Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3132352e37392e302f32342d3234203d3e203630343538.roa
File: 3138352e3132352e37392e302f32342d3234203d3e203630343538.roa (raw, json)
Hash identifier: CLO3O6AfO1/EE8ECessCssnJQNZWGiLJIk/JdSPi1r8=
Subject key identifier: 62:DB:6C:3E:F3:17:77:70:3C:AF:AC:AC:12:68:AA:CD:AF:AA:DB:4D
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 3291B96E88F2B6F889BC3719C22FB76E5AB848E5
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3132352e37392e302f32342d3234203d3e203630343538.roa
Signing time: Mon 03 Jul 2023 05:41:59 +0000
ROA not before: Mon 03 Jul 2023 05:36:59 +0000
ROA not after: Mon 01 Jul 2024 05:41:59 +0000
asID: 60458
IP address blocks: 185.125.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 20:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:91:b9:6e:88:f2:b6:f8:89:bc:37:19:c2:2f:b7:6e:5a:b8:48:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jul 3 05:36:59 2023 GMT
Not After : Jul 1 05:41:59 2024 GMT
Subject: CN=62DB6C3EF31777703CAFACAC1268AACDAFAADB4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:51:99:8f:fd:37:de:ed:c6:f3:38:de:e5:af:
a3:67:e8:54:48:1a:92:f0:59:4e:d0:ca:47:23:71:
47:7f:b1:ba:02:c9:7a:1f:00:d4:e7:0f:a1:b9:36:
f2:65:1c:b7:10:6c:d3:40:9a:6c:a5:93:89:2c:9c:
b2:57:30:2e:06:2a:6c:a9:67:0b:36:86:08:e4:92:
65:8e:fc:5e:f5:dd:19:1a:e7:e3:c7:43:7a:5d:78:
cb:ff:b1:2b:1a:76:b9:24:0e:14:92:14:8e:43:06:
10:20:53:11:4e:a6:53:f3:60:9e:b9:87:3c:3e:eb:
db:3b:c1:5f:1b:b9:ed:d4:c8:86:44:c2:92:ee:6b:
3f:d8:75:18:24:3f:40:85:68:d9:f7:df:64:e3:7b:
64:92:e9:b0:df:c0:8d:a9:f5:2b:3f:71:b2:98:e6:
d4:a7:bd:7e:1d:40:2a:29:68:22:d5:0e:ce:15:e2:
36:8c:2e:66:1f:06:35:ad:14:1e:1e:5b:0a:79:9c:
24:38:8b:88:c1:69:25:0f:a2:0d:13:f5:b7:bb:b4:
11:c8:f1:47:46:70:90:af:67:86:58:d8:4c:36:e2:
96:35:d4:9f:28:c9:ed:7a:4e:22:2e:8a:ba:6e:ab:
e2:2e:c3:16:f4:b2:ca:55:f0:5f:06:3b:a3:87:2c:
88:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:DB:6C:3E:F3:17:77:70:3C:AF:AC:AC:12:68:AA:CD:AF:AA:DB:4D
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3132352e37392e302f32342d3234203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.125.79.0/24
Signature Algorithm: sha256WithRSAEncryption
66:66:45:2b:99:1b:04:d4:03:a6:32:42:f5:7c:e9:4b:9f:54:
e2:67:23:b1:56:68:98:b0:79:92:cb:b3:ca:83:00:7f:46:87:
bd:3c:a2:d0:02:1e:2d:1b:92:08:20:37:e8:b4:1f:53:2a:70:
a7:4d:b2:3f:59:9f:96:4a:45:b0:53:8e:7a:74:7b:1a:df:93:
34:78:b8:7a:c8:e8:d3:a6:a1:de:55:51:be:3b:31:36:c7:ce:
ba:2f:68:b9:5f:03:57:00:ac:39:9e:01:47:b3:d3:82:42:74:
0c:bb:d3:21:f5:59:05:d4:d2:64:4d:b9:82:ae:dc:52:d2:f3:
56:48:14:40:db:95:e6:d5:14:d8:d4:ac:dc:d9:28:e6:84:13:
e2:e1:67:f6:ff:bc:f2:6d:94:7b:20:fa:af:44:5d:4e:ce:b1:
23:38:15:52:af:1d:98:e7:84:13:87:4a:07:f3:9c:b6:cc:9f:
9b:81:98:a7:5b:20:36:91:12:c5:0f:27:8d:b4:7a:15:63:3c:
1f:b0:66:7c:b5:cd:78:cc:c5:31:75:27:f6:fe:8d:59:c4:29:
d6:13:dc:fd:c3:0c:ad:65:a1:69:c4:7a:06:6d:18:a9:67:dc:
d4:7d:e3:b8:0d:8b:52:7b:cc:25:56:51:af:e8:c3:76:f5:fc:
a4:22:d9:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 05:22:02 2024 by rpki-client on console-fra.rpki-client.org