Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135352e302f32342d3234203d3e203634323637.roa
File: 3138352e3232362e3135352e302f32342d3234203d3e203634323637.roa (raw, json)
Hash identifier: ndFaeOmTGLPT5V5I+qk9XNDfayVUEssXnm22GtfpDgM=
Subject key identifier: E2:83:99:24:B7:F2:7F:70:71:60:9E:95:F4:06:5B:EB:E3:01:F7:BA
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 34E9CB3B74E8E4E968E13EF65557E6827EA699BD
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135352e302f32342d3234203d3e203634323637.roa
Signing time: Mon 18 Mar 2024 07:26:14 +0000
ROA not before: Mon 18 Mar 2024 07:21:14 +0000
ROA not after: Mon 17 Mar 2025 07:26:14 +0000
asID: 64267
IP address blocks: 185.226.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:e9:cb:3b:74:e8:e4:e9:68:e1:3e:f6:55:57:e6:82:7e:a6:99:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Mar 18 07:21:14 2024 GMT
Not After : Mar 17 07:26:14 2025 GMT
Subject: CN=E2839924B7F27F7071609E95F4065BEBE301F7BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b3:d5:f8:66:03:c1:f1:c0:5e:d9:59:b2:14:
49:00:78:83:82:77:6d:a2:ed:82:8a:47:04:ae:10:
92:47:39:31:46:1a:5d:fc:db:0f:b2:7c:18:93:cc:
bb:5c:87:f7:91:b3:c4:04:f8:ef:7f:4d:71:9d:24:
7d:9d:4e:8d:25:7e:51:56:55:35:63:a4:08:c5:cf:
38:26:e5:72:24:47:f5:64:45:76:fa:03:c3:cf:e7:
e4:5e:42:fe:04:49:98:19:91:58:ae:61:0d:a2:7b:
93:c2:a3:04:07:6b:04:93:1a:c3:13:4b:0d:79:c3:
8f:75:e7:35:27:2e:25:72:89:8d:88:f2:2c:7b:35:
b8:58:0c:8e:d9:5c:8c:c8:b9:8b:33:f1:89:43:93:
5d:dd:66:89:cb:04:fe:f5:98:d5:18:ff:9a:1d:26:
61:00:97:08:24:ae:24:3d:ae:2d:06:aa:f4:51:af:
83:76:42:ec:70:4d:71:07:ec:9d:f8:45:16:ef:fc:
85:a8:b8:64:2f:aa:e7:ee:26:45:e9:89:93:27:71:
c0:d5:4d:dc:5e:e2:70:31:f5:09:a8:8f:38:98:a3:
6e:bc:7f:08:19:54:c4:f6:e9:17:88:d5:7c:fd:73:
52:ff:b2:b3:d2:e5:9c:65:0b:21:cc:a1:b4:88:78:
83:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:83:99:24:B7:F2:7F:70:71:60:9E:95:F4:06:5B:EB:E3:01:F7:BA
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135352e302f32342d3234203d3e203634323637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.155.0/24
Signature Algorithm: sha256WithRSAEncryption
70:fc:c6:34:a8:09:fb:4f:67:44:08:71:ac:be:4c:da:76:4e:
fc:26:be:81:9b:57:16:83:01:40:a0:af:54:61:d3:fd:31:fb:
c6:d1:3c:87:47:3c:f8:0f:e5:79:dd:7b:f6:79:b5:f1:e6:d7:
63:50:9c:f5:45:9f:17:ac:43:07:76:ed:d5:e4:f0:87:12:e7:
ce:d2:d4:53:94:a3:0c:51:24:8d:bd:55:84:f8:45:26:bc:fb:
c1:32:2e:ba:ca:6d:b7:0b:f5:16:00:3a:4e:02:23:65:59:40:
1f:de:7b:2d:7d:e4:76:3b:bf:07:f7:c2:e3:6f:97:28:0e:38:
9f:f1:87:96:62:01:a5:1a:ba:4a:6a:64:8a:af:c6:70:21:e1:
2d:8e:be:36:da:8a:ac:43:9b:cb:d2:24:1f:c2:e4:ab:6b:10:
bf:16:3f:eb:1a:ef:28:34:14:f1:86:87:89:b1:e8:c7:05:0c:
7d:f0:7f:a3:8f:cb:bd:e9:1e:8d:cf:1e:3d:64:2e:19:9f:5d:
b3:15:e1:7f:57:32:09:e9:21:e5:f2:e2:bd:4f:f3:2a:a6:b0:
e8:a9:5e:f6:10:cc:03:25:d7:6b:19:48:59:09:e8:a8:71:c9:
ac:83:c6:17:6e:7a:a1:0d:cd:6d:cd:00:ee:f1:6c:fc:03:9d:
79:6e:55:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 18:39:44 2024 by rpki-client on console-ams.rpki-client.org