Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3137382e302f32332d3233203d3e2039303837.roa
File: 3137382e3230382e3137382e302f32332d3233203d3e2039303837.roa (raw, json)
Hash identifier: 9tvRmo3Xtz7DfH7bGUdjl0KWjIEiRRC8/EPKzP+df3U=
Subject key identifier: BC:DB:B6:BA:8D:90:A1:B1:B7:B1:3C:54:64:5C:84:47:D4:41:C0:03
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 327F935D3E1915B9EBDD268FA6C6895ED90145E0
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3137382e302f32332d3233203d3e2039303837.roa
Signing time: Fri 25 Oct 2024 15:43:25 +0000
ROA not before: Fri 25 Oct 2024 15:38:25 +0000
ROA not after: Fri 24 Oct 2025 15:43:25 +0000
asID: 9087
IP address blocks: 178.208.178.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:7f:93:5d:3e:19:15:b9:eb:dd:26:8f:a6:c6:89:5e:d9:01:45:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Oct 25 15:38:25 2024 GMT
Not After : Oct 24 15:43:25 2025 GMT
Subject: CN=BCDBB6BA8D90A1B1B7B13C54645C8447D441C003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ac:ac:44:a7:e3:de:e3:da:64:54:71:34:14:
d6:23:65:2e:21:03:b2:02:67:88:3a:b2:4b:d0:c1:
38:48:aa:0c:1d:bf:e0:b0:1d:ae:df:46:84:ac:44:
d3:5c:48:8a:96:64:49:af:a2:05:15:b2:7a:1a:3d:
0a:29:bb:e1:f5:f9:43:5c:a1:7d:61:d9:4e:49:ae:
7c:a3:b6:68:16:d9:41:8f:b3:53:ff:af:aa:43:78:
c4:4b:1b:c6:35:0f:68:5f:4a:44:7e:71:75:48:ba:
29:71:2c:d8:1b:02:d5:80:e5:65:a6:45:ee:62:28:
38:83:04:63:10:26:09:2b:48:3e:ae:b4:b8:34:03:
ae:82:d1:c6:54:29:46:08:b0:90:26:bc:60:38:07:
e1:ba:15:10:2b:11:55:2b:65:dd:32:d9:c1:52:39:
80:61:44:67:1b:0d:12:17:c5:23:09:74:93:7d:e0:
e1:17:72:58:48:c6:68:95:d6:da:06:00:ad:3b:67:
3d:7c:06:51:5e:65:91:79:ba:a7:24:bd:90:f7:f9:
04:f2:20:07:c5:55:2a:59:54:12:0d:42:10:ba:0e:
65:40:38:b0:84:5e:fe:1d:ba:92:7d:f8:34:2f:a2:
93:43:5c:be:83:3c:e6:5b:01:f6:7b:5a:c2:1a:fe:
54:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:DB:B6:BA:8D:90:A1:B1:B7:B1:3C:54:64:5C:84:47:D4:41:C0:03
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3137382e302f32332d3233203d3e2039303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.178.0/23
Signature Algorithm: sha256WithRSAEncryption
02:6a:d5:42:05:2e:5e:ae:84:1f:e3:de:15:ab:8b:c4:15:fb:
cd:c7:ad:34:04:56:22:2c:a4:59:04:d2:95:7b:a5:63:1b:98:
c9:3b:a5:41:82:3c:d0:f1:da:f7:a4:26:8c:47:1f:06:5a:63:
74:29:a6:bf:67:7f:c7:a4:46:b0:36:e6:15:80:64:29:5b:ce:
3d:cc:ec:32:3a:e9:60:07:6b:30:3e:1d:1c:b8:58:c2:60:b3:
7a:d8:a5:29:67:b0:d1:d7:a8:e0:56:a8:46:3b:57:b3:2e:1e:
0e:4e:5c:f0:e4:c0:ff:2c:99:a2:55:f5:45:fa:39:91:28:7e:
bc:64:a3:f1:7e:e1:0a:e0:b6:e7:9b:5f:c6:3a:67:b1:a2:0b:
26:5e:5d:48:8a:73:de:3a:4b:83:99:df:ed:1a:5b:b5:35:30:
d9:85:08:ba:f9:57:c0:40:b4:9e:06:74:73:f3:1e:6d:49:ac:
61:2c:7e:39:c5:68:cd:bd:a0:90:65:c6:cf:1e:9c:bd:e5:60:
e8:95:9b:00:da:ff:17:e2:a8:34:66:40:b7:83:96:10:2d:dd:
4e:c7:a6:f1:75:4b:34:5b:12:73:17:54:28:b7:3e:67:70:b9:
ff:d9:ab:52:84:a5:7e:55:f3:41:93:c3:84:83:93:1e:32:8c:
31:47:50:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:52:26 2024 by rpki-client on console-ams.rpki-client.org