Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136392e312e302f32342d3234203d3e20313336373837.roa
File: 3138352e3136392e312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: lsK8swYRnflL5KM8rJO7MSZDoF2Z+gFjsQ4KHHLFsfM=
Subject key identifier: CF:1B:A1:03:C8:1B:EE:40:A4:5C:FA:09:E8:C9:1C:C4:8F:10:1E:A0
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 28391CD520F596C7EEB51A1BE61C3947E456076D
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136392e312e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 11 Jun 2023 11:01:44 +0000
ROA not before: Sun 11 Jun 2023 10:56:44 +0000
ROA not after: Sun 09 Jun 2024 11:01:44 +0000
asID: 136787
IP address blocks: 185.169.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:39:1c:d5:20:f5:96:c7:ee:b5:1a:1b:e6:1c:39:47:e4:56:07:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Jun 11 10:56:44 2023 GMT
Not After : Jun 9 11:01:44 2024 GMT
Subject: CN=CF1BA103C81BEE40A45CFA09E8C91CC48F101EA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cd:0e:a2:eb:04:b7:2a:5c:94:a6:4c:10:4b:
53:e0:1d:76:28:43:3e:d4:0f:3c:aa:24:20:9f:28:
29:b7:e6:19:bb:d0:02:94:85:d2:99:bb:16:6e:70:
f3:34:c7:f7:b8:d2:ee:e4:9f:bd:55:e2:75:d6:37:
b5:a5:22:74:01:41:17:07:f2:45:d6:43:3a:13:8d:
f3:8d:69:10:b3:1b:51:2c:64:23:9e:97:ac:c7:14:
c0:34:c3:20:ee:91:da:d3:a1:f9:d4:87:44:aa:46:
1e:bd:ce:98:f3:f8:85:73:b1:a3:bb:dc:57:83:ac:
72:e1:df:e0:5d:9a:17:10:6b:4f:4d:c2:1b:b2:5e:
99:b5:04:bb:3a:f9:e0:89:15:f8:e6:14:02:b0:ce:
0e:cd:14:d8:79:81:44:0c:f0:ad:a3:d6:e8:74:3c:
fc:ab:1e:2c:f1:04:d3:c8:05:a1:c9:b2:93:f2:6f:
77:cc:c3:21:aa:19:e2:24:7c:04:09:3f:b6:1d:62:
c8:e3:3a:68:2d:b0:3a:f0:f3:be:80:1e:2e:bb:71:
b6:eb:03:20:20:39:da:45:d3:97:41:6d:c8:bb:4c:
f1:83:b5:3f:bd:6b:9e:d5:fc:56:92:b0:f3:48:68:
d6:c6:73:a1:ad:9b:7b:87:e0:1a:5b:fc:9d:52:83:
47:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:1B:A1:03:C8:1B:EE:40:A4:5C:FA:09:E8:C9:1C:C4:8F:10:1E:A0
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136392e312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.1.0/24
Signature Algorithm: sha256WithRSAEncryption
61:3a:ad:27:10:ff:46:e6:7b:71:13:61:8f:69:91:80:60:2e:
4f:48:68:18:da:65:89:19:28:90:f1:80:55:02:13:29:fe:b1:
26:50:7e:31:21:99:72:fa:8e:f9:e2:31:60:da:c2:e7:82:29:
0f:d5:9c:d0:aa:ef:97:61:76:6c:be:ec:2f:4c:78:2f:e0:7f:
b8:81:df:7c:de:f3:50:3a:a8:79:da:c9:25:ce:54:c9:7b:84:
6b:6b:e6:10:ae:1f:7c:09:32:bc:e9:44:ac:10:1e:09:ba:6d:
fa:72:2a:72:8d:c5:d3:14:f9:85:ac:1e:2a:04:c9:3b:69:58:
c5:c0:50:0b:83:a7:cf:06:56:ff:a0:91:77:96:8d:96:41:85:
0c:9b:ec:6a:ab:b6:84:78:77:02:99:4a:7b:32:8d:36:86:56:
d9:06:d6:a6:8a:3d:ed:9a:fa:5d:47:0a:6e:08:20:75:46:1f:
87:d9:56:c2:19:04:8f:bd:82:bd:25:6d:ef:36:89:12:b6:6a:
50:35:f5:63:56:84:3d:d6:b8:fa:84:7e:81:d2:c4:20:0a:a3:
81:1d:8a:d0:74:b9:9d:27:bc:eb:36:77:0d:12:a5:23:b5:7b:
75:fb:37:37:53:63:02:26:bb:a9:18:43:b7:da:32:08:02:1d:
a5:7c:10:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 20:21:23 2024 by rpki-client on console-fra.rpki-client.org