Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3136372e32362e302f32342d3234203d3e203630343538.roa
File: 3138352e3136372e32362e302f32342d3234203d3e203630343538.roa (raw, json)
Hash identifier: qaCPm69uWBGxbE7T+P0+OEabmh8OarFDbz7ijfUE5Z0=
Subject key identifier: CA:3E:7F:0E:DB:A8:53:E8:1F:75:95:A9:C8:0F:5F:E7:01:20:F4:3C
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 3F4DFC7BAB8C81CB7E2DA635A1DA01A03A05D4E7
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3136372e32362e302f32342d3234203d3e203630343538.roa
Signing time: Mon 03 Jul 2023 05:42:03 +0000
ROA not before: Mon 03 Jul 2023 05:37:03 +0000
ROA not after: Mon 01 Jul 2024 05:42:03 +0000
asID: 60458
IP address blocks: 185.167.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 20:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:4d:fc:7b:ab:8c:81:cb:7e:2d:a6:35:a1:da:01:a0:3a:05:d4:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jul 3 05:37:03 2023 GMT
Not After : Jul 1 05:42:03 2024 GMT
Subject: CN=CA3E7F0EDBA853E81F7595A9C80F5FE70120F43C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:92:07:bc:e3:77:8c:f8:d6:28:8e:21:c6:96:
03:94:aa:30:96:a6:91:8e:8a:49:c9:89:96:fb:74:
4f:31:18:9f:cf:24:af:dc:23:c3:7c:ed:c5:71:fe:
e7:fc:e0:18:43:67:a7:0f:63:61:67:2a:80:5e:fd:
94:1a:c5:5d:54:83:6e:23:be:f1:48:e6:4e:ac:20:
2d:f2:e9:14:f9:08:75:3d:54:a5:7f:a3:8d:61:21:
9c:f3:a0:75:47:7d:3e:66:93:93:2e:3b:e9:43:e5:
3f:11:54:e1:4a:1e:53:a8:ee:c7:d9:59:09:d3:92:
2c:76:71:f6:35:32:af:db:f9:92:f3:9a:b6:9c:11:
fd:5b:72:55:5c:15:43:59:73:d2:63:be:ac:dc:a9:
80:f0:6c:85:26:9f:d9:ea:e2:21:57:a4:88:05:d5:
06:3f:b0:ef:34:ca:32:65:27:30:f5:4f:62:a1:ba:
4e:e8:46:23:5d:b2:29:3b:52:4e:9e:f8:72:54:cb:
a6:4f:5e:de:eb:2f:ab:26:c2:16:86:90:6a:7b:a1:
d1:c5:60:e3:09:c2:74:b9:21:fe:c5:eb:46:36:d5:
61:5d:c3:60:a1:76:1e:76:5a:c5:aa:d5:5c:e4:43:
61:07:ef:03:4b:31:d4:f6:4c:e9:47:2d:6f:9c:3d:
b8:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:3E:7F:0E:DB:A8:53:E8:1F:75:95:A9:C8:0F:5F:E7:01:20:F4:3C
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3136372e32362e302f32342d3234203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.26.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:5b:54:69:f3:f9:4a:7e:07:66:e7:9e:3b:b8:7c:fb:7b:de:
ac:7c:b9:02:13:ee:c4:d4:96:54:69:80:79:21:34:9d:9f:4b:
ff:a7:c1:f8:be:4c:d9:39:84:8f:8f:e2:e5:43:0b:cd:d5:66:
db:ce:b5:8e:c2:0e:06:99:1b:e9:dd:64:1e:32:69:eb:3c:4f:
20:52:09:9b:b9:94:14:b1:86:cc:88:1f:fa:e2:df:38:bb:fa:
85:6f:69:0f:09:cf:ef:e0:5a:f5:77:ce:bb:d2:c2:7e:32:6e:
df:85:a6:ca:01:0d:f7:b0:ef:66:d3:53:ce:c9:0c:e4:66:01:
ad:38:f4:de:a4:2e:bd:22:a3:96:22:a9:f7:4d:d3:8d:f7:75:
6a:30:ed:6d:03:31:18:66:17:8b:6f:b7:bf:30:6e:62:53:36:
16:2a:80:4c:85:01:f7:f2:de:8f:f6:74:08:79:e5:e3:1c:79:
ba:19:2e:44:f4:e7:cc:4b:7f:e7:b3:4a:89:90:6c:16:60:93:
96:46:07:69:76:f0:2f:63:f6:0a:a9:0f:8d:2b:0e:89:0c:81:
54:b3:a2:15:7f:30:da:91:31:d7:0b:be:33:d7:d3:92:83:51:
0c:fd:8f:8a:1b:8e:d8:3f:d3:7f:e3:8e:cc:f0:de:14:46:89:
e7:ef:84:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 05:22:02 2024 by rpki-client on console-fra.rpki-client.org