Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3136302e302f32322d3234203d3e203232333633.roa
File: 3137382e3230382e3136302e302f32322d3234203d3e203232333633.roa (raw, json)
Hash identifier: QJartE+wHVvk60AvgfjL0JAqqq0kUkxJHqglKKBaY6c=
Subject key identifier: 2F:84:47:FF:F3:02:AE:D1:ED:F1:F8:55:8C:8A:40:CF:7B:50:54:79
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 4A53BC386E64B19DC8E649A48B8210254AF97738
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3136302e302f32322d3234203d3e203232333633.roa
Signing time: Mon 02 Sep 2024 06:05:19 +0000
ROA not before: Mon 02 Sep 2024 06:00:19 +0000
ROA not after: Mon 01 Sep 2025 06:05:19 +0000
asID: 22363
IP address blocks: 178.208.160.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:53:bc:38:6e:64:b1:9d:c8:e6:49:a4:8b:82:10:25:4a:f9:77:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Sep 2 06:00:19 2024 GMT
Not After : Sep 1 06:05:19 2025 GMT
Subject: CN=2F8447FFF302AED1EDF1F8558C8A40CF7B505479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ee:b6:d1:36:25:11:05:40:8c:76:92:e1:ff:
8d:b4:ef:98:93:a2:27:ce:56:65:8b:7b:c9:15:b7:
a5:f3:1b:22:a0:f2:ac:09:39:41:52:b7:30:07:6b:
23:13:fc:60:84:2c:5f:17:f5:b7:88:be:98:9c:dc:
d5:1d:59:24:30:01:7f:a1:30:fd:57:dc:36:c2:5f:
eb:ae:19:e0:34:d4:21:60:7a:a3:2d:7c:9d:bb:f8:
a9:99:cd:e6:2d:00:63:a4:c5:c6:59:7a:80:32:31:
f5:df:e2:f8:4a:38:28:68:2c:31:8b:29:74:18:6c:
6d:4b:61:d4:af:3a:9c:b2:ff:f7:3b:05:d7:69:d7:
08:43:c3:4f:dd:d9:e1:b8:ef:22:53:33:f3:72:cb:
10:7a:7c:04:29:1a:f5:a8:16:0c:66:f0:34:8d:75:
ba:25:2d:c2:d0:3a:32:d0:3a:2a:a4:99:64:38:7a:
1a:ce:96:f8:12:e4:5d:51:86:ae:6d:e0:a9:4f:6e:
4c:f9:98:8d:4d:e9:f4:ae:2e:9a:ca:c8:82:d2:43:
5d:1e:1b:a6:96:96:20:fd:f6:c2:db:b7:81:7e:10:
58:c3:db:0b:a1:3f:4e:50:27:99:8f:66:98:d8:b4:
cf:da:71:b0:fa:57:33:93:34:05:f4:5f:a0:ed:5a:
b1:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:84:47:FF:F3:02:AE:D1:ED:F1:F8:55:8C:8A:40:CF:7B:50:54:79
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3136302e302f32322d3234203d3e203232333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.160.0/22
Signature Algorithm: sha256WithRSAEncryption
26:52:2f:bd:d6:4c:7f:de:c7:65:86:38:71:a9:36:ae:6b:ee:
24:19:27:ec:a2:21:db:80:2a:f3:c4:e2:78:06:83:13:ce:8a:
24:2a:dc:59:5b:7e:ec:d0:00:c0:2f:4f:4b:95:f1:5a:0b:87:
51:e7:3e:6d:12:80:ac:00:c8:20:57:6d:6d:fb:e9:62:3a:48:
c8:93:ac:c0:b6:d7:05:f2:78:f0:e5:79:98:72:37:8b:36:4a:
64:db:16:7f:d7:6a:9a:d8:ba:a7:13:ec:0b:ee:19:f3:1d:fb:
54:59:37:bb:ed:77:56:21:ea:8c:e4:72:4c:5c:0d:82:eb:54:
67:21:9b:0a:e7:9b:8e:11:60:e6:63:ae:0e:2c:f9:61:48:0b:
b7:2a:c2:7e:0f:4a:31:2c:3c:13:11:66:9b:bd:37:74:d3:1e:
8b:09:7d:c9:72:8e:6a:a4:07:95:2c:d7:07:52:b0:6f:39:0d:
1e:5b:4c:11:a0:ed:61:82:93:b4:cd:65:fb:6c:2d:dc:a1:a5:
85:f9:d9:79:41:0d:4e:ab:12:68:57:68:81:9d:f3:c0:7f:72:
a5:e8:79:b1:fb:9f:60:67:73:4e:22:ba:2a:a1:22:55:b9:54:
29:45:54:49:b4:33:fe:a9:35:f6:1e:6a:21:9e:0a:47:84:91:
e8:8c:16:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:52:26 2024 by rpki-client on console-ams.rpki-client.org