Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3135332e3137382e302f32342d3234203d3e20313336373837.roa
File: 3138352e3135332e3137382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: dQwhla9irxRG4UTGZJK/nV19KdOEtPcs2n63Fo4nABc=
Subject key identifier: 2C:43:02:F4:22:E6:FF:83:F6:B8:C9:F0:BE:B7:20:A2:93:4E:7F:77
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 3AA2A37D72DC8165D6FA24E08E58494264DB5C47
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3135332e3137382e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 26 Feb 2024 08:53:44 +0000
ROA not before: Mon 26 Feb 2024 08:48:44 +0000
ROA not after: Mon 24 Feb 2025 08:53:44 +0000
asID: 136787
IP address blocks: 185.153.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:a2:a3:7d:72:dc:81:65:d6:fa:24:e0:8e:58:49:42:64:db:5c:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Feb 26 08:48:44 2024 GMT
Not After : Feb 24 08:53:44 2025 GMT
Subject: CN=2C4302F422E6FF83F6B8C9F0BEB720A2934E7F77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:70:c7:81:b0:ee:29:97:e5:66:51:60:b6:1f:
7d:40:ee:2e:e6:d0:87:31:f0:b0:96:41:1d:56:98:
67:55:3b:ba:58:b0:41:3d:27:53:a5:fc:74:81:17:
51:72:ea:49:54:aa:71:9f:cc:f5:98:e9:80:43:00:
11:33:d3:f7:a3:ac:ff:07:c1:4b:fa:cb:89:0a:2f:
74:84:5c:26:bc:ce:aa:11:08:8b:1a:c1:4f:22:1e:
3f:b5:bc:08:b6:de:1a:c0:4d:e7:11:ef:80:28:01:
0f:49:26:98:80:20:d0:da:b8:e4:32:d1:e7:70:d4:
af:19:dc:85:2b:10:31:7b:fb:58:dd:46:85:72:bf:
01:87:88:76:eb:eb:b2:43:08:e2:14:1e:9a:22:64:
3c:ec:f4:3d:f8:41:1a:7b:e8:9a:19:05:ca:38:32:
3d:93:db:2f:43:25:07:ad:11:14:29:98:ce:36:33:
39:fd:68:04:19:8a:7d:89:5f:c6:03:8c:d6:58:e6:
c8:54:9d:dd:b3:a3:32:91:55:a1:c7:53:79:8b:f4:
d2:02:94:9e:2d:60:a2:f0:f1:79:62:ce:c4:a6:c2:
a9:dc:00:d2:37:12:cf:9b:da:d0:ff:9c:c3:ce:ea:
6b:cd:3c:10:ab:1c:66:32:eb:ed:7e:b0:6a:71:0c:
72:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:43:02:F4:22:E6:FF:83:F6:B8:C9:F0:BE:B7:20:A2:93:4E:7F:77
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3135332e3137382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.178.0/24
Signature Algorithm: sha256WithRSAEncryption
65:d8:8c:c1:e4:66:3a:8d:f8:0f:37:c6:23:14:25:52:11:9e:
a2:f7:fc:27:06:e1:b6:e8:7d:26:fc:1a:19:00:58:9c:f1:46:
3a:3e:44:e3:8f:dc:54:5f:e1:18:65:bc:1c:81:27:15:f6:25:
e8:0d:db:a5:81:35:73:5d:ac:0c:d1:6d:81:64:cb:ac:94:32:
8d:d4:67:88:ec:e9:12:a2:8d:76:9b:3d:55:11:66:6d:d7:4e:
36:78:d1:90:fd:d7:66:43:4f:89:8c:2f:a6:ae:45:45:9c:38:
e4:cc:14:f6:b7:17:8f:85:b7:d9:7f:44:db:f2:81:9f:e8:28:
95:66:cf:6f:f9:75:e3:da:e8:42:0b:98:cb:f3:04:a7:f9:7e:
70:07:fe:fb:dc:ff:d0:74:fc:d6:46:7b:4b:53:08:bd:91:c8:
ee:d5:d0:1c:13:a3:9f:a3:f2:56:2a:77:5e:c7:ef:81:23:4d:
03:f4:17:02:e0:75:c7:83:66:71:09:01:41:2a:6e:ee:3d:89:
b9:b6:13:a1:36:7f:3c:87:16:d5:2c:26:30:3e:ae:0a:c4:96:
ca:70:22:18:a2:64:38:03:29:10:3b:ea:a8:29:82:1e:dc:b2:
49:59:b3:6d:80:48:70:8d:8f:6e:b1:ce:63:58:0d:fe:68:81:
9e:1f:a9:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:32:57 2024 by rpki-client on console-ams.rpki-client.org