Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137382e302f32342d3234203d3e20313339393839.roa
File: 352e3138312e3137382e302f32342d3234203d3e20313339393839.roa (raw, json)
Hash identifier: s43C1w60cmNeWwJBIjkMDdVOK+eMhRVP5u8kpxA2yvs=
Subject key identifier: 0E:82:7E:46:13:A0:C3:B9:8B:8F:07:E3:0F:B7:75:08:97:41:95:7E
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 54E6EC20AABE0D4518CD31D606A23C34F37300D5
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137382e302f32342d3234203d3e20313339393839.roa
Signing time: Wed 30 Aug 2023 13:31:15 +0000
ROA not before: Wed 30 Aug 2023 13:26:15 +0000
ROA not after: Wed 28 Aug 2024 13:31:15 +0000
asID: 139989
IP address blocks: 5.181.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.mft
rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:e6:ec:20:aa:be:0d:45:18:cd:31:d6:06:a2:3c:34:f3:73:00:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Aug 30 13:26:15 2023 GMT
Not After : Aug 28 13:31:15 2024 GMT
Subject: CN=0E827E4613A0C3B98B8F07E30FB775089741957E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:cf:8b:9d:20:bc:d2:41:73:94:d6:f4:91:51:
14:b3:d2:43:90:45:86:25:46:05:fb:da:42:43:f9:
f8:3a:0a:f7:11:c9:03:0c:60:99:66:fa:50:de:47:
5b:54:b0:46:fb:c4:68:ee:dd:c6:c4:c7:66:e0:a5:
92:9c:6a:47:7c:20:cc:d7:1a:bd:45:54:81:88:dd:
c9:56:34:0c:c7:12:e5:aa:e0:40:3c:66:91:e9:ca:
4b:d8:42:8c:6e:c8:71:4e:a5:a3:5a:9a:49:68:f2:
7a:88:20:ee:75:4c:9e:dd:96:1f:36:84:eb:b1:98:
c5:51:f1:ad:06:f8:b4:d6:6a:03:ea:9b:07:15:fb:
fe:64:27:1c:88:4e:4f:ef:ca:0c:f4:d2:c9:69:49:
0e:18:a8:78:c6:53:67:5f:5b:cc:f4:e5:97:7e:d5:
31:28:df:c4:bf:b5:5a:fb:c2:e3:0d:79:a5:2b:74:
f9:0e:11:c5:43:49:9a:c3:01:8d:fb:37:50:22:85:
02:f3:93:42:49:a4:6b:11:dd:7d:b3:8b:a4:3e:35:
8d:61:67:38:cd:8f:05:63:22:89:60:b5:1b:42:4f:
6d:3a:8d:32:b1:8f:ec:53:15:07:49:3d:d5:3b:fc:
64:7d:f4:ea:1c:c5:3e:1e:a8:74:b3:40:4a:d4:ec:
51:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:82:7E:46:13:A0:C3:B9:8B:8F:07:E3:0F:B7:75:08:97:41:95:7E
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137382e302f32342d3234203d3e20313339393839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.178.0/24
Signature Algorithm: sha256WithRSAEncryption
55:7a:01:81:0b:7f:fa:a5:2e:27:47:47:9a:71:d8:47:3e:4b:
82:09:cd:2f:93:2c:f3:d6:a2:da:8f:d7:78:dd:0e:9f:96:93:
b6:70:9c:84:bb:20:a1:21:2e:22:55:a0:ce:e9:10:57:00:ce:
37:5e:69:13:9b:1e:71:30:6b:f0:35:81:ef:eb:da:c2:15:b9:
ec:eb:bc:88:07:66:cb:f9:a3:6b:cb:e7:6f:47:c7:4c:ed:fb:
b6:70:7d:39:3d:1e:dc:1f:98:c8:51:cd:60:39:b5:7c:d6:c0:
f3:b2:76:de:a9:29:79:0b:c7:68:26:c0:e0:70:5b:6a:39:2b:
ad:9c:ab:20:fe:68:1b:54:b7:18:9c:58:40:7b:46:35:52:fd:
9a:95:d7:5e:de:e1:78:9f:3a:fc:31:1e:de:90:ae:af:0d:3d:
34:45:52:01:b5:76:52:91:dd:72:63:d6:43:ab:c7:73:c9:34:
7d:f6:cc:99:86:6b:0b:df:65:e1:75:62:10:8b:6a:ff:f7:ee:
e5:e3:a9:1f:eb:49:65:ea:d3:60:7d:5b:00:c0:a9:55:fd:85:
6a:46:6a:65:10:68:2e:6a:ca:10:0d:9b:e2:53:6d:5c:f6:cd:
a6:77:69:8e:95:15:ea:b2:ac:35:42:d4:78:39:48:e0:3b:47:
20:c0:ce:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 16:55:12 2024 by rpki-client on console-ams.rpki-client.org