Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136352e38372e302f32342d3234203d3e20313336373837.roa
File: 3138352e3136352e38372e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: f4w/LvftkKIzXOfLyd2IU/Zen+mHv2slZw7l0gGriT4=
Subject key identifier: 19:76:44:4D:28:A8:D7:18:84:A2:18:18:5A:03:B3:54:60:05:97:4C
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 483F53CE09FA697A279DF0C05EC5FBEB9B25BC1A
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136352e38372e302f32342d3234203d3e20313336373837.roa
Signing time: Thu 12 Sep 2024 22:04:47 +0000
ROA not before: Thu 12 Sep 2024 21:59:47 +0000
ROA not after: Thu 11 Sep 2025 22:04:47 +0000
asID: 136787
IP address blocks: 185.165.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:3f:53:ce:09:fa:69:7a:27:9d:f0:c0:5e:c5:fb:eb:9b:25:bc:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Sep 12 21:59:47 2024 GMT
Not After : Sep 11 22:04:47 2025 GMT
Subject: CN=1976444D28A8D71884A218185A03B3546005974C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:11:59:46:ee:ef:39:dc:23:e0:ad:4e:1b:62:
2b:8f:a5:55:01:84:6e:f6:68:9b:b4:c7:b7:b0:5c:
ec:70:cc:b9:29:af:84:3c:d6:3b:c9:f4:6f:a2:1d:
fd:a9:c4:89:7e:df:f6:94:58:a0:36:17:ad:dd:94:
d8:96:22:84:58:9c:ed:20:25:b6:09:23:27:ba:ea:
29:df:12:8f:da:30:69:a7:11:cb:9d:1e:20:a8:e9:
65:5f:14:df:9e:e7:c7:f4:2e:e7:1d:d7:87:3d:15:
46:7d:d9:a4:6a:b0:82:9a:d0:4a:e7:58:8f:d5:6d:
f6:fa:be:26:3c:c1:c4:f7:f4:30:6a:53:47:0c:fb:
26:b5:b6:2c:1f:72:b2:af:32:67:07:90:70:b0:36:
fe:ac:25:ea:4a:7b:e7:e7:5a:5e:85:a8:24:7b:f9:
00:5c:77:33:25:fa:d4:36:3a:8f:25:fb:3c:bb:be:
af:0d:46:c1:8f:d7:f7:22:a1:0a:b6:2a:b3:e2:b3:
bb:f2:8e:65:80:67:7a:a1:ae:84:01:83:ab:91:05:
79:a5:ba:4e:de:6e:35:51:db:38:34:d9:bc:dd:94:
a2:d0:7a:c2:d1:26:d6:6b:8f:a7:96:68:5c:6b:1f:
99:d8:48:13:b6:00:0f:06:cb:0d:ec:9b:50:f8:74:
2c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:76:44:4D:28:A8:D7:18:84:A2:18:18:5A:03:B3:54:60:05:97:4C
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136352e38372e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.87.0/24
Signature Algorithm: sha256WithRSAEncryption
15:ae:4d:34:32:3c:84:f5:3a:80:8e:c4:5c:65:fe:43:c6:3d:
74:31:6e:91:fb:fd:1a:e5:bc:8f:bf:90:c6:f2:20:4a:76:b8:
49:8d:9e:87:69:84:48:46:af:aa:38:8d:0c:63:be:2d:a2:93:
3d:23:e1:71:67:eb:04:79:57:60:6f:46:b8:5b:30:59:12:6e:
8c:01:5c:e8:fd:a1:d0:e8:96:3b:6b:39:b1:82:f0:10:f9:5e:
7a:b9:77:98:5b:ba:52:22:a0:65:32:8d:39:6f:0b:c7:69:9f:
be:40:fd:c0:b7:70:c7:5b:bc:b7:ef:c9:fc:b6:48:43:2f:60:
87:4d:39:53:df:92:61:c6:f9:d9:9e:08:b2:91:83:03:57:27:
92:8f:46:44:12:d9:be:84:02:9b:d6:14:9d:64:63:94:4a:65:
e7:97:e8:9c:b3:61:3b:f3:3c:f0:4c:f2:c2:7d:b1:5c:e4:4b:
cb:80:62:98:1a:f0:61:50:07:4e:41:e7:25:fd:34:20:19:1a:
14:70:5f:77:f6:ee:0c:47:c6:78:f6:e6:43:4a:78:88:6f:01:
6a:f8:a7:1a:af:5b:b8:10:5d:d9:d2:60:85:36:96:91:a8:15:
f4:44:78:7b:2b:73:ec:e5:cc:40:45:cf:b0:49:d4:fa:41:e6:
db:e9:3f:56
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:44 2024 by rpki-client on console-ams.rpki-client.org