Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3230322e3134352e302f32342d3234203d3e203630343538.roa
File: 3138352e3230322e3134352e302f32342d3234203d3e203630343538.roa (raw, json)
Hash identifier: wKZ2+oz90sGpvnTmZPOb1U0hZosyLyZMBLMdFgwVbEY=
Subject key identifier: B7:E8:2C:B3:5E:A4:09:C8:06:C3:6E:71:88:C5:3D:E5:40:09:77:24
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 7058D6F5E20021FB9E6801753C6BD6B1F0F5A556
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3230322e3134352e302f32342d3234203d3e203630343538.roa
Signing time: Mon 03 Jul 2023 05:42:02 +0000
ROA not before: Mon 03 Jul 2023 05:37:02 +0000
ROA not after: Mon 01 Jul 2024 05:42:02 +0000
asID: 60458
IP address blocks: 185.202.145.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 20:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:58:d6:f5:e2:00:21:fb:9e:68:01:75:3c:6b:d6:b1:f0:f5:a5:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jul 3 05:37:02 2023 GMT
Not After : Jul 1 05:42:02 2024 GMT
Subject: CN=B7E82CB35EA409C806C36E7188C53DE540097724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:6c:c2:ba:51:8e:ca:ac:fc:f3:8c:a1:34:b5:
42:35:f3:c1:6e:13:24:e4:cb:09:1b:ca:08:c7:03:
ee:9a:89:46:6a:11:04:f7:44:0e:84:2c:e1:61:45:
95:63:13:c9:3f:d5:d8:8f:4f:36:64:2f:01:b2:54:
d7:58:45:0e:96:18:a8:1d:cf:a9:12:77:86:e8:ab:
e5:2e:b9:2a:64:07:03:7a:b1:9d:3e:47:f3:14:d6:
0d:e6:e3:64:46:f9:cb:6e:b4:0e:43:e2:44:38:7b:
18:53:3b:48:dd:e5:72:df:f3:07:3b:af:73:e7:1e:
09:6b:d2:53:16:ba:1c:69:34:37:d9:69:02:74:5e:
92:a0:ed:c8:d4:20:b7:73:04:27:72:54:ab:99:52:
68:e3:23:6c:99:9c:30:6f:6f:7b:27:59:ea:36:4a:
00:71:d1:9d:60:6b:80:77:43:f5:65:09:39:ea:da:
db:c4:9f:a8:9b:7b:1c:8b:88:c4:66:2e:29:c2:fc:
af:c6:58:d7:4c:13:3b:57:b2:52:0a:51:b7:0b:f0:
05:9c:d7:41:b6:c0:37:6e:7d:7d:40:a9:4f:4e:29:
74:ca:b2:35:9e:b4:2c:3a:4e:c0:8a:77:42:c4:84:
f7:19:69:3d:74:e4:e3:10:e6:bc:c7:03:2a:b3:58:
62:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:E8:2C:B3:5E:A4:09:C8:06:C3:6E:71:88:C5:3D:E5:40:09:77:24
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3230322e3134352e302f32342d3234203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.145.0/24
Signature Algorithm: sha256WithRSAEncryption
52:65:02:5e:bc:27:c1:d9:49:e5:70:72:59:cf:5a:db:33:e4:
30:47:d3:93:0e:c4:25:7c:5d:c9:15:21:a5:e0:ca:3b:db:1f:
f8:8d:a9:fb:b7:63:ae:d3:3f:0f:81:65:92:4d:87:28:06:d7:
62:d0:a0:97:ac:d6:c9:e1:c2:98:ff:06:c7:5f:0f:21:54:df:
8d:10:f2:da:31:80:10:58:8c:8d:58:ed:a3:c2:df:15:17:4b:
5a:b5:c7:aa:8a:b1:45:70:bb:d8:eb:7f:88:99:44:a0:fc:29:
3a:40:ed:90:f9:b3:f4:1d:7a:21:8c:f0:c6:58:0c:b6:63:6d:
40:f5:70:b3:cd:17:90:55:10:35:07:6c:4f:2f:cd:58:66:7d:
f1:23:fb:18:92:ff:f7:a2:b2:6e:3a:4b:ef:f8:d3:6f:e7:4e:
d0:da:1a:fb:1a:32:9a:7c:31:9c:79:a3:1a:f4:63:0a:83:9e:
30:71:54:f2:62:94:51:f6:a4:ad:4d:e8:50:6f:84:82:82:38:
5e:6c:d5:7a:59:80:54:ba:4b:26:e7:8e:9c:ff:d7:66:66:a4:
a8:c3:f9:e4:79:3e:71:51:33:c3:73:5a:2c:b1:9e:21:97:0e:
6a:80:71:36:b6:8b:7b:8e:29:82:03:10:d1:a4:bc:22:10:03:
ca:21:e3:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 05:22:02 2024 by rpki-client on console-fra.rpki-client.org