Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3137322e35332e302f32342d3234203d3e20313437303439.roa
File: 3138352e3137322e35332e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: wUulbyfBGVGrwZOHYdwxRoEBTr8CWSDASCOmmz56vYw=
Subject key identifier: 5E:8E:64:2C:DE:99:D7:F3:EF:DE:75:E2:3A:D4:B7:1E:B0:1D:C2:D3
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 27D696B0952916AFFA45BFF370395E46F94EB560
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3137322e35332e302f32342d3234203d3e20313437303439.roa
Signing time: Mon 19 Jun 2023 10:13:21 +0000
ROA not before: Mon 19 Jun 2023 10:08:21 +0000
ROA not after: Mon 17 Jun 2024 10:13:21 +0000
asID: 147049
IP address blocks: 185.172.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 13:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:d6:96:b0:95:29:16:af:fa:45:bf:f3:70:39:5e:46:f9:4e:b5:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Jun 19 10:08:21 2023 GMT
Not After : Jun 17 10:13:21 2024 GMT
Subject: CN=5E8E642CDE99D7F3EFDE75E23AD4B71EB01DC2D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:ba:c4:72:d9:0d:80:26:bb:b3:88:05:88:cb:
d0:d2:98:ae:9f:81:08:5f:8e:28:e9:f7:74:3c:47:
e3:74:59:d1:4d:57:6a:6f:40:63:67:03:82:a7:1d:
f8:97:87:92:f2:e3:4f:64:42:43:d9:a2:47:d6:67:
41:b0:15:2b:18:9f:09:76:85:52:e8:09:50:3d:19:
09:c3:ca:ec:d1:81:a7:08:4f:40:ad:5f:a6:7e:c7:
32:f2:88:ad:d7:fc:00:b5:2a:5c:37:61:d9:da:a4:
2c:0e:56:4c:e9:73:e1:69:d0:cf:79:bd:75:e0:68:
25:ac:e9:9a:87:02:13:87:d1:d2:cb:20:86:5d:63:
cc:bf:60:32:27:42:bd:f8:c8:db:87:9a:07:0d:0b:
93:e9:42:54:b6:64:75:05:d7:af:19:64:36:fb:42:
f5:22:72:e6:ad:b0:a2:cb:c5:c0:ec:19:fa:0b:cd:
bc:33:9b:44:3e:f3:2a:10:03:80:00:df:15:90:7a:
10:7f:9e:4b:28:26:26:b8:50:e6:85:7b:d0:88:1f:
45:0e:25:c4:8a:d3:09:46:9d:b3:5e:91:9a:b0:05:
70:1d:c0:e0:a7:7d:05:f2:6c:b0:41:a9:db:27:4c:
c0:35:f1:cd:fe:f2:a1:91:e6:ec:33:78:03:f2:6d:
9e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8E:64:2C:DE:99:D7:F3:EF:DE:75:E2:3A:D4:B7:1E:B0:1D:C2:D3
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3137322e35332e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.53.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:c7:99:44:b6:3f:31:df:34:f4:75:0e:51:ed:0d:76:59:52:
13:c4:46:34:2b:3c:d4:52:b4:81:75:44:37:1f:be:73:52:ea:
3c:38:9d:fb:54:09:13:2f:84:1c:a0:1f:dc:50:d7:d8:e8:87:
90:b4:14:27:b8:4d:8e:82:1a:54:35:89:27:35:de:29:6c:49:
2d:78:a4:12:e4:64:3c:1e:60:09:da:9d:e7:e4:b0:96:7b:a6:
03:14:fd:70:5e:7a:e2:b2:e7:bc:50:eb:97:c7:2b:ce:25:d4:
f9:af:f8:e3:2b:8f:aa:ac:df:ee:cb:17:96:3a:99:7e:ed:25:
13:76:b4:be:07:5e:71:5e:eb:7c:09:90:8f:bb:66:3a:c2:b5:
02:ed:99:45:b1:da:f4:e8:72:83:8a:fd:6f:02:71:9c:ae:6a:
33:44:38:8d:dc:40:17:3a:16:a8:80:d4:cd:f8:10:4d:2b:4d:
14:92:38:37:ab:d7:7f:57:99:7c:7d:6e:b5:e5:fe:f4:db:ec:
c4:7b:75:f4:84:3d:7b:47:3c:a2:b8:0b:b2:67:df:76:0d:a7:
89:0b:0d:4e:03:57:d7:f2:ab:df:d2:5e:e6:e3:04:4e:9e:38:
43:43:71:04:bc:9c:af:49:10:1f:b0:f7:36:d1:c6:81:50:ee:
76:72:c6:4b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun May 19 17:58:47 2024 by rpki-client on console-fra.rpki-client.org