Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138302e302f32332d3233203d3e2039303837.roa
File: 3137382e3230382e3138302e302f32332d3233203d3e2039303837.roa (raw, json)
Hash identifier: SiFUq6vnrMzCKPM18qpl/Vihi6LoCyeWSsYPFSi6mFQ=
Subject key identifier: 85:BA:23:89:3C:22:14:9A:29:F7:3D:54:CE:5F:A4:0C:65:D4:25:32
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 6DAA49E28189A52EFDE66DF29A980E6947F97EBE
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138302e302f32332d3233203d3e2039303837.roa
Signing time: Fri 18 Oct 2024 22:43:25 +0000
ROA not before: Fri 18 Oct 2024 22:38:25 +0000
ROA not after: Fri 17 Oct 2025 22:43:25 +0000
asID: 9087
IP address blocks: 178.208.180.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:aa:49:e2:81:89:a5:2e:fd:e6:6d:f2:9a:98:0e:69:47:f9:7e:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Oct 18 22:38:25 2024 GMT
Not After : Oct 17 22:43:25 2025 GMT
Subject: CN=85BA23893C22149A29F73D54CE5FA40C65D42532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d7:e7:d4:72:4a:c9:f7:da:93:c1:54:9d:6f:
1b:a5:cb:2e:63:a6:cf:e5:8b:e3:d0:f5:9f:83:c3:
b3:7a:69:43:7c:4e:8a:e6:d5:01:f5:08:94:89:ef:
0f:5e:85:6a:52:ed:7c:bf:3e:d3:c5:4f:18:83:58:
1e:db:31:95:0b:d2:fb:36:76:75:41:e7:67:e3:1a:
29:80:be:b4:35:8f:66:3c:37:a7:dc:9d:7e:6c:cd:
4b:99:5a:39:8d:fe:f8:f4:d9:83:a3:80:4d:e8:cf:
64:ac:52:e0:77:c4:da:af:9d:b4:19:a3:99:e3:3f:
42:bc:f8:85:ea:02:ce:3d:a9:e6:6a:b6:14:40:f8:
af:66:14:09:26:32:e6:02:16:cd:40:c2:b2:f9:53:
24:f0:2f:18:d2:cc:ac:06:fb:2b:fa:00:dc:e5:9b:
bf:60:ff:70:22:80:59:db:4a:46:b3:38:2f:31:7a:
89:c7:0e:53:fe:4d:b9:59:33:50:48:a7:ba:4f:56:
e2:b3:6e:36:4b:e4:53:37:d9:61:dd:a7:65:81:0a:
99:d1:e1:c5:fd:1d:fc:79:62:44:70:da:8a:1a:68:
03:6e:74:53:bc:e6:ad:c0:b6:c9:e7:c4:f9:b4:36:
d1:b7:bd:c8:ba:05:bd:ba:9b:3b:d2:b5:fb:90:65:
60:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:BA:23:89:3C:22:14:9A:29:F7:3D:54:CE:5F:A4:0C:65:D4:25:32
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138302e302f32332d3233203d3e2039303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.180.0/23
Signature Algorithm: sha256WithRSAEncryption
04:67:58:9f:a4:be:14:04:92:0e:71:09:1a:49:55:08:f6:ed:
c4:c1:c1:f6:b3:80:d7:16:b0:b6:28:22:d9:05:78:1f:63:65:
4d:73:3a:64:18:7f:50:24:6d:58:47:6f:42:5e:d6:3d:4a:1f:
94:9e:fa:67:2f:a4:de:14:a9:1a:92:1a:84:dc:7e:fc:f2:c5:
77:26:43:59:85:07:d8:71:d3:a1:93:fe:bf:24:51:7b:b9:7b:
01:0e:2e:93:53:af:aa:43:cb:8f:bc:c9:4d:70:f9:f2:67:82:
99:d6:a6:38:30:6e:cd:c2:37:cd:ac:cc:c6:77:a2:87:59:0e:
f9:d9:9f:61:72:cc:72:38:46:70:e1:87:7e:ce:65:0f:9d:6a:
3d:b0:53:55:4d:a2:cf:e1:7f:bb:b6:07:5d:94:c5:e2:9a:1c:
4f:e1:d0:78:39:5c:93:fb:21:6a:7f:21:dd:2e:6a:53:2f:9d:
cd:51:fd:31:ce:8d:77:b1:06:41:69:49:bd:4d:2c:c2:f2:42:
6b:b9:0f:9d:94:d7:f3:03:89:ed:23:c5:03:f3:3f:d6:d6:c0:
14:19:52:5a:f0:75:4b:e2:53:14:75:1b:99:6d:e3:19:9d:1a:
4a:56:b1:a3:77:b4:5e:b6:33:16:c8:17:a1:76:1a:01:d3:ca:
0e:f4:68:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:19:05 2024 by rpki-client on console-fra.rpki-client.org