Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3132352e37382e302f32342d3234203d3e203630343538.roa
File: 3138352e3132352e37382e302f32342d3234203d3e203630343538.roa (raw, json)
Hash identifier: lDEAOfAo+aSO61ip7Vb5wkz89CDmAucKNaZCSqyyfQg=
Subject key identifier: 66:15:E3:FC:38:1D:DC:99:A7:79:95:E7:F2:08:4E:E1:47:96:71:EE
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 6DF45CA13A7CC638D4F6ADB0E9F00539F6F1CD73
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3132352e37382e302f32342d3234203d3e203630343538.roa
Signing time: Mon 03 Jun 2024 06:05:17 +0000
ROA not before: Mon 03 Jun 2024 06:00:17 +0000
ROA not after: Mon 02 Jun 2025 06:05:17 +0000
asID: 60458
IP address blocks: 185.125.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:f4:5c:a1:3a:7c:c6:38:d4:f6:ad:b0:e9:f0:05:39:f6:f1:cd:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jun 3 06:00:17 2024 GMT
Not After : Jun 2 06:05:17 2025 GMT
Subject: CN=6615E3FC381DDC99A77995E7F2084EE1479671EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:dd:4a:6b:c8:6e:71:55:cd:2f:73:a7:cd:2f:
71:3b:f0:46:70:b4:b7:42:d9:9d:88:4b:8c:d4:31:
7b:4f:6a:f5:0e:45:9b:f1:0b:e5:a8:6e:b3:70:ef:
b0:3f:47:10:b7:1a:95:c8:48:a4:87:6d:b9:d4:ad:
e1:3e:71:2d:75:ca:49:10:5c:ed:06:71:47:f6:89:
13:4f:fa:81:46:10:59:5d:58:e2:dc:f0:76:46:e8:
f5:81:44:e5:35:6f:a9:cc:8e:6b:f4:36:ef:98:06:
cd:a6:78:90:17:2a:cf:4e:cf:55:61:49:6a:57:a4:
db:79:68:f5:e3:0e:e6:f0:2e:da:b1:3a:2d:c0:3a:
9a:6c:b1:e9:d4:8a:58:94:43:ee:81:67:7c:d5:0e:
69:45:99:67:49:00:9e:a6:dd:92:59:99:27:f5:46:
ec:51:b8:26:0b:e1:ae:7a:15:19:b2:bc:ad:fc:06:
8e:91:70:94:2d:71:dc:2a:7c:0b:24:09:cd:24:2a:
3d:0e:40:47:82:80:0c:fc:7f:51:15:53:34:0f:ea:
fd:ec:ab:eb:d8:39:02:a5:0c:2f:32:e6:96:0b:dc:
26:2e:7e:66:cf:46:2b:99:38:af:e9:9c:c2:8d:d8:
ea:c9:a5:55:27:f7:b6:0d:c4:94:5b:f5:79:0c:47:
93:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:15:E3:FC:38:1D:DC:99:A7:79:95:E7:F2:08:4E:E1:47:96:71:EE
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3132352e37382e302f32342d3234203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.125.78.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:8a:73:96:59:28:e4:7c:a3:fd:d3:b6:d3:13:5a:36:e3:d0:
03:a8:32:26:44:84:45:83:7a:4a:b3:0e:66:bc:1e:48:fc:2d:
28:37:89:d2:4b:d3:d0:9a:a9:df:a9:02:d7:a3:63:0a:e8:e8:
64:c0:6d:75:30:16:11:09:a7:7b:4e:f3:1d:be:a1:b0:9b:fd:
5e:c6:a7:65:ff:bc:db:96:5e:b0:2b:40:41:0f:f9:02:e2:9a:
47:f9:7c:98:4c:a0:19:e4:3e:49:6a:4a:9b:e3:75:e1:be:ca:
1a:b3:75:58:15:80:93:84:ec:3b:05:9a:12:a1:b7:af:2f:ee:
86:ac:d4:71:8f:dd:ef:77:8c:96:11:d2:ed:69:eb:82:ec:89:
75:22:35:65:aa:8f:56:42:e9:40:db:b5:92:48:8e:ec:d9:5b:
d4:c9:17:01:04:60:c7:82:85:33:25:2b:1d:00:fa:13:1e:7c:
b3:38:ad:ee:42:31:6c:db:02:4e:82:be:a3:22:3d:72:c0:34:
4f:2a:45:0e:fe:13:9b:4a:4a:6a:de:be:f6:3c:ea:ea:9b:f1:
34:76:be:84:17:b8:03:ff:2a:a3:a2:a2:06:a9:41:f5:47:ff:
7d:74:1a:24:49:6b:dc:6b:e8:19:9b:5e:71:22:5e:3e:f4:c7:
ee:e4:0b:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 14:22:19 2024 by rpki-client on console-ams.rpki-client.org