Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137372e302f32342d3234203d3e20323131333138.roa
File: 352e3138312e3137372e302f32342d3234203d3e20323131333138.roa (raw, json)
Hash identifier: Qj0L5l5eMROtb6uVO402lIF0yGmBAGkhvckinkXdGK4=
Subject key identifier: E5:0B:17:43:CC:23:3D:54:CE:FF:44:38:7D:22:62:07:33:C4:39:99
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 74617B8FEEE675CAFDD3320C96C7469629046AE1
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137372e302f32342d3234203d3e20323131333138.roa
Signing time: Wed 13 Sep 2023 10:10:54 +0000
ROA not before: Wed 13 Sep 2023 10:05:54 +0000
ROA not after: Wed 11 Sep 2024 10:10:54 +0000
asID: 211318
IP address blocks: 5.181.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.mft
rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 May 2024 04:36:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:61:7b:8f:ee:e6:75:ca:fd:d3:32:0c:96:c7:46:96:29:04:6a:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Sep 13 10:05:54 2023 GMT
Not After : Sep 11 10:10:54 2024 GMT
Subject: CN=E50B1743CC233D54CEFF44387D22620733C43999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ba:95:eb:78:97:0f:16:b0:59:f3:3a:2c:e9:
94:95:6d:25:fd:30:ec:24:91:f1:f5:a4:6e:00:d4:
5c:fe:f1:e1:c6:ed:ca:c0:77:1e:bc:0f:14:b6:6c:
fd:22:e5:8b:eb:42:a7:a8:bb:7a:dc:1d:03:9f:13:
1e:43:96:82:b4:09:26:26:4a:3d:2a:f7:d7:fc:eb:
cf:88:eb:91:4d:68:9a:16:43:98:89:51:63:2e:b2:
7c:0b:cc:99:77:f2:86:47:50:ab:0a:f8:f2:e7:c3:
7b:2e:66:c6:b0:46:47:a9:57:0b:83:74:d8:91:1d:
43:8f:62:00:57:a9:86:4f:ba:f1:62:d4:e5:10:a0:
cc:7c:b9:b6:e8:1d:8b:63:89:1f:8b:09:8c:0e:75:
57:4b:4a:08:7f:fc:b9:6b:47:32:cb:fd:a0:3e:99:
59:f7:58:78:da:7d:38:fb:c2:2c:6e:94:fc:33:cb:
dd:d1:b7:7e:10:33:93:d8:d0:e9:ec:7a:06:8a:79:
ee:e8:c8:4c:cb:22:bc:ad:22:b3:24:7d:fe:2e:59:
4a:a2:5d:f9:9a:2d:c9:8b:31:8b:08:dd:02:92:9d:
76:fc:27:07:cf:1b:ee:2a:81:4b:9d:8f:b7:54:d9:
e3:b9:4e:49:2a:47:b8:62:2f:30:3b:ad:9a:ce:47:
c3:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:0B:17:43:CC:23:3D:54:CE:FF:44:38:7D:22:62:07:33:C4:39:99
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137372e302f32342d3234203d3e20323131333138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.177.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:3c:40:ac:80:4e:cf:39:5e:c7:84:f4:22:dd:30:73:d4:43:
56:ea:1f:df:0f:a9:f6:78:02:c2:d2:78:24:a3:09:49:a3:ea:
53:c1:30:52:92:af:c7:48:94:c9:18:18:fb:bd:0b:e0:c5:c8:
8d:bd:c0:35:ca:f2:49:3b:9d:92:d9:92:b8:54:1e:fc:0b:d2:
38:c7:46:05:eb:00:a5:87:7e:e0:2a:a0:7a:a2:e6:2f:5a:39:
fb:9e:a7:02:e8:94:dc:24:aa:68:da:ae:fb:34:25:db:f3:1e:
d0:3b:ad:84:74:d4:6e:f6:2d:d7:0a:61:89:5a:82:5e:19:1d:
a1:66:11:de:df:47:ff:87:85:9c:b3:8b:a1:00:98:38:f4:dd:
d7:7f:b6:08:fb:d1:39:a7:71:d9:14:be:53:26:ec:8a:89:4b:
db:ed:25:c6:f2:60:35:aa:8b:94:37:a4:b5:c2:12:51:97:95:
2e:08:3b:2e:79:90:a2:8d:80:26:b3:16:33:57:9b:32:37:c3:
e2:ad:7c:31:da:e9:5a:be:77:9c:52:1a:9c:52:aa:1c:40:11:
db:a7:2e:20:77:d0:83:f1:ef:ff:98:b3:8d:b2:d7:a7:2e:d3:
41:58:26:52:2d:9a:c0:8f:2c:37:5e:c4:ae:90:26:8e:18:39:
99:b2:b9:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 11 10:48:48 2024 by rpki-client on console-fra.rpki-client.org