Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3132352e37362e302f32342d3234203d3e203630343538.roa
File: 3138352e3132352e37362e302f32342d3234203d3e203630343538.roa (raw, json)
Hash identifier: 3Kax7E9WyZ4UdBnwx15tLM2ab/E7WiqxEN49fC905JU=
Subject key identifier: 3B:C6:51:7C:2F:1A:81:B3:A8:2B:92:83:29:4B:DE:BF:44:40:37:4B
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 4BB603F3F10A96B14E454626E6D03DAED50DCAAC
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3132352e37362e302f32342d3234203d3e203630343538.roa
Signing time: Mon 03 Jul 2023 05:42:05 +0000
ROA not before: Mon 03 Jul 2023 05:37:05 +0000
ROA not after: Mon 01 Jul 2024 05:42:05 +0000
asID: 60458
IP address blocks: 185.125.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:b6:03:f3:f1:0a:96:b1:4e:45:46:26:e6:d0:3d:ae:d5:0d:ca:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jul 3 05:37:05 2023 GMT
Not After : Jul 1 05:42:05 2024 GMT
Subject: CN=3BC6517C2F1A81B3A82B9283294BDEBF4440374B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:29:f9:e3:7d:3e:fa:35:47:87:04:b8:cc:45:
0d:d9:da:ce:d1:f1:d8:d8:d4:8a:1e:f8:7d:b5:54:
e7:9d:a5:29:38:3a:b4:3d:33:8e:20:00:fc:55:1f:
59:42:eb:16:d8:68:5c:cf:85:6d:2a:d2:16:f3:be:
d7:05:fb:e6:aa:84:d2:44:b9:ab:86:02:dc:99:5d:
47:cc:d1:a2:3c:26:16:b1:7c:2d:c1:e1:c2:b9:bb:
a6:85:93:f1:d7:34:16:ad:10:5c:de:ac:9c:97:bf:
13:ef:0a:c7:38:4a:6a:49:9c:a5:e7:2d:c4:40:e2:
8b:5a:e9:89:2f:bb:66:a0:35:9f:24:da:c3:ff:c9:
ea:bf:fa:a7:e0:b6:7f:77:ad:65:38:70:4b:89:a5:
04:77:e9:63:7c:41:52:06:5c:0c:74:3f:6e:6b:68:
1c:17:c9:19:17:e5:c1:e5:d9:95:67:32:e0:c3:be:
e8:cb:8c:06:11:7f:68:a1:bd:16:b3:86:88:11:ed:
f8:56:24:49:1b:f4:9a:32:9d:6c:01:4a:0c:5e:e3:
04:26:9f:d1:bd:f6:97:38:38:a4:30:11:55:b3:50:
3a:9c:f5:5d:5d:23:4e:56:53:91:74:b4:11:89:5e:
26:70:66:dc:f3:28:04:91:03:c6:af:ff:ae:9d:d2:
4c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:C6:51:7C:2F:1A:81:B3:A8:2B:92:83:29:4B:DE:BF:44:40:37:4B
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3132352e37362e302f32342d3234203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.125.76.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:ea:0c:0b:85:6f:c9:ab:3e:5e:61:ce:e1:fa:e0:13:64:4e:
37:ed:39:21:e6:f5:2a:63:af:07:62:c5:74:55:c6:03:a7:71:
25:52:5b:cf:4f:3e:44:37:12:2d:87:29:97:f5:a9:c7:bb:fa:
99:ec:59:c5:43:f2:6f:ad:21:71:6e:24:e7:c9:02:02:73:42:
4b:4d:d8:63:ee:0d:a1:81:96:43:f5:14:fb:e8:c2:e7:a6:0e:
9b:63:96:0f:89:18:4c:70:57:ff:28:34:e9:57:a2:b2:6c:ed:
40:bc:35:4f:47:b7:fc:ce:bb:c2:5c:d6:e9:43:b9:b0:88:72:
ce:21:23:29:ef:22:6b:f8:23:bb:da:b9:f9:ec:de:65:f7:22:
b5:d2:c4:7a:c2:b3:df:63:a0:71:43:23:67:9e:00:72:bd:32:
9f:32:13:7a:ad:52:62:16:65:f1:f6:76:5a:42:07:1b:ad:3f:
64:0d:5c:64:7d:43:c4:34:57:01:4f:16:e3:5d:1d:20:0f:15:
08:0e:12:ed:db:37:a7:c7:31:c0:48:94:29:98:53:5a:65:36:
f6:46:08:20:39:17:66:09:9b:5b:9a:84:6d:d7:f1:91:ea:be:
a7:af:ba:64:3a:39:ca:2d:b9:65:7f:e7:35:de:76:fa:4a:e8:
fb:eb:7f:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 01:02:59 2024 by rpki-client on console-ams.rpki-client.org