Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3136372e32342e302f32342d3234203d3e203630343538.roa
File: 3138352e3136372e32342e302f32342d3234203d3e203630343538.roa (raw, json)
Hash identifier: myiJ+eKZK25WuG/yeYeSCylFUnQpbWhMPeTfdUojCGc=
Subject key identifier: 92:5D:36:ED:BE:13:7A:F6:17:11:8D:46:02:20:AC:DC:45:40:4F:AC
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 6F6727DD1DA07D75A76703D86B97874D12121FF7
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3136372e32342e302f32342d3234203d3e203630343538.roa
Signing time: Mon 03 Jul 2023 05:42:05 +0000
ROA not before: Mon 03 Jul 2023 05:37:05 +0000
ROA not after: Mon 01 Jul 2024 05:42:05 +0000
asID: 60458
IP address blocks: 185.167.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:67:27:dd:1d:a0:7d:75:a7:67:03:d8:6b:97:87:4d:12:12:1f:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jul 3 05:37:05 2023 GMT
Not After : Jul 1 05:42:05 2024 GMT
Subject: CN=925D36EDBE137AF617118D460220ACDC45404FAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f7:4e:d7:81:5f:fa:ef:ce:78:93:d7:60:c6:
5a:43:87:8f:24:cd:2b:d9:08:78:b4:89:a6:6b:80:
97:78:e8:7b:2d:ef:70:34:55:fa:63:ab:da:98:9f:
0b:10:60:1f:8e:1e:d8:b0:b1:79:da:41:55:ec:cb:
50:f4:18:e1:1d:cb:45:ee:c8:02:d4:4d:ff:2c:ca:
fd:8a:8d:b1:d8:9c:fe:2f:46:5f:f4:5e:6d:fb:03:
2a:ce:de:f6:30:48:cb:4a:f1:7b:d2:36:8c:44:b4:
f7:ba:3a:0b:61:97:44:1a:ae:56:aa:c4:73:4e:fb:
10:4f:27:4e:bb:79:91:a9:ef:28:40:46:cc:e7:ad:
17:2c:b7:ac:3b:07:f8:cf:d7:e0:79:81:94:5f:bf:
db:b1:ff:17:93:87:ec:16:87:ab:33:1c:f7:89:7a:
73:42:7f:12:72:a0:71:13:d9:5a:3a:ac:ea:74:f3:
31:23:e2:68:33:c4:a5:c6:80:1b:f1:fb:5f:9e:7f:
68:df:4c:68:40:0c:2f:9e:be:79:bc:90:4e:d8:d3:
63:bb:3b:6d:2d:a2:a8:6f:42:9e:1f:ab:6c:d6:f8:
c2:b4:d9:92:b1:ef:b8:04:d0:21:95:27:5b:98:db:
72:f1:64:da:f0:7b:da:72:49:13:e6:83:84:b7:fb:
86:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:5D:36:ED:BE:13:7A:F6:17:11:8D:46:02:20:AC:DC:45:40:4F:AC
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3136372e32342e302f32342d3234203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.24.0/24
Signature Algorithm: sha256WithRSAEncryption
65:a8:6d:d1:07:81:68:b3:c3:5d:5d:9c:24:d6:82:a6:6a:69:
71:e8:91:3f:09:e0:71:6d:7b:0b:01:7a:f6:5c:4a:9a:8e:e1:
04:62:6c:33:20:a4:16:b0:ff:75:bb:9a:93:7b:37:ae:32:10:
7b:5d:75:5b:73:51:35:b0:5a:b8:17:25:4e:e2:a1:73:67:57:
d5:92:eb:6f:48:86:f5:2e:08:89:35:41:05:26:e7:90:b6:14:
a8:a7:3c:5b:b1:67:6b:ee:1e:37:00:22:97:8a:75:ab:5f:6c:
31:80:e0:8e:81:85:f5:5e:bf:a2:25:6d:15:f8:b8:c0:a5:fe:
50:16:d3:23:10:98:3b:96:c5:5c:a7:3a:89:1a:19:a7:28:91:
62:e2:ca:28:a7:4d:e8:55:6d:62:7a:14:3f:ba:b5:b3:fb:4d:
f2:15:c1:9a:e2:13:e6:ef:f5:a5:d1:a4:bc:67:f4:4d:27:b9:
4f:ab:75:61:5e:c5:9e:37:21:c0:d2:90:8f:fb:f0:eb:77:bf:
bc:e2:10:3e:b6:43:ca:f9:37:e2:e4:78:7c:59:4c:fb:f3:f2:
7f:57:e0:14:12:77:60:84:1d:fd:0d:47:8d:2a:af:3b:4f:2a:
79:4a:31:42:f3:bc:85:aa:74:47:67:86:3d:6b:13:90:1f:6d:
c1:3c:99:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 01:08:53 2024 by rpki-client on console-fra.rpki-client.org