Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e33372e3232382e302f32342d3234203d3e203630343538.roa
File: 3138352e33372e3232382e302f32342d3234203d3e203630343538.roa (raw, json)
Hash identifier: 02GxgQPwwh2PT3p3QgK6Hp3i6/Tidx69Yw3YuSGkfkk=
Subject key identifier: 4E:FF:9E:66:4C:D0:8C:89:41:EB:2A:8F:5B:D3:2F:8A:4E:BC:20:67
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 6C4E73F0C4EFEAAA69215F3E165A2C32683148E5
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e33372e3232382e302f32342d3234203d3e203630343538.roa
Signing time: Mon 03 Jul 2023 05:42:03 +0000
ROA not before: Mon 03 Jul 2023 05:37:03 +0000
ROA not after: Mon 01 Jul 2024 05:42:03 +0000
asID: 60458
IP address blocks: 185.37.228.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:4e:73:f0:c4:ef:ea:aa:69:21:5f:3e:16:5a:2c:32:68:31:48:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jul 3 05:37:03 2023 GMT
Not After : Jul 1 05:42:03 2024 GMT
Subject: CN=4EFF9E664CD08C8941EB2A8F5BD32F8A4EBC2067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:87:3d:91:57:94:3e:ff:3f:be:79:3d:c7:0b:
5d:d3:86:47:0a:45:93:42:d0:14:c8:d2:a5:37:d5:
7e:b4:60:d9:50:dc:f9:d7:fe:bb:1c:4d:10:97:28:
e8:46:2b:d7:94:00:cc:ed:b8:25:2c:0c:e7:b8:e1:
af:8b:e6:d9:1e:0e:92:45:c0:0e:e7:d8:07:32:05:
c1:3f:be:9f:ef:67:85:20:ba:97:7e:b2:cd:47:0b:
a4:23:17:82:b9:01:68:57:15:fe:4c:b1:1f:f8:fa:
75:49:73:aa:af:48:df:ae:39:36:d3:66:7f:27:c9:
56:6f:c4:e3:41:7e:d3:dc:68:c1:4a:74:25:6b:c2:
56:c1:54:61:46:7d:85:c7:7a:f2:c0:60:38:2a:1a:
3b:9d:29:e6:9e:1e:c5:b2:b0:e1:93:cc:23:68:56:
d0:a7:c3:27:aa:8b:8d:43:ad:05:25:b7:e6:50:94:
18:e5:e7:0a:4a:eb:82:8a:36:bc:c7:c5:33:2b:0c:
50:fe:b3:f4:31:24:65:53:91:b3:d7:b1:a0:25:1e:
d9:66:89:97:a4:dd:32:10:aa:a2:da:ea:95:77:ed:
92:a1:98:38:59:81:dd:f5:f1:33:ae:2f:9d:21:62:
5d:7c:6c:99:9c:a3:31:a8:71:59:af:ff:dd:f3:e7:
c8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:FF:9E:66:4C:D0:8C:89:41:EB:2A:8F:5B:D3:2F:8A:4E:BC:20:67
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e33372e3232382e302f32342d3234203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.228.0/24
Signature Algorithm: sha256WithRSAEncryption
61:13:e3:21:77:62:ef:b6:35:5d:ab:61:65:54:bb:21:30:2b:
ea:42:e1:dd:3d:76:a7:69:bb:1b:d1:45:be:c9:5e:7b:c3:9d:
ef:01:d6:35:88:ec:3b:d8:7f:97:94:e0:2d:4e:c9:45:a9:80:
8b:3d:53:9b:e6:ec:85:87:57:27:2e:5a:d6:80:c3:5b:0b:f1:
bb:45:56:b7:21:d3:8e:3c:34:21:74:9d:2c:20:17:b9:19:ed:
43:b4:c2:0b:7a:6b:34:c4:cd:70:eb:28:24:91:b4:87:74:ba:
96:a7:60:3b:f0:8d:6d:8e:5c:05:9e:72:a8:e2:1f:5c:23:bb:
5d:14:d6:1d:e7:e1:f5:c9:c4:af:76:91:f1:b2:67:1b:cd:80:
be:88:87:46:75:08:66:4a:17:46:c0:bb:29:6e:86:61:84:3f:
fb:92:0f:b8:a7:db:5e:88:80:3e:fd:73:87:1e:d8:1d:7f:9e:
f5:65:0c:63:94:37:be:b7:c9:9e:59:06:15:de:6e:80:09:9e:
91:12:c0:66:96:bd:06:55:35:ab:ae:14:7b:98:17:a8:24:4f:
77:ab:d6:9a:0a:f7:4f:fe:6a:90:98:38:57:c2:ca:0d:03:1a:
4b:50:4a:f6:e0:9b:b1:c3:5b:ea:57:b5:bc:aa:82:96:31:d4:
a9:2c:1e:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 01:02:59 2024 by rpki-client on console-ams.rpki-client.org