Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3136322e3137302e302f32342d3234203d3e203630343538.roa
File: 3138352e3136322e3137302e302f32342d3234203d3e203630343538.roa (raw, json)
Hash identifier: tz+kKwXYg+RqxgRhrQ0sHPWP3Y4FW1umPuLsw+UpN+Q=
Subject key identifier: 6D:95:DE:E6:40:97:8A:2C:4B:20:FA:A1:AA:A4:35:33:AC:2F:B8:9C
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 104F703DEC4222C5BB6ACBA6AA6F59DF623757AA
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3136322e3137302e302f32342d3234203d3e203630343538.roa
Signing time: Mon 03 Jul 2023 05:42:10 +0000
ROA not before: Mon 03 Jul 2023 05:37:10 +0000
ROA not after: Mon 01 Jul 2024 05:42:10 +0000
asID: 60458
IP address blocks: 185.162.170.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:4f:70:3d:ec:42:22:c5:bb:6a:cb:a6:aa:6f:59:df:62:37:57:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jul 3 05:37:10 2023 GMT
Not After : Jul 1 05:42:10 2024 GMT
Subject: CN=6D95DEE640978A2C4B20FAA1AAA43533AC2FB89C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:76:fb:df:9c:1a:0b:5b:1b:65:3d:b1:bb:f8:
f3:db:12:fa:97:99:94:6e:30:f9:58:66:33:af:31:
b5:9a:76:0b:df:70:21:ca:58:57:1f:f6:11:62:57:
00:d5:d7:0d:7c:13:60:3c:08:0e:c8:66:bf:f5:96:
f7:b7:90:27:87:cd:fe:98:fa:2d:f0:29:55:17:9a:
bd:e4:cb:e0:e0:46:8a:26:5e:df:33:b3:4d:a8:f0:
87:e9:99:57:38:78:ea:52:6f:c2:04:b8:2c:5e:1b:
90:50:bc:8b:e2:5e:de:b5:36:9c:01:70:a0:0b:47:
80:ea:37:a8:6d:16:2a:9a:c4:10:3c:4f:64:45:54:
ad:50:fb:61:a4:cd:1e:0c:d7:fe:79:f0:f4:46:f1:
4e:a1:0f:c3:5c:4e:1e:72:e8:f3:64:80:30:2e:9f:
87:5a:af:3a:5e:c7:b3:ff:b5:b7:c0:00:e6:7d:15:
44:51:3b:03:5b:89:9e:38:70:c3:44:11:72:1f:85:
b3:ca:5a:1c:b3:42:c6:89:64:1d:37:6d:9a:5e:c9:
b9:91:bd:38:36:3b:ea:05:13:fe:f6:33:af:55:43:
fe:ca:de:6d:3f:a8:82:c2:e5:0e:65:6a:62:ce:be:
13:72:08:29:e1:68:bd:2f:1b:24:21:e2:41:1e:a5:
53:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:95:DE:E6:40:97:8A:2C:4B:20:FA:A1:AA:A4:35:33:AC:2F:B8:9C
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3136322e3137302e302f32342d3234203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.170.0/24
Signature Algorithm: sha256WithRSAEncryption
93:ff:f3:5f:6f:e7:79:1a:cf:d6:23:1e:56:72:62:f3:35:32:
0e:e2:c4:5b:f5:74:d1:f9:8c:1f:28:38:41:8f:81:a7:a9:16:
8b:e1:94:96:71:33:06:03:dc:a1:d7:a0:32:7e:ee:84:a6:d7:
48:c7:6b:a6:85:f2:f0:55:94:b9:76:61:09:25:65:1d:4a:e9:
de:ee:04:50:6c:f8:bb:d2:3d:17:67:a8:c6:24:40:2f:58:37:
3c:3e:54:13:e5:14:d7:71:64:c0:6f:52:e8:86:63:93:a0:e9:
45:7e:33:c9:f7:b7:3e:0c:a4:d5:b2:72:d7:16:91:80:09:c0:
2c:7f:12:fb:e0:d5:df:ec:30:6f:4a:59:3a:21:ea:4e:7e:83:
c4:06:75:9c:df:f9:e6:07:f7:67:e3:40:77:1b:95:05:e7:62:
d7:00:8e:1e:f9:ea:21:b1:45:1b:f1:c1:d8:35:e9:f7:0b:f3:
46:1e:43:07:7b:4d:38:4e:5d:1d:da:10:d5:f5:eb:a9:73:a3:
c2:9a:8a:cb:55:f5:b1:83:2a:0d:f6:8b:e9:46:7d:a5:a7:3a:
f1:f6:71:a5:3a:aa:68:91:be:cb:59:4d:92:d4:74:9f:34:e2:
8e:f0:3f:af:de:b3:b9:a4:5c:14:7d:ec:d1:38:db:15:f5:78:
36:11:c9:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 01:02:59 2024 by rpki-client on console-ams.rpki-client.org