Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3136302e302f32322d3234203d3e203232333633.roa
File: 3137382e3230382e3136302e302f32322d3234203d3e203232333633.roa (raw, json)
Hash identifier: 9sbhpDqXY8xBXnC6W3ED6BiDZlb8NVtZz4QV/lNS+1g=
Subject key identifier: 68:A3:44:79:EF:A3:75:66:2A:C8:90:FF:25:76:FE:75:F9:C0:AE:CB
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 6BFA3A9AA6E6579958ECF7C819E19EB518D4D851
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3136302e302f32322d3234203d3e203232333633.roa
Signing time: Mon 02 Oct 2023 05:21:28 +0000
ROA not before: Mon 02 Oct 2023 05:16:28 +0000
ROA not after: Mon 30 Sep 2024 05:21:28 +0000
asID: 22363
IP address blocks: 178.208.160.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Jun 2024 14:48:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:fa:3a:9a:a6:e6:57:99:58:ec:f7:c8:19:e1:9e:b5:18:d4:d8:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Oct 2 05:16:28 2023 GMT
Not After : Sep 30 05:21:28 2024 GMT
Subject: CN=68A34479EFA375662AC890FF2576FE75F9C0AECB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:62:7a:b3:8c:d3:0c:bf:e7:ec:49:6c:e7:a0:
14:f1:51:78:5c:fc:30:9c:82:53:7b:3b:be:49:20:
f5:34:6c:4d:3d:09:ad:7d:eb:2f:43:28:88:61:39:
40:bc:0e:7b:52:1b:bf:c9:b1:57:4f:05:50:03:a7:
66:98:30:04:95:dd:6c:7e:9c:f1:4c:2a:67:16:8f:
c1:67:0a:fc:d6:30:98:3e:26:c1:08:10:8b:73:f3:
43:87:16:45:71:b3:01:59:2c:65:87:0f:c2:28:15:
57:ef:a3:24:c3:63:03:e5:b8:05:e6:b3:e3:ca:d5:
67:41:25:06:58:71:5b:fd:d5:5c:08:66:35:15:60:
43:5d:0f:da:3c:bc:16:b4:35:46:90:48:e5:2e:91:
43:47:b6:58:05:ae:eb:20:92:9b:d1:18:f2:a2:ab:
34:fd:2e:12:a5:47:e4:63:6c:af:37:e5:a6:7c:f6:
26:22:06:bf:86:b2:48:ff:6c:c7:99:60:1b:e8:56:
59:81:f0:5b:3b:6a:2f:fc:e2:c6:ec:65:27:3d:0f:
78:e5:21:85:62:31:b6:34:19:20:b3:f4:66:7b:fc:
1e:2d:19:a0:c0:f5:25:0a:b7:98:86:88:3f:7b:6f:
59:e2:ea:7f:ca:d8:89:48:f3:20:66:91:e2:97:18:
9f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:A3:44:79:EF:A3:75:66:2A:C8:90:FF:25:76:FE:75:F9:C0:AE:CB
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3136302e302f32322d3234203d3e203232333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.160.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:6f:8e:83:27:e5:0d:b7:3f:f6:1b:16:13:35:e1:d7:1d:28:
2f:f3:9f:d3:92:1d:aa:98:a9:b6:ba:d4:bb:92:f4:79:31:3a:
a3:36:ff:b4:ff:4b:ef:c9:8d:fb:07:05:31:d2:59:dc:03:a1:
85:22:db:4f:b8:2f:3a:9a:b9:71:99:b9:1a:31:b5:1e:7a:de:
68:71:45:87:c9:66:f9:06:d0:92:d1:ff:d6:48:0e:96:5a:15:
c8:20:df:32:28:65:59:8b:f3:be:f9:be:8d:1f:6b:5e:2c:c6:
8c:dd:3c:44:ff:d8:51:3b:b4:ab:94:5a:36:a4:b1:48:2c:9c:
00:3f:97:0b:11:89:a4:b3:fe:17:83:ff:b5:54:f1:33:a3:d2:
f8:4a:5c:6d:b0:c3:84:4a:2e:c5:60:93:63:21:24:72:90:24:
30:b2:6a:d6:e2:b4:ce:8c:15:8f:92:45:5b:34:70:cd:c0:d5:
cb:73:78:02:d8:94:3e:3b:00:cc:78:d9:d5:01:36:78:57:fe:
94:9a:41:4f:50:28:64:32:ac:d4:12:6f:8e:ab:e5:a9:6b:4e:
e8:53:d0:0d:7a:5f:74:f5:0a:a5:be:0b:c7:e1:14:51:60:69:
e0:4d:fe:2c:8b:0c:6a:0a:37:5e:82:d0:fd:fc:3e:18:be:43:
24:19:21:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 00:36:56 2024 by rpki-client on console-ams.rpki-client.org