Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138302e302f32332d3233203d3e20343030393039.roa
File: 3137382e3230382e3138302e302f32332d3233203d3e20343030393039.roa (raw, json)
Hash identifier: 65AgVnkKt08J+d9hHiHsHDcFlx8/HY0Gdo8OaP4c2fo=
Subject key identifier: E4:28:F1:2F:7D:43:49:53:72:98:81:F0:E1:23:8D:8B:36:75:76:7D
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 067099EBFD3C59A314733239A72D87D8F646CFF4
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138302e302f32332d3233203d3e20343030393039.roa
Signing time: Tue 19 Dec 2023 13:59:36 +0000
ROA not before: Tue 19 Dec 2023 13:54:36 +0000
ROA not after: Tue 17 Dec 2024 13:59:36 +0000
asID: 400909
IP address blocks: 178.208.180.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 19:51:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:70:99:eb:fd:3c:59:a3:14:73:32:39:a7:2d:87:d8:f6:46:cf:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Dec 19 13:54:36 2023 GMT
Not After : Dec 17 13:59:36 2024 GMT
Subject: CN=E428F12F7D434953729881F0E1238D8B3675767D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d0:2d:db:2d:a3:ea:0b:8b:c0:54:12:98:65:
da:63:a7:8b:4f:76:af:3f:3b:29:a6:9e:37:f4:5c:
28:7b:08:2b:04:b8:39:a4:97:73:78:a0:68:d1:25:
5c:32:a5:ef:ef:eb:d3:cc:12:96:16:13:0a:08:96:
f4:db:0a:d8:b2:e4:bf:15:d1:d5:f4:44:50:fb:71:
bf:ca:85:91:5b:a5:be:9f:0c:e0:3f:ab:b6:d8:4d:
6b:18:8c:4b:f6:85:a6:b6:49:bd:c8:a7:76:5e:5a:
75:21:4d:c7:1f:42:d1:5a:8f:fa:74:01:73:f1:c4:
ad:c8:05:72:d4:c5:76:b4:d0:7b:89:a9:d1:22:d8:
0c:11:90:fd:3b:ca:c6:8e:2b:a3:92:57:07:f9:8c:
68:a8:90:c0:63:0c:ad:11:3b:b9:b1:67:ea:5e:e6:
4b:dc:45:1e:91:68:d7:cd:b9:3b:08:28:79:22:73:
36:94:88:77:09:b5:1f:25:c2:bf:79:1b:88:ae:52:
39:3e:dc:b6:62:6a:99:59:b7:cf:8c:04:81:04:fe:
e6:66:6e:1b:e4:90:cb:db:2e:b4:e9:e9:d4:70:95:
7b:42:1a:98:86:23:87:8f:94:df:64:83:a8:16:66:
d2:69:db:df:43:81:2f:44:90:83:5f:24:65:83:8f:
fc:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:28:F1:2F:7D:43:49:53:72:98:81:F0:E1:23:8D:8B:36:75:76:7D
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138302e302f32332d3233203d3e20343030393039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.180.0/23
Signature Algorithm: sha256WithRSAEncryption
57:0b:db:8e:72:69:30:0d:83:23:4c:0e:b9:97:50:08:de:9b:
e9:c9:5e:58:05:f6:b0:e1:91:7c:e1:f3:90:43:19:f3:15:38:
3f:ef:02:c1:ea:15:dd:d1:83:d5:5c:98:cf:b2:26:1e:af:fb:
36:0f:be:7d:5a:82:04:8d:dd:da:19:d3:fb:54:af:08:e0:ea:
6a:44:43:01:26:37:92:a6:a4:12:8c:55:28:e0:68:96:de:67:
ee:88:93:18:b0:5a:02:84:1a:3c:ef:91:fa:0e:25:80:4c:28:
ab:e4:e9:f2:10:80:58:b1:fa:87:e3:55:e1:1f:d9:77:fd:9b:
6d:c5:55:df:46:56:2c:14:32:59:44:e2:6d:4d:08:02:a8:31:
32:96:8f:1d:08:7a:d6:06:ab:d5:bd:b3:77:f1:eb:ec:e7:e9:
a9:69:2d:12:51:08:49:5f:89:4f:ef:67:10:fa:75:f5:13:93:
70:04:35:7c:15:89:39:21:7e:88:78:c8:81:d8:52:cb:4b:69:
b6:5f:98:1c:a9:39:47:9f:71:9c:c6:09:d0:4e:3a:cc:b1:6c:
8f:88:0c:65:98:14:19:46:43:e2:bc:76:4c:28:6c:a2:13:e7:
37:c6:1c:38:9e:be:ea:18:49:1f:84:78:ac:82:99:09:09:f3:
43:67:c6:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 04:05:07 2024 by rpki-client on console-ams.rpki-client.org