Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138302e302f32332d3233203d3e20343030393039.roa
File: 3137382e3230382e3138302e302f32332d3233203d3e20343030393039.roa (raw, json)
Hash identifier: vcEuOvFgmLi3zzBe8Qsj08Y2hJRggKZ9WNP4Mjqp0Bg=
Subject key identifier: 5D:9E:3E:2B:DF:D2:28:4F:D3:6A:6A:83:C1:F8:D0:A2:D5:49:77:E3
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 351CEEFA654D20BB77BA4F5B05332B27CF8EE08D
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138302e302f32332d3233203d3e20343030393039.roa
Signing time: Tue 19 Nov 2024 14:43:28 +0000
ROA not before: Tue 19 Nov 2024 14:38:28 +0000
ROA not after: Tue 18 Nov 2025 14:43:28 +0000
asID: 400909
IP address blocks: 178.208.180.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:1c:ee:fa:65:4d:20:bb:77:ba:4f:5b:05:33:2b:27:cf:8e:e0:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Nov 19 14:38:28 2024 GMT
Not After : Nov 18 14:43:28 2025 GMT
Subject: CN=5D9E3E2BDFD2284FD36A6A83C1F8D0A2D54977E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9f:6e:95:1d:19:71:14:3e:ad:51:0f:68:72:
d8:8b:4c:7e:18:d4:b8:45:56:b7:e2:18:e3:c2:56:
c6:26:9c:29:a8:9c:6a:46:a4:c0:8e:a1:77:30:4e:
ad:43:eb:53:6b:30:05:fe:b6:44:2b:56:1c:16:1f:
cd:4f:34:f6:6a:bc:f1:e5:cc:09:28:5b:10:c3:c1:
4f:7a:e1:6d:fe:07:62:51:de:91:b5:f1:39:a2:2b:
dc:72:a2:17:9c:20:a2:8f:d4:42:f5:4d:07:8d:9a:
37:33:60:ee:b3:0b:01:73:81:b6:54:44:51:0b:ac:
df:3b:0f:c3:55:9c:4c:88:69:90:67:4b:c1:ae:3b:
ef:b6:57:4a:cf:db:05:08:bf:8b:46:42:2c:70:9f:
23:a4:75:41:fa:a2:4f:80:1e:c9:05:6f:6a:74:1d:
48:a4:86:37:c9:76:a0:23:3c:bb:c9:12:9a:8e:97:
40:59:4f:f7:2f:1a:71:46:94:69:ae:7a:0e:68:44:
ff:8c:33:34:97:00:72:5d:e9:c0:fa:79:10:49:ca:
8e:61:0e:47:0d:55:ef:cc:bf:87:61:62:66:9b:27:
2c:40:05:a9:3f:95:f4:ff:52:6f:ac:b2:55:0d:25:
e6:80:41:46:1f:f1:c2:d0:69:89:02:c2:b6:89:03:
2f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:9E:3E:2B:DF:D2:28:4F:D3:6A:6A:83:C1:F8:D0:A2:D5:49:77:E3
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138302e302f32332d3233203d3e20343030393039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.180.0/23
Signature Algorithm: sha256WithRSAEncryption
28:cc:e0:e3:95:7c:62:eb:e4:1a:f7:f5:31:5a:f9:2d:ac:0c:
d0:76:d6:89:2b:e0:fd:06:d0:56:09:5f:51:4f:5c:ef:af:8e:
0e:ed:8f:1b:c6:73:d2:f6:a5:7b:5e:cb:95:e2:67:c9:e3:84:
5e:7f:be:19:f1:5e:13:65:38:bc:1b:3f:bd:71:e9:1f:5b:3d:
b4:d5:8b:fd:b0:6e:74:8a:53:8e:2c:da:bf:60:3f:78:68:cc:
d0:32:08:74:26:f0:bb:94:5b:39:24:a9:99:f3:da:e3:bf:4a:
79:5f:ce:0d:6b:72:ad:33:c7:c0:6d:f0:77:22:04:94:53:b9:
94:89:43:c8:24:64:fc:66:28:4d:c8:84:55:a5:1b:3f:60:a5:
95:44:23:c7:ee:d3:38:6d:68:c8:04:af:59:fa:8d:f8:1a:00:
1f:6e:4d:44:79:06:24:8d:3a:0a:d3:e6:57:bc:cf:df:13:8a:
a1:ed:3d:bc:8e:b7:18:f4:8b:88:57:36:98:44:c5:8c:99:06:
83:05:e4:4d:e8:30:93:3b:bc:50:8f:c1:10:9e:19:77:01:ff:
dd:bf:21:0e:dc:44:b7:92:0b:4f:c9:05:91:42:f9:80:11:56:
e9:85:33:1c:ac:d6:50:2b:49:5a:54:6e:5f:5a:b7:64:51:1d:
a8:c6:0d:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 07:54:59 2024 by rpki-client on console-ams.rpki-client.org