Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3136322e3137312e302f32342d3234203d3e203630343538.roa
File: 3138352e3136322e3137312e302f32342d3234203d3e203630343538.roa (raw, json)
Hash identifier: WMj2Pgb2uWN/ZRXGQ2kfC/vsdksimgXlMTzeIcG8Rrw=
Subject key identifier: 5B:38:57:76:A9:D7:A7:9B:1D:FB:3E:F5:F0:5D:53:9F:B0:65:09:B3
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 2528DDC6DBF4C857B77A831DC394373C5290EE28
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3136322e3137312e302f32342d3234203d3e203630343538.roa
Signing time: Mon 03 Jul 2023 05:42:06 +0000
ROA not before: Mon 03 Jul 2023 05:37:06 +0000
ROA not after: Mon 01 Jul 2024 05:42:06 +0000
asID: 60458
IP address blocks: 185.162.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:28:dd:c6:db:f4:c8:57:b7:7a:83:1d:c3:94:37:3c:52:90:ee:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jul 3 05:37:06 2023 GMT
Not After : Jul 1 05:42:06 2024 GMT
Subject: CN=5B385776A9D7A79B1DFB3EF5F05D539FB06509B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:26:0d:93:73:f9:ba:f6:53:c8:cb:f8:ad:4b:
1a:ba:cb:e5:85:05:21:22:66:0e:64:c5:90:30:8e:
6e:70:08:8f:68:c6:ee:02:09:5a:26:ee:b2:e5:05:
dd:81:b6:55:5a:4a:f9:01:41:63:9d:a8:d6:cd:ef:
8d:23:f3:3f:06:24:87:c9:ac:9a:6a:da:8e:bf:db:
22:2a:8b:10:9b:39:02:f5:3d:7e:e0:f9:66:53:6f:
ff:a5:12:e9:e5:ea:11:32:15:6e:77:8b:a3:d0:68:
52:59:ea:8e:72:6e:a3:2d:6e:0a:2e:db:5c:31:16:
22:1f:ba:de:50:0e:ca:b8:f2:03:26:c4:52:79:3d:
1a:01:a7:b7:d8:01:03:a2:94:a4:3e:3a:7a:a8:93:
31:8f:e8:d3:0f:ab:15:c3:52:31:e5:e0:6e:39:8b:
cf:62:a5:99:4f:d5:4c:ec:2c:97:d5:b5:e5:56:77:
ea:ff:09:97:01:1a:6b:17:60:cc:d3:50:e6:1c:c6:
4d:65:28:11:7c:87:0f:4a:55:7d:87:82:35:60:54:
d2:15:39:ed:ac:05:f8:27:67:72:74:74:6a:ab:93:
fc:ba:f5:a3:14:38:d0:fa:40:e9:bf:97:b6:7d:8b:
73:01:f9:7a:6d:35:b3:1c:0c:ad:04:bc:06:ab:06:
ee:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:38:57:76:A9:D7:A7:9B:1D:FB:3E:F5:F0:5D:53:9F:B0:65:09:B3
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3136322e3137312e302f32342d3234203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.171.0/24
Signature Algorithm: sha256WithRSAEncryption
31:04:56:02:58:8d:c2:2a:8e:b5:a0:a4:ad:53:f4:16:4b:76:
d5:41:1b:a8:d5:5d:24:b3:ab:f9:2a:a9:1e:82:4b:88:35:f7:
a7:7e:4e:4e:8a:d8:37:ee:4a:3e:f1:ea:5b:da:0b:c3:f8:7e:
73:3e:a9:63:ca:3f:7c:c7:d8:0c:c1:35:48:fa:df:74:3a:1c:
ce:f9:bc:88:be:59:1e:62:ce:48:54:f0:5d:36:2d:72:d2:00:
f2:9d:77:78:02:6f:d8:b6:cf:c9:ed:eb:b1:f3:b4:11:49:22:
19:6d:da:3b:f5:83:48:10:03:da:0d:5d:0a:26:e0:33:93:37:
0a:85:52:b6:98:d1:c7:83:ae:7a:20:5d:e6:69:52:74:fa:3d:
b0:9a:ca:55:54:4b:fc:e4:3b:4b:82:29:e9:dc:b9:aa:87:0f:
bb:2e:42:cd:80:36:16:1c:ef:df:fe:2a:5f:09:bf:2d:39:a5:
84:7d:99:32:54:1f:19:30:14:b1:ae:cc:55:41:6a:32:9b:58:
52:18:46:67:d9:32:d3:d2:0e:a6:72:a0:53:b4:16:48:76:a7:
72:0e:e8:00:9b:7d:9c:ee:b4:8b:0f:a9:59:4e:36:1f:d5:6c:
78:60:8e:af:d8:7a:7b:1f:b3:f1:d5:45:be:62:c4:88:c0:dc:
9f:c4:97:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 01:08:53 2024 by rpki-client on console-fra.rpki-client.org