Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3130302e37322e302f32322d3232203d3e203630343538.roa
File: 3138352e3130302e37322e302f32322d3232203d3e203630343538.roa (raw, json)
Hash identifier: or9fza+6lY3RDinsikTgHZcdXr2Fac+fP7QTxfWhodI=
Subject key identifier: 49:C7:1D:07:58:37:18:C0:70:47:70:CC:6A:25:17:1F:5D:02:A5:0B
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 702FE819E0DB21DCAED66FACAF920BA84819181A
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3130302e37322e302f32322d3232203d3e203630343538.roa
Signing time: Mon 03 Jul 2023 05:41:58 +0000
ROA not before: Mon 03 Jul 2023 05:36:58 +0000
ROA not after: Mon 01 Jul 2024 05:41:58 +0000
asID: 60458
IP address blocks: 185.100.72.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 20:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:2f:e8:19:e0:db:21:dc:ae:d6:6f:ac:af:92:0b:a8:48:19:18:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jul 3 05:36:58 2023 GMT
Not After : Jul 1 05:41:58 2024 GMT
Subject: CN=49C71D07583718C0704770CC6A25171F5D02A50B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4b:63:24:18:af:29:f8:cf:5a:99:fa:42:cb:
f4:d1:85:3d:e4:e0:ef:93:2a:47:b0:73:3e:31:6a:
94:be:19:62:e1:1f:ae:22:a2:15:81:80:d2:a4:2e:
58:2d:de:a5:0b:d8:8f:e8:3e:4a:16:e5:45:04:f8:
b1:d7:ab:31:f8:e2:aa:2e:f2:3e:26:5c:b8:38:76:
7f:48:b9:79:2a:55:c1:38:15:8f:fd:5d:83:5c:43:
20:c2:13:98:72:22:eb:17:10:23:c0:a1:7a:df:8a:
ea:03:58:70:6d:00:94:47:a0:e7:ca:2e:50:f8:8c:
c0:04:56:4a:9b:32:7b:70:fd:dd:2d:3b:e6:3f:77:
2a:b8:bf:52:15:37:0c:bd:64:ec:fa:43:3d:50:ce:
aa:a8:da:f0:d6:70:b1:e5:8e:61:51:af:27:00:bb:
a9:a6:52:74:3e:ee:4a:66:9b:48:b8:cb:71:52:27:
e1:d8:d5:93:be:39:96:7e:5f:93:73:6f:57:a7:27:
47:2a:c2:ef:e6:77:96:d5:e3:a5:ba:0c:53:42:1c:
a4:cb:90:90:48:a7:5a:24:84:d0:59:29:86:e4:bc:
f4:ec:d0:35:26:90:1b:d9:80:f2:75:53:13:f2:d3:
30:13:97:c9:84:88:51:82:2a:dd:d0:ed:e3:17:51:
fd:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:C7:1D:07:58:37:18:C0:70:47:70:CC:6A:25:17:1F:5D:02:A5:0B
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3130302e37322e302f32322d3232203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.72.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:04:b2:56:16:a3:26:85:fd:dc:a9:55:58:16:c4:0a:96:03:
e5:6f:b9:78:eb:1f:d9:38:96:de:0d:d0:ba:a3:5c:01:a8:5a:
b6:63:4d:41:44:30:c1:68:b6:63:ac:2e:47:23:28:b3:0d:32:
08:dc:b4:dd:4c:e8:9c:df:8f:44:36:56:10:85:53:a2:73:ba:
be:8e:ac:36:ce:ac:06:1b:a4:dc:fa:5c:df:ec:a6:18:00:37:
59:4f:8f:19:9b:7b:9c:1e:48:65:d4:54:0d:08:ba:a1:2a:4f:
6b:14:f2:bb:53:0a:a4:52:be:35:22:03:07:87:e8:9a:31:29:
3f:a1:d0:c1:8e:cb:0c:25:46:3f:8e:6f:67:51:8e:30:cb:e2:
f8:fc:5d:50:5f:e9:50:1e:eb:35:28:66:ec:1c:18:84:55:cb:
b8:98:7f:e8:cf:f2:53:bf:0e:da:ec:af:18:1b:1e:26:23:b8:
ab:11:3a:11:bd:0d:9e:ff:bd:1f:55:d1:87:47:21:e4:3f:2e:
2a:ee:c0:e0:e4:f7:f1:86:4c:a3:8f:7c:e6:63:fa:62:5e:a4:
ee:ed:04:3d:89:39:64:e4:f2:a3:d1:1b:03:8e:dc:f1:f6:d7:
1c:16:da:d8:41:14:0b:64:d2:77:05:f7:50:da:c3:1e:d4:5c:
b2:65:06:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 05:22:02 2024 by rpki-client on console-fra.rpki-client.org