Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3134372e37382e3132382e302f32342d3234203d3e20313336373837.roa
File: 3134372e37382e3132382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: Ki/BApET1qdDN/tLH3tUmqYVkKpdExU3XGaEF8Ojl8s=
Subject key identifier: 61:CB:1E:37:C3:26:7F:59:26:96:84:3E:D1:9A:51:26:65:06:37:92
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 0501F0A1355643267028EC6C85BD0F4C9C9C4650
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3134372e37382e3132382e302f32342d3234203d3e20313336373837.roa
Signing time: Thu 30 Nov 2023 14:00:19 +0000
ROA not before: Thu 30 Nov 2023 13:55:19 +0000
ROA not after: Thu 28 Nov 2024 14:00:19 +0000
asID: 136787
IP address blocks: 147.78.128.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:01:f0:a1:35:56:43:26:70:28:ec:6c:85:bd:0f:4c:9c:9c:46:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Nov 30 13:55:19 2023 GMT
Not After : Nov 28 14:00:19 2024 GMT
Subject: CN=61CB1E37C3267F592696843ED19A512665063792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:61:7f:01:fe:52:5c:8d:3f:15:32:d8:a3:93:
40:f7:5a:88:fb:61:dd:3d:f7:23:34:17:62:6e:29:
db:72:66:99:c7:4e:56:12:a7:30:5d:87:2c:b9:ac:
38:de:21:f6:bd:27:fb:bf:0d:ce:19:b1:ff:0d:91:
1b:24:3e:62:45:a7:6e:94:3a:1d:88:38:96:ba:17:
88:a3:dd:00:c3:a3:a2:a7:6a:de:90:a0:5f:30:ea:
3e:0b:2a:7c:7b:3d:3e:ad:02:9d:a0:16:dc:d6:db:
1c:fe:78:8d:73:e0:d0:df:5b:d8:65:e0:73:74:61:
45:9d:d9:c6:dc:9d:8d:4d:41:fa:85:4b:cc:33:32:
1a:20:ba:c1:16:35:74:e8:d7:7a:3c:9d:68:5e:81:
41:10:6a:6e:9f:f7:1c:a6:a4:3a:b4:2e:e5:d8:20:
c5:e0:bc:ae:f9:4d:5f:38:12:29:02:66:24:d8:c4:
4e:35:51:ab:a6:27:c5:80:b4:a8:a4:40:8c:bc:49:
d7:d6:b2:4a:94:45:95:34:dd:3b:06:93:33:76:10:
1e:a4:c6:60:fd:71:a9:be:c0:44:89:90:cb:dd:15:
22:37:bf:9c:b4:21:79:97:55:92:9c:62:4e:fc:fc:
47:16:5b:b0:f8:cf:29:24:c0:af:85:35:5d:ce:79:
23:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:CB:1E:37:C3:26:7F:59:26:96:84:3E:D1:9A:51:26:65:06:37:92
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3134372e37382e3132382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.128.0/24
Signature Algorithm: sha256WithRSAEncryption
20:ef:93:4c:37:36:0c:29:fb:72:8d:d3:9a:89:d1:cf:68:e5:
f2:52:33:b3:d0:69:dc:59:8a:9e:9d:c3:e4:91:95:df:70:71:
dd:96:fe:76:6b:78:76:8d:4b:f3:78:45:c5:df:fc:6a:e6:58:
c1:e6:09:bb:38:90:63:48:6e:cb:3c:01:33:88:58:0f:a3:6a:
aa:2a:51:26:fc:5c:93:f7:4e:91:fa:84:c1:ca:f9:21:f8:a6:
36:ec:ba:87:f6:14:e5:a4:82:9f:4b:d2:6e:66:e0:90:53:6e:
5b:cd:e3:ab:bf:bb:18:7e:64:f2:65:f2:ba:7d:e7:75:7e:af:
c5:d1:8c:ba:17:77:e4:6a:8e:8c:2e:63:97:10:a3:77:6b:e4:
f9:08:93:ec:66:74:ba:c5:b5:9c:f8:ba:ec:51:8c:7c:2a:66:
e7:82:ac:ba:1c:38:cc:e8:cb:8c:a3:9b:fd:87:b2:fb:a5:c6:
4c:10:87:3f:09:e6:f5:97:6c:23:23:f5:de:8a:11:d1:d1:9f:
4a:dd:77:5c:9f:14:ac:58:0e:78:3d:fd:ba:be:b6:e2:3b:fd:
d8:5a:93:55:0f:ed:08:96:57:b7:85:88:e6:aa:99:f7:bd:d4:
dc:57:e7:02:94:0d:e8:49:c6:3b:4d:7c:77:47:de:cf:3b:17:
eb:6b:d8:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 19:21:52 2024 by rpki-client on console-ams.rpki-client.org