Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136352e38342e302f32342d3234203d3e20313336373837.roa
File: 3138352e3136352e38342e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 84Vq810NmL1lvGZ2KKZcL6OG5WL7v4lg9OY61fnTrtc=
Subject key identifier: 79:9C:BA:82:5D:14:20:12:5A:70:C5:17:FD:5C:A5:FB:CC:13:01:D4
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 262B849BB28CDC846FDACFC1442B73956A94FA0B
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136352e38342e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 11 Jun 2023 11:01:30 +0000
ROA not before: Sun 11 Jun 2023 10:56:30 +0000
ROA not after: Sun 09 Jun 2024 11:01:30 +0000
asID: 136787
IP address blocks: 185.165.84.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:2b:84:9b:b2:8c:dc:84:6f:da:cf:c1:44:2b:73:95:6a:94:fa:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Jun 11 10:56:30 2023 GMT
Not After : Jun 9 11:01:30 2024 GMT
Subject: CN=799CBA825D1420125A70C517FD5CA5FBCC1301D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:46:b8:7d:fd:13:d8:45:39:31:45:35:18:4d:
00:8e:9f:89:76:33:c8:ec:a0:a2:14:90:0e:c5:11:
cf:3a:d5:c3:06:b7:8e:b9:6c:2e:4b:3e:74:e7:20:
53:27:8b:b2:0e:af:dc:69:9e:f5:95:2b:b9:56:77:
0d:dc:c8:2f:f8:8f:a2:07:94:f1:0c:89:8b:ed:08:
27:70:01:ce:f1:d1:72:49:6a:e1:fa:13:a6:f4:be:
6b:09:25:93:c6:2e:7d:a2:e5:fd:b8:32:31:68:b5:
a8:84:2d:05:39:6a:9b:60:c4:b2:a5:75:8c:9e:5e:
3f:f6:14:d0:ae:0a:23:6e:9d:27:ea:a8:92:34:ea:
a3:e9:5e:a0:7f:0a:09:bc:47:0a:a9:65:75:5f:6c:
25:74:83:82:d3:ae:c2:c7:ee:d1:d9:58:6a:a8:6a:
32:9e:f0:47:4b:23:e3:97:d4:bf:60:48:96:07:6d:
d4:54:1f:cd:a3:c7:48:fc:4a:40:c9:3b:37:d6:da:
6b:1c:61:26:80:83:bc:d8:39:83:2d:6e:b1:01:31:
85:9d:45:4e:f5:32:41:70:6c:d6:de:96:d5:a9:01:
d4:f7:65:f0:c4:ed:0c:b7:bb:cb:87:1b:d7:56:ba:
1b:68:1e:80:a0:df:14:a0:14:12:40:2f:36:62:8b:
db:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:9C:BA:82:5D:14:20:12:5A:70:C5:17:FD:5C:A5:FB:CC:13:01:D4
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136352e38342e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.84.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:d3:51:55:5c:c2:bd:e0:54:d2:d8:d0:49:8b:d9:47:ac:e4:
ff:0d:99:1e:58:a0:e8:dd:99:9f:a1:63:a6:22:c8:11:f4:38:
52:5a:74:d0:7d:d2:54:4d:bc:59:09:3c:64:a7:11:f1:c6:24:
e5:2d:71:89:28:b2:6c:20:ee:d5:d2:71:9a:ef:ba:fe:ca:c6:
8d:d8:59:75:bb:5e:64:fb:a1:8f:ff:c6:2f:64:13:b6:39:9c:
1f:a0:c3:67:7e:7b:6a:1f:b5:18:78:dd:4e:85:15:ac:38:04:
64:ab:63:f2:9f:02:d0:f9:e0:80:70:cf:be:d8:ab:2a:39:8d:
02:13:34:d1:bf:09:51:f2:d5:ca:8b:a6:8b:42:c0:04:8c:ef:
9b:75:61:52:76:7a:94:b1:bf:80:a1:80:c4:32:64:1b:6a:d3:
57:63:37:69:39:88:24:c9:f0:34:25:35:d3:9b:ff:ac:1f:2a:
20:9a:89:47:d8:08:8e:44:66:83:c3:cb:c8:dd:a9:19:8a:81:
53:21:e0:2f:d4:25:17:6c:01:e7:8d:79:a3:3a:38:1f:fa:87:
dd:df:39:03:ae:80:dd:2c:d2:83:90:57:f5:28:9e:e0:09:7a:
3f:0d:fd:2a:71:66:b2:9f:d9:d2:ea:5a:4a:d5:b0:c1:7a:ef:
82:3d:0b:8f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed May 8 19:21:51 2024 by rpki-client on console-ams.rpki-client.org