Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138302e302f32332d3233203d3e2039303837.roa
File: 3137382e3230382e3138302e302f32332d3233203d3e2039303837.roa (raw, json)
Hash identifier: 02sz5QfAQnHvh4Lh5O754/DCrpL/00XDepiR29oSGeo=
Subject key identifier: 57:7B:F3:34:9C:FD:1F:88:2E:EC:9B:C9:1F:4E:2F:BA:23:B7:C6:16
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 019C30297699B1CBC911D3FCD24C12E20D7220AE
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138302e302f32332d3233203d3e2039303837.roa
Signing time: Fri 17 Nov 2023 22:09:37 +0000
ROA not before: Fri 17 Nov 2023 22:04:37 +0000
ROA not after: Fri 15 Nov 2024 22:09:37 +0000
asID: 9087
IP address blocks: 178.208.180.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 19:51:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:30:29:76:99:b1:cb:c9:11:d3:fc:d2:4c:12:e2:0d:72:20:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Nov 17 22:04:37 2023 GMT
Not After : Nov 15 22:09:37 2024 GMT
Subject: CN=577BF3349CFD1F882EEC9BC91F4E2FBA23B7C616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:81:fc:96:af:e9:46:60:11:63:d8:68:58:32:
a9:4c:df:99:e5:97:df:6c:b6:ec:10:82:93:44:77:
1c:92:15:4f:40:46:cc:f4:b5:27:e9:ff:a4:90:75:
5d:34:0c:7f:06:0d:3a:e5:44:a9:94:84:7f:30:72:
ed:eb:25:9b:ad:db:83:b9:e3:59:c5:9c:c3:d8:70:
35:97:81:ea:ba:2e:ed:75:23:11:91:64:50:16:d1:
55:e4:79:95:63:44:15:db:21:46:f6:8f:db:ea:1d:
1c:63:6f:e5:e6:f6:4d:87:d1:bf:ea:e4:3d:b0:ee:
be:4b:d2:55:67:07:ef:56:25:aa:0b:95:0a:52:15:
6a:6c:b8:4d:d4:af:ef:44:90:44:0e:19:16:7b:5b:
09:f7:69:79:35:76:66:3b:b1:ef:f4:22:0f:7c:6d:
48:15:0f:71:75:2a:f8:03:65:71:b9:1d:de:0a:9a:
f0:b9:5d:9b:9e:0c:58:35:69:2f:f0:c8:68:c1:86:
46:11:fb:7c:d5:80:25:95:ae:e7:73:42:29:d5:65:
97:af:1d:78:3a:96:22:45:46:23:ef:0d:b0:4c:ef:
dc:7f:45:c5:b4:88:10:f4:0c:c6:03:55:88:76:be:
bb:f9:cb:c2:c0:7f:e6:8e:b2:0c:78:a0:09:c2:10:
e8:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:7B:F3:34:9C:FD:1F:88:2E:EC:9B:C9:1F:4E:2F:BA:23:B7:C6:16
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138302e302f32332d3233203d3e2039303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.180.0/23
Signature Algorithm: sha256WithRSAEncryption
96:88:c1:03:67:ed:7a:cb:9c:8c:1d:f4:34:bb:fb:f3:c3:15:
a7:b4:93:d9:92:5f:e5:27:b3:92:2d:4b:fe:4d:85:02:db:43:
01:35:8c:5c:8e:5a:b4:25:18:5f:cc:c6:ec:3e:e3:b7:6c:5b:
f0:4c:18:3f:ae:ab:5e:df:51:61:ee:b6:2c:a5:73:83:5a:03:
29:b2:b6:51:02:f9:13:cd:e4:fa:d2:91:9f:8a:f5:70:1e:f0:
f2:ef:35:a2:5d:86:a2:48:d6:5d:08:4e:58:de:9e:3f:47:31:
74:63:99:31:03:5f:a4:8a:1f:18:97:cc:9b:af:e1:62:75:e2:
71:f9:82:34:81:75:59:0c:40:3c:8a:3d:90:92:d2:31:bb:55:
9d:cc:e2:7b:41:22:cb:60:d2:8c:29:25:46:c5:63:ca:0d:60:
97:de:d2:d1:41:ec:bf:aa:98:81:1f:01:8c:b9:5a:01:0c:42:
20:7d:65:79:1d:62:25:db:30:73:0f:51:fa:99:1e:c3:41:c9:
03:2c:14:3c:3b:3a:ca:20:1e:02:88:b6:d9:86:5c:7c:d3:0b:
6e:a4:7b:22:e7:0d:a2:b6:fa:ea:2e:72:a7:04:78:e8:92:84:
f0:8b:ab:97:29:ce:67:ed:ba:3f:8a:e5:2f:bd:d7:ea:3e:7b:
b2:48:15:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:55:49 2024 by rpki-client on console-fra.rpki-client.org