Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3137322e35322e302f32342d3234203d3e20313437303439.roa
File: 3138352e3137322e35322e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: vKQ7ubTpwiuvCtUx/Ei7q/7kSRGpfxD+i/Na5gI4JZk=
Subject key identifier: 8E:89:B3:2B:10:3C:C7:A5:8E:A3:A9:66:AC:8F:9C:D3:F4:1E:53:3C
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 1673A85F537853757459BA4DAE0F299F6C33ADA7
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3137322e35322e302f32342d3234203d3e20313437303439.roa
Signing time: Mon 19 Jun 2023 10:12:59 +0000
ROA not before: Mon 19 Jun 2023 10:07:59 +0000
ROA not after: Mon 17 Jun 2024 10:12:59 +0000
asID: 147049
IP address blocks: 185.172.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 13:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:73:a8:5f:53:78:53:75:74:59:ba:4d:ae:0f:29:9f:6c:33:ad:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Jun 19 10:07:59 2023 GMT
Not After : Jun 17 10:12:59 2024 GMT
Subject: CN=8E89B32B103CC7A58EA3A966AC8F9CD3F41E533C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:41:1f:4e:24:e5:cb:2f:ae:9d:87:fa:14:61:
ff:41:81:22:ea:2a:85:05:4f:c1:c5:f6:dd:06:5a:
1c:16:47:6b:1c:3c:a7:ec:91:a0:0a:37:73:62:7b:
ca:b4:ec:a7:cb:62:dc:f0:1e:4c:63:40:a9:7a:12:
b0:c6:5f:33:0b:60:2d:27:80:1e:9f:2f:c3:c6:72:
9c:7a:6e:db:00:e3:2b:1a:05:11:76:ea:aa:b9:63:
85:39:9b:93:19:6a:28:4b:44:c7:17:a4:d9:57:75:
dd:c8:df:53:3f:bf:41:e9:5b:f0:fe:4a:3e:5f:09:
dc:b4:82:ce:25:18:c6:7e:f4:33:8c:c2:eb:57:e7:
7d:50:c3:14:ad:e8:ef:22:7b:2f:22:a3:51:3f:ab:
29:4e:c5:1a:28:28:40:7c:0d:d6:fe:af:3d:7c:17:
a0:25:b9:63:f4:d1:28:a9:5a:32:47:3f:4a:23:00:
9a:90:32:dc:e8:0d:3b:e6:43:dd:19:2c:de:47:59:
ae:48:da:c4:23:1d:33:e9:9f:a1:e6:bd:d1:f2:14:
61:a8:92:42:35:09:e6:99:ea:30:3b:dc:eb:84:0a:
e8:ed:1f:83:82:84:d7:7e:c8:24:09:39:9b:68:56:
23:f2:53:ee:d0:47:35:9a:d9:96:d3:22:1c:e5:1c:
21:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:89:B3:2B:10:3C:C7:A5:8E:A3:A9:66:AC:8F:9C:D3:F4:1E:53:3C
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3137322e35322e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.52.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:ab:cd:35:3a:70:14:3b:bc:c8:21:c1:2c:99:e6:41:31:71:
fa:cb:66:31:89:71:15:d0:50:bb:40:d7:93:be:92:6d:c1:37:
77:80:3c:f3:64:a0:ea:88:a8:2b:10:d8:3f:1d:57:b3:a1:93:
5e:52:ae:5a:2a:cb:30:d5:37:f1:33:84:24:b1:6e:e1:96:be:
e3:c5:29:37:e4:7e:4f:ea:d3:64:d8:d4:f1:f9:b4:c8:c8:49:
5a:bd:32:20:fa:3f:6e:ec:b4:2f:40:d9:b1:02:0b:12:b0:6a:
f4:fb:0e:05:47:52:0c:06:cb:9f:24:3c:87:d5:af:54:40:c0:
fd:9a:ba:6a:be:a2:42:c3:3b:4e:dc:6e:b5:56:cc:ec:b2:b2:
83:1b:b4:31:ad:25:f9:81:5e:ce:d0:b9:ce:fe:05:b1:27:72:
fc:57:c1:f0:c4:40:19:77:11:d5:74:98:c8:39:12:1f:1e:aa:
7c:b1:b7:db:d3:6e:28:73:12:a1:5b:35:51:10:71:ea:2e:52:
3d:20:4a:2c:bc:a8:c3:a5:5a:74:4e:ca:ec:24:4f:de:e7:36:
9b:38:64:85:55:29:f1:35:ca:61:aa:f0:91:38:41:a0:07:bc:
2a:5d:ce:70:c8:08:31:23:bb:37:79:32:67:53:b2:d7:26:e9:
b1:1a:c2:2d
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun May 19 18:41:23 2024 by rpki-client on console-ams.rpki-client.org