Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3230322e3134372e302f32342d3234203d3e203630343538.roa
File: 3138352e3230322e3134372e302f32342d3234203d3e203630343538.roa (raw, json)
Hash identifier: ivfqgW6pknNz7W2BrfCSXrSbgMoveHSKy/ARnXypFkM=
Subject key identifier: E6:55:1C:DC:3E:78:A2:B5:27:BC:15:56:94:99:65:B2:83:E1:DE:1F
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 79FC4C8059B1C81EC74E0257B575DEC0EB466EE3
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3230322e3134372e302f32342d3234203d3e203630343538.roa
Signing time: Mon 03 Jul 2023 05:42:00 +0000
ROA not before: Mon 03 Jul 2023 05:37:00 +0000
ROA not after: Mon 01 Jul 2024 05:42:00 +0000
asID: 60458
IP address blocks: 185.202.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 20:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:fc:4c:80:59:b1:c8:1e:c7:4e:02:57:b5:75:de:c0:eb:46:6e:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jul 3 05:37:00 2023 GMT
Not After : Jul 1 05:42:00 2024 GMT
Subject: CN=E6551CDC3E78A2B527BC1556949965B283E1DE1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f9:78:c3:e1:d3:e2:f0:f8:a1:e2:28:a9:b5:
e6:25:03:c1:26:d6:34:65:41:c7:57:88:bd:6f:3c:
39:c9:8e:91:93:1f:85:86:2d:1b:40:ce:ff:6a:93:
df:f9:6f:c7:a1:df:be:87:99:bf:5a:bf:7f:7e:41:
44:e1:1d:87:8a:3d:1f:45:e8:71:0a:c0:fd:d0:48:
a2:5d:69:60:22:a4:e2:b6:43:81:e1:1d:f0:07:d8:
8e:8e:7b:73:69:78:ee:0b:96:bd:56:99:d4:2b:e6:
7d:ca:75:de:01:05:cb:22:df:1b:0a:e7:b5:95:01:
b0:22:8d:50:fe:6e:d7:62:5d:74:47:9f:71:49:53:
46:73:18:e4:65:a9:1b:df:cd:dd:64:cf:38:d2:d4:
29:01:80:6f:65:3a:5e:d7:aa:6b:f6:02:02:0d:b4:
9f:98:68:f6:08:d7:57:9b:19:da:06:da:f6:18:e9:
08:97:34:bc:6f:c6:4c:10:e3:17:7a:dd:c7:bd:1d:
31:4f:9c:2d:c0:f9:7a:45:9a:d6:6d:77:57:96:26:
ab:20:47:25:aa:0a:f3:7e:85:8e:c2:6b:c9:ba:9b:
be:2e:94:73:72:66:60:c5:ff:ae:4c:70:7f:f2:97:
76:35:38:92:17:df:fe:20:e8:c2:cf:f5:31:2a:a9:
67:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:55:1C:DC:3E:78:A2:B5:27:BC:15:56:94:99:65:B2:83:E1:DE:1F
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3230322e3134372e302f32342d3234203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.147.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:ca:96:60:8c:8b:0d:bf:10:89:40:38:9f:4a:5e:f1:93:c5:
35:e1:1a:ae:37:e1:74:4c:c6:71:14:08:81:45:81:c1:72:24:
23:e4:73:7a:dc:d9:45:14:2b:05:4e:ae:51:36:82:0c:63:7b:
05:80:5e:ef:22:fa:55:f5:78:b1:ad:ff:3d:34:ba:ff:a4:f0:
79:1e:18:6f:48:c9:ae:bd:ae:78:99:c0:1f:e7:32:09:8e:b7:
94:7c:53:79:8f:45:13:7b:dc:7d:9e:b4:1f:de:4d:9c:9c:a1:
1f:32:3f:2a:ad:59:68:89:b3:78:b9:1d:90:8d:8a:5f:7e:e9:
d8:ea:32:bf:4c:9b:eb:b7:98:82:10:44:69:b4:53:96:3f:bf:
91:cb:65:d5:17:34:36:b7:96:bc:ba:52:de:c3:50:19:ba:6a:
2f:bd:69:ac:85:c3:e8:1d:6f:9a:ac:e0:1c:03:5c:7f:dd:17:
04:b3:98:e0:a4:18:e2:17:08:52:e8:5c:cd:4f:ed:16:c7:de:
b8:3b:8c:13:77:ef:02:3f:2e:b8:c7:26:6d:77:58:ab:07:ba:
81:8f:6a:96:99:ad:94:2a:64:28:d3:d2:ec:23:b2:78:f8:a7:
6b:27:78:31:7f:4f:4e:73:db:c0:8e:90:18:3a:45:59:7c:f2:
ba:43:90:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 05:30:57 2024 by rpki-client on console-ams.rpki-client.org