Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3137362e3132362e3130352e302f32342d3234203d3e20313432313131.roa
File: 3137362e3132362e3130352e302f32342d3234203d3e20313432313131.roa (raw, json)
Hash identifier: ZmflJT/Q/TPGSCfocPk7Q88RzmiwgUiCAs+PTDS0YEQ=
Subject key identifier: AD:B1:38:60:A0:38:66:0E:02:5C:57:BB:77:52:6F:79:E2:17:9E:F1
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 4FEA2DE85D02B295E7D75585B6E6CC63F1E401AD
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3137362e3132362e3130352e302f32342d3234203d3e20313432313131.roa
Signing time: Thu 07 Dec 2023 08:53:32 +0000
ROA not before: Thu 07 Dec 2023 08:48:32 +0000
ROA not after: Thu 05 Dec 2024 08:53:32 +0000
asID: 142111
IP address blocks: 176.126.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Oct 2024 13:20:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:ea:2d:e8:5d:02:b2:95:e7:d7:55:85:b6:e6:cc:63:f1:e4:01:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Dec 7 08:48:32 2023 GMT
Not After : Dec 5 08:53:32 2024 GMT
Subject: CN=ADB13860A038660E025C57BB77526F79E2179EF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ea:ba:c7:df:18:e6:8b:a7:ae:a1:96:8d:46:
1d:e9:10:b2:2a:75:75:b8:ea:cd:14:51:51:58:53:
14:a6:0e:55:39:3d:1a:83:9f:f2:31:d6:c0:e0:60:
e0:47:37:da:93:d4:1e:35:b1:0f:96:fd:38:1c:d5:
48:04:f4:26:2f:80:a7:0a:11:6a:85:89:05:2d:a4:
e2:48:4c:e5:6c:53:21:b3:d4:02:02:9d:fe:80:4b:
a8:bc:63:cb:34:69:aa:6f:b1:91:3f:68:8d:3f:ec:
f9:a3:b3:a6:15:cc:6f:29:fb:6e:b9:2c:5e:f8:75:
d1:d8:78:96:15:44:38:71:98:90:4d:66:5f:d5:bb:
4c:f9:6d:16:79:c0:42:c1:55:c1:31:bc:e6:dc:c8:
8f:34:88:70:a3:6a:7f:a7:fb:42:26:b7:f6:ec:1c:
6c:64:c4:0f:91:ca:80:f0:c7:ee:da:2b:53:de:6e:
f2:63:b0:5f:50:ec:0f:66:e4:c1:b0:38:f5:0b:a6:
57:2d:c0:dd:ac:e0:f6:43:63:69:6e:17:f3:16:6b:
55:bf:da:f2:59:8e:40:7f:04:c6:a3:21:18:8f:56:
04:5d:a1:59:68:05:4b:c8:09:63:84:a7:75:5e:88:
b0:74:b9:0a:76:32:cf:a2:cb:1e:2c:52:14:64:28:
6f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:B1:38:60:A0:38:66:0E:02:5C:57:BB:77:52:6F:79:E2:17:9E:F1
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3137362e3132362e3130352e302f32342d3234203d3e20313432313131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.105.0/24
Signature Algorithm: sha256WithRSAEncryption
57:40:20:bc:88:b9:a1:61:9b:12:d8:43:68:0e:35:29:ab:e7:
76:df:d5:30:72:40:54:eb:41:f9:96:98:67:02:da:af:a3:da:
28:dd:64:1e:bb:9d:4c:bf:91:5a:fd:6f:5e:87:74:e5:31:51:
e1:65:2e:ca:68:5e:5f:a9:3c:85:33:8f:3a:c6:f0:fa:a9:42:
5b:7c:fb:63:d6:a4:95:d9:60:e1:ca:ce:81:21:e4:d8:f2:22:
1c:69:14:be:c1:93:64:ad:1f:1b:01:45:f8:96:f6:7c:81:0a:
b2:a6:b3:3c:8e:aa:20:10:dc:0e:4e:a2:9f:ca:a7:c0:5f:22:
6b:85:b4:ac:e9:37:b1:a8:d7:97:7b:64:aa:24:e6:af:4a:34:
0f:c0:14:66:da:71:bb:81:49:8d:50:7f:c4:26:06:30:ca:7f:
94:49:ba:3e:02:5c:b5:3f:f8:72:69:fb:2e:53:04:42:a7:cd:
a6:7a:55:b7:ec:a3:d8:16:40:35:ab:34:19:53:ff:56:02:6a:
f9:33:d8:42:6a:a6:63:99:d7:f5:78:1f:42:4e:b8:4a:d2:33:
cf:84:87:5a:fd:3c:e6:b4:0d:61:5e:f7:1b:c6:54:51:da:4e:
7c:17:7f:bd:c2:30:85:ee:5a:c2:65:f3:98:c4:43:7e:97:16:
63:19:69:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 14 17:29:35 2024 by rpki-client on console-ams.rpki-client.org