Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136332e35352e302f32342d3234203d3e20323031333431.roa
File: 3138352e3136332e35352e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: 3vRPyd9EV1M4dXMtYiR3SC+fBubUSJA2+O9g0piPzfs=
Subject key identifier: 45:16:AB:50:4E:94:FB:D0:DB:F0:8C:73:73:B7:0B:DD:2F:5B:9D:75
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 36B58A7E7917A7D87A881E23A6BCB528D7C95C37
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136332e35352e302f32342d3234203d3e20323031333431.roa
Signing time: Mon 26 Feb 2024 08:53:44 +0000
ROA not before: Mon 26 Feb 2024 08:48:44 +0000
ROA not after: Mon 24 Feb 2025 08:53:44 +0000
asID: 201341
IP address blocks: 185.163.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:b5:8a:7e:79:17:a7:d8:7a:88:1e:23:a6:bc:b5:28:d7:c9:5c:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Feb 26 08:48:44 2024 GMT
Not After : Feb 24 08:53:44 2025 GMT
Subject: CN=4516AB504E94FBD0DBF08C7373B70BDD2F5B9D75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e1:69:64:4b:57:f2:4b:2a:fd:22:d4:84:40:
0e:09:bf:ac:e4:f0:03:68:e7:74:e6:77:52:bd:59:
c9:55:47:3b:17:70:c0:c9:a6:20:33:1c:17:24:ea:
5d:76:48:1f:ca:57:d2:f4:a5:60:c4:46:81:cc:ad:
b2:f4:fe:e6:a8:92:28:43:1f:c4:9c:1a:d2:70:c0:
6a:9d:91:9f:0e:a2:63:ef:b4:50:ea:02:1b:c0:7a:
ea:86:10:4e:ba:ba:79:a7:0e:b3:16:5e:e5:97:6d:
99:72:6c:39:7b:b5:ed:34:68:54:53:f8:c6:dc:84:
14:ba:3e:56:08:00:0d:33:4e:a3:13:da:c6:1d:c8:
50:31:01:5f:8e:e9:c9:25:af:80:59:91:8e:68:17:
f2:dd:65:e0:5b:bd:ba:df:58:c4:a2:e9:e3:a8:e8:
9c:64:0d:dd:3c:81:a0:74:bd:65:fa:55:1f:6d:8b:
a2:83:0a:1e:ea:83:d1:6f:23:28:6a:f2:6f:dd:dd:
29:6b:aa:86:96:d8:4e:12:ac:03:b3:f6:0a:62:9a:
31:22:30:f2:0c:4b:16:28:cb:63:6f:e7:80:0f:bc:
c2:57:51:ed:fd:10:e1:e9:49:d3:ed:e3:b4:a6:e1:
87:8b:51:76:f0:8c:65:92:9e:30:52:d7:78:7e:50:
b0:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:16:AB:50:4E:94:FB:D0:DB:F0:8C:73:73:B7:0B:DD:2F:5B:9D:75
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136332e35352e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.55.0/24
Signature Algorithm: sha256WithRSAEncryption
70:48:d0:76:67:76:db:7a:da:2c:3d:62:e0:0e:f9:97:f2:ba:
0c:62:94:e8:7d:e4:c0:96:cd:db:81:2a:34:f7:1b:f4:24:92:
da:e9:4c:8a:88:ab:ed:77:0b:64:90:86:c2:a0:74:be:d8:ea:
19:cc:ff:fd:b5:48:25:43:a2:31:59:1e:7d:b7:f2:e4:25:80:
25:f4:96:59:8e:a2:d1:16:4d:4a:a9:34:2d:07:7a:fc:00:93:
0d:52:a7:77:79:ba:12:3f:60:e1:63:05:69:7b:f4:24:18:28:
73:26:24:6a:37:97:f9:53:ca:5c:d8:fe:37:09:d4:8b:8e:02:
10:5d:54:d5:ef:aa:17:1b:b2:d7:6a:77:b2:11:20:1c:e5:89:
ee:76:74:e6:15:61:ba:53:10:1a:1a:92:ec:51:31:cd:8d:8b:
d3:e9:be:82:44:8b:55:d2:4b:9c:11:fb:41:8a:9b:96:7b:99:
39:c6:67:35:55:51:18:90:e4:3d:a2:48:e5:3a:93:b4:29:da:
8e:62:05:49:67:33:fd:7f:2e:ab:50:27:73:77:63:f8:d1:ae:
4c:24:a6:5f:74:9f:25:dd:96:cc:ac:78:82:b4:d4:54:42:27:
d1:34:ca:be:17:ab:9c:7b:4b:76:a9:f9:e2:48:f6:7a:47:3a:
b6:30:9d:18
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:14 2024 by rpki-client on console-fra.rpki-client.org