Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135382e302f32332d3233203d3e20323039323432.roa
File: 3138382e3136342e3135382e302f32332d3233203d3e20323039323432.roa (raw, json)
Hash identifier: DlkV2RVwodNbix4N2R4/X2R7xLIh4hYtq/Zwph042co=
Subject key identifier: 4E:3A:51:9E:41:E7:52:45:B9:66:04:A3:61:3D:A8:6C:A9:FF:33:C1
Certificate issuer: /CN=8b9ba9adde9635777bf586fd493e14cd30f7c4ca
Certificate serial: 17F5C99EFA4381AD32D78826940B29B08789C2BD
Authority key identifier: 8B:9B:A9:AD:DE:96:35:77:7B:F5:86:FD:49:3E:14:CD:30:F7:C4:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135382e302f32332d3233203d3e20323039323432.roa
Signing time: Mon 30 Oct 2023 13:55:42 +0000
ROA not before: Mon 30 Oct 2023 13:50:42 +0000
ROA not after: Mon 28 Oct 2024 13:55:42 +0000
asID: 209242
IP address blocks: 188.164.158.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.crl
rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.mft
rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:f5:c9:9e:fa:43:81:ad:32:d7:88:26:94:0b:29:b0:87:89:c2:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b9ba9adde9635777bf586fd493e14cd30f7c4ca
Validity
Not Before: Oct 30 13:50:42 2023 GMT
Not After : Oct 28 13:55:42 2024 GMT
Subject: CN=4E3A519E41E75245B96604A3613DA86CA9FF33C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4f:13:a8:c8:2f:0a:0e:c5:25:cf:fc:6a:1b:
8c:ac:58:7f:3f:aa:1c:7a:d4:66:ae:4b:20:70:55:
71:df:b5:53:db:a3:5f:a7:e6:b2:af:d4:8b:29:05:
cb:b3:47:73:8e:31:21:50:e8:36:d4:a9:3f:f4:9a:
24:fb:0e:a6:fc:c3:72:bd:0a:7d:8f:e4:52:0c:2a:
50:9d:91:2b:56:09:49:68:ec:ca:b3:c4:56:1f:c0:
04:4a:ad:7e:e1:0a:70:5a:dd:ff:e1:1b:cc:83:96:
f1:af:95:ab:86:f2:58:20:6f:35:bc:40:b1:8f:69:
de:40:61:54:b1:66:a4:53:4c:6c:f2:96:f1:8b:b2:
e0:9a:b2:20:7d:9b:66:4d:34:aa:7f:04:48:4f:0a:
41:21:52:37:84:a8:60:9d:19:b2:c0:ee:93:ad:67:
96:e0:0f:e9:45:bf:86:e0:d7:ee:c6:8f:bd:2b:8f:
cb:39:04:97:d6:23:f2:5f:82:29:97:c5:f4:b4:52:
31:ac:02:6a:a3:80:37:55:99:85:ad:6e:d9:30:01:
72:01:92:f2:7c:ed:fc:cb:71:2d:c4:ad:37:43:b8:
19:e4:51:c6:50:66:a6:a2:9c:3f:22:2c:cf:9c:5b:
19:e9:f4:40:3b:58:e7:10:49:1a:48:c4:d6:ea:c9:
20:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:3A:51:9E:41:E7:52:45:B9:66:04:A3:61:3D:A8:6C:A9:FF:33:C1
X509v3 Authority Key Identifier:
keyid:8B:9B:A9:AD:DE:96:35:77:7B:F5:86:FD:49:3E:14:CD:30:F7:C4:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135382e302f32332d3233203d3e20323039323432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.164.158.0/23
Signature Algorithm: sha256WithRSAEncryption
53:59:f6:ef:c8:5b:a5:c1:e4:11:29:7f:d5:3a:96:5e:73:ac:
b8:fd:a6:70:75:73:91:6b:d1:3c:ba:87:da:a1:12:35:a2:70:
b9:a3:a5:c8:5e:34:c8:5b:cc:b4:3c:11:04:aa:79:48:26:dd:
d4:10:c5:3b:39:cc:7d:8b:c6:b4:5e:28:a4:28:ad:e0:ff:40:
6b:05:bc:08:f9:c0:69:05:53:e0:00:98:72:27:c0:3a:d8:39:
56:d4:00:ae:4b:3f:36:01:ec:99:f4:81:b5:de:5d:3b:7a:88:
ae:7a:d3:1d:0d:d8:a3:8c:6e:18:23:ca:ee:82:92:cd:c0:5d:
87:19:2d:5b:e3:8a:1a:01:c5:66:cc:49:2b:ec:20:4a:88:ef:
7a:08:ce:4d:81:b5:e6:01:0e:6e:a9:9f:f3:bf:b7:3a:ee:b6:
4a:c7:6e:ae:a9:1d:3c:59:4b:f9:4d:a5:dc:d4:2f:6a:cd:6e:
e3:04:4c:82:44:38:fd:57:a6:a1:d1:fa:ce:11:53:2e:45:c7:
12:0f:e8:26:14:55:fc:b9:f2:8d:40:dd:13:25:e7:c7:b3:b6:
7f:4b:48:19:9d:74:ea:97:49:bd:8e:f8:56:8e:80:dd:8a:c5:
e8:79:d2:e8:cd:80:18:a0:2e:c9:ab:8b:e0:d5:b7:c6:4c:60:
6a:a7:48:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 13:14:47 2024 by rpki-client on console-ams.rpki-client.org