Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138322e302f32342d3234203d3e20333937363330.roa
File: 3137382e3230382e3138322e302f32342d3234203d3e20333937363330.roa (raw, json)
Hash identifier: O9kQo+eWPxwOaKdcouMVnY2I6uqYNZaPR+FJ3KaKmgs=
Subject key identifier: 8D:F5:8D:F1:87:AF:05:13:A9:D7:44:A1:15:0F:0F:3D:23:0C:5E:8F
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 226D5765D4F17098C16A8FBF69B30D9A28455851
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138322e302f32342d3234203d3e20333937363330.roa
Signing time: Tue 14 Nov 2023 15:02:27 +0000
ROA not before: Tue 14 Nov 2023 14:57:27 +0000
ROA not after: Tue 12 Nov 2024 15:02:27 +0000
asID: 397630
IP address blocks: 178.208.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:6d:57:65:d4:f1:70:98:c1:6a:8f:bf:69:b3:0d:9a:28:45:58:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Nov 14 14:57:27 2023 GMT
Not After : Nov 12 15:02:27 2024 GMT
Subject: CN=8DF58DF187AF0513A9D744A1150F0F3D230C5E8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6c:77:72:8f:ca:65:a2:26:21:37:42:b0:d1:
67:e7:7a:c3:da:23:00:6e:b9:3d:29:5f:f2:0b:ae:
eb:1d:1d:d9:41:c9:62:d5:40:f5:d6:dd:df:25:75:
4a:ec:36:91:72:81:3f:ee:41:c1:ac:20:b9:e0:d6:
6d:ed:cb:ff:97:1c:a1:3c:8e:50:3f:5b:20:47:ed:
06:4e:2f:15:00:45:0d:75:dc:da:6c:0c:71:f8:b8:
d7:5f:c7:47:2e:d9:45:6b:83:60:aa:4b:a4:2b:5f:
25:0f:48:86:a1:3f:50:50:3c:31:2c:4f:17:a3:70:
b9:96:91:83:f2:66:50:b2:f3:86:2d:cb:63:d7:ba:
fd:f1:1a:11:f1:1b:3f:06:15:48:fb:5c:c8:10:35:
45:d0:03:1a:ed:cb:b6:2b:64:3c:6f:0b:76:43:9f:
03:58:8f:5e:4b:c6:c5:55:cb:f8:98:c2:1c:23:f5:
c4:ae:d7:82:6b:f6:95:fa:8f:1e:95:57:8c:44:94:
13:70:f8:c7:8f:6e:50:82:9f:8a:58:32:75:32:07:
2b:01:c0:eb:e0:c8:ac:41:f1:76:6b:31:2d:3e:7a:
66:e6:c9:30:81:98:63:52:ad:54:6b:45:f0:b1:bc:
77:45:39:21:9a:29:02:2e:99:3c:93:c5:cc:11:13:
30:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F5:8D:F1:87:AF:05:13:A9:D7:44:A1:15:0F:0F:3D:23:0C:5E:8F
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138322e302f32342d3234203d3e20333937363330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.182.0/24
Signature Algorithm: sha256WithRSAEncryption
72:da:55:fa:9c:ae:d2:84:cc:54:a9:d0:3d:e7:7b:03:c2:05:
3c:2a:b3:48:76:bf:c3:67:c0:30:d1:c9:b2:b6:03:1c:b5:42:
89:30:66:4a:c5:75:77:5b:df:b5:08:73:2a:14:55:a4:6c:34:
ad:10:24:05:da:37:5a:b9:4f:7e:b0:30:77:92:4a:0c:62:89:
ed:d7:12:ea:5b:d8:a4:c7:56:ed:5e:42:89:6a:f8:12:a1:2b:
69:fa:16:3a:41:2e:c0:92:1c:59:6f:fb:77:9a:e2:01:ce:16:
8d:2c:f1:c9:4c:2a:d4:82:58:f2:16:0a:fd:63:dd:0b:cd:1b:
f7:f8:99:f5:3f:a9:8b:5f:11:1c:3b:d2:a0:9c:59:76:bc:46:
c7:03:20:97:ff:18:e9:fa:cc:71:41:93:14:5d:6e:59:e9:c0:
90:07:b8:04:7a:87:41:cf:85:cd:30:c6:a5:2f:89:91:2a:fb:
20:49:30:ac:bb:f6:2e:ea:a6:05:ff:67:17:e4:20:4b:b4:9b:
f6:ad:25:6e:89:d5:12:ab:3b:b5:fc:23:a3:a4:92:61:a5:7a:
6d:6c:e7:d1:77:8a:8a:51:39:08:10:ed:ce:5f:7b:31:0b:9d:
2f:2b:fe:50:1e:21:9d:73:a7:6c:f5:73:66:d5:0c:26:83:42:
58:d3:f3:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 11:42:50 2024 by rpki-client on console-fra.rpki-client.org