FA:32:97:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c6g8gQFX4-hRHuvjnPytFvoylwA.cer
Subject info access: rsync://rpki.pudu.be/repo/pudu/0/36342e3138372e3230382e302f32332d3332203d3e203437363839.roa
Signing time: Sun 11 Feb 2024 06:23:16 +0000
ROA not before: Sun 11 Feb 2024 06:18:16 +0000
ROA not after: Sun 09 Feb 2025 06:23:16 +0000
asID: 47689
IP address blocks: 64.187.208.0/23 maxlen: 32
Validation: OK
Signature path: rsync://rpki.pudu.be/repo/pudu/0/73A83C810157E3E8511EEBE39CFCAD16FA329700.crl
rsync://rpki.pudu.be/repo/pudu/0/73A83C810157E3E8511EEBE39CFCAD16FA329700.mft
rsync://rpki.ripe.net/repository/DEFAULT/c6g8gQFX4-hRHuvjnPytFvoylwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:5d:b9:ab:15:a3:e5:72:39:8f:77:04:2d:f9:35:02:d2:38:be:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73a83c810157e3e8511eebe39cfcad16fa329700
Validity
Not Before: Feb 11 06:18:16 2024 GMT
Not After : Feb 9 06:23:16 2025 GMT
Subject: CN=2358AD9BDA576EDF5799817B7C00E3761AB50FED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5f:50:88:6d:08:e8:13:8e:df:f9:85:5d:34:
c2:46:df:a9:4a:de:9e:54:b8:f7:fd:c5:9a:ba:86:
7c:20:ae:41:b8:9d:ec:b3:b6:94:2e:b7:bf:24:2c:
3a:51:4c:bf:e1:10:bc:52:cb:cb:6f:4a:21:ff:5a:
5d:8f:bc:1f:40:aa:4b:98:d1:6a:56:88:03:a7:68:
a3:37:c4:4d:77:61:74:13:76:06:a9:3d:b7:6a:3c:
ec:57:c9:38:28:8b:26:37:bc:45:12:a1:b5:ef:90:
85:5c:f7:eb:9c:9f:2a:0e:ea:14:b0:4e:e8:d1:25:
33:9f:09:89:60:5c:6d:63:ff:4a:ad:c9:d0:10:ca:
9b:2a:a4:99:d9:fe:9a:57:5d:a2:17:07:e4:26:cc:
a0:30:93:8d:e3:0a:ea:fc:40:e0:13:59:ad:da:f2:
e0:9c:88:bf:3e:60:70:34:a5:7b:a9:52:a1:47:ac:
98:de:e5:9e:f5:c2:ae:99:e4:c0:b3:64:2d:da:03:
ba:3a:bc:94:a9:0b:16:bf:f0:e4:eb:40:f2:b8:49:
c0:00:72:aa:8c:c6:fe:bf:f4:6e:27:26:20:dd:2e:
30:c1:9f:5a:62:51:be:8c:9b:0c:33:ef:3e:0b:cd:
77:01:9a:d3:66:8a:58:ba:88:68:db:7b:64:64:fe:
98:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:58:AD:9B:DA:57:6E:DF:57:99:81:7B:7C:00:E3:76:1A:B5:0F:ED
X509v3 Authority Key Identifier:
keyid:73:A8:3C:81:01:57:E3:E8:51:1E:EB:E3:9C:FC:AD:16:FA:32:97:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.pudu.be/repo/pudu/0/73A83C810157E3E8511EEBE39CFCAD16FA329700.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6g8gQFX4-hRHuvjnPytFvoylwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.pudu.be/repo/pudu/0/36342e3138372e3230382e302f32332d3332203d3e203437363839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.187.208.0/23
Signature Algorithm: sha256WithRSAEncryption
57:44:b2:70:b5:4c:a3:44:bf:28:97:cb:05:9c:36:6f:2c:07:
9a:01:31:11:19:d1:ac:04:5f:47:73:ec:c8:b6:7b:b0:85:b6:
f9:f8:28:48:87:40:33:ed:00:0d:25:51:82:8f:cd:04:3a:9d:
c9:99:2c:f5:f9:19:20:fb:2c:9e:28:e8:f3:60:92:0b:4e:a2:
92:ee:07:1c:2f:d7:ad:92:7b:3f:fd:40:46:3e:ae:b6:f2:68:
e8:4f:86:50:a1:35:6b:16:82:ff:8d:d6:f2:23:c0:5a:e9:67:
5a:c9:d2:c8:d0:79:09:65:e6:24:49:d8:f0:03:5d:42:12:fb:
b7:67:ac:58:7d:50:cb:16:12:54:d7:6a:cd:72:55:14:a6:dd:
c5:20:8f:0f:29:01:e3:05:a2:da:8a:80:4d:ef:6b:0a:b6:03:
af:8c:83:a7:8e:eb:82:8d:0f:a1:4b:98:00:29:4d:33:5f:c9:
33:53:3f:02:ea:ac:9f:1c:b4:d5:3d:70:9b:ed:54:31:c6:f1:
2c:21:2f:c6:8c:be:8e:90:0b:2f:ce:89:80:86:a2:02:f5:ec:
d1:13:81:cc:4c:4d:f0:95:24:f2:f3:87:1a:19:59:57:98:49:
40:a7:0a:ed:c5:19:f5:c2:f3:c6:f9:47:f2:ab:c1:dc:cf:65:
1a:10:07:79
-----BEGIN CERTIFICATE-----
MIIExDCCA6ygAwIBAgIUPV25qxWj5XI5j3cELfk1AtI4vqQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzNhODNjODEwMTU3ZTNlODUxMWVlYmUzOWNmY2FkMTZm
YTMyOTcwMDAeFw0yNDAyMTEwNjE4MTZaFw0yNTAyMDkwNjIzMTZaMDMxMTAvBgNV
BAMTKDIzNThBRDlCREE1NzZFREY1Nzk5ODE3QjdDMDBFMzc2MUFCNTBGRUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZX1CIbQjoE47f+YVdNMJG36lK
3p5UuPf9xZq6hnwgrkG4neyztpQut78kLDpRTL/hELxSy8tvSiH/Wl2PvB9AqkuY
0WpWiAOnaKM3xE13YXQTdgapPbdqPOxXyTgoiyY3vEUSobXvkIVc9+ucnyoO6hSw
TujRJTOfCYlgXG1j/0qtydAQypsqpJnZ/ppXXaIXB+QmzKAwk43jCur8QOATWa3a
8uCciL8+YHA0pXupUqFHrJje5Z71wq6Z5MCzZC3aA7o6vJSpCxa/8OTrQPK4ScAA
cqqMxv6/9G4nJiDdLjDBn1piUb6Mmwwz7z4LzXcBmtNmili6iGjbe2Rk/piXAgMB
AAGjggHOMIIByjAdBgNVHQ4EFgQUI1itm9pXbt9XmYF7fADjdhq1D+0wHwYDVR0j
BBgwFoAUc6g8gQFX4+hRHuvjnPytFvoylwAwDgYDVR0PAQH/BAQDAgeAMF4GA1Ud
HwRXMFUwU6BRoE+GTXJzeW5jOi8vcnBraS5wdWR1LmJlL3JlcG8vcHVkdS8wLzcz
QTgzQzgxMDE1N0UzRTg1MTFFRUJFMzlDRkNBRDE2RkEzMjk3MDAuY3JsMGQGCCsG
AQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3Jl
cG9zaXRvcnkvREVGQVVMVC9jNmc4Z1FGWDQtaFJIdXZqblB5dEZ2b3lsd0EuY2Vy
MHcGCCsGAQUFBwELBGswaTBnBggrBgEFBQcwC4ZbcnN5bmM6Ly9ycGtpLnB1ZHUu
YmUvcmVwby9wdWR1LzAvMzYzNDJlMzEzODM3MmUzMjMwMzgyZTMwMmYzMjMzMmQz
MzMyMjAzZDNlMjAzNDM3MzYzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBQLvQMA0GCSqGSIb3DQEB
CwUAA4IBAQBXRLJwtUyjRL8ol8sFnDZvLAeaATERGdGsBF9Hc+zItnuwhbb5+ChI
h0Az7QANJVGCj80EOp3JmSz1+Rkg+yyeKOjzYJILTqKS7gccL9etkns//UBGPq62
8mjoT4ZQoTVrFoL/jdbyI8Ba6WdaydLI0HkJZeYkSdjwA11CEvu3Z6xYfVDLFhJU
12rNclUUpt3FII8PKQHjBaLaioBN72sKtgOvjIOnjuuCjQ+hS5gAKU0zX8kzUz8C
6qyfHLTVPXCb7VQxxvEsIS/GjL6OkAsvzomAhqIC9ezRE4HMTE3wlSTy84caGVlX
mElApwrtxRn1wvPG+Ufyq8Hcz2UaEAd5
-----END CERTIFICATE-----
Generated at Sat Nov 23 00:10:13 2024 by rpki-client on console-ams.rpki-client.org