Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e37302e302f32342d3234203d3e203633343733.roa
File: 3137362e3132362e37302e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: mANMAUKKjdXazBKnMx8tXCP5f+wjq2NG1GSOkde0a3M=
Subject key identifier: 34:D9:B0:E4:99:09:C4:3D:1D:9E:70:E7:CD:21:00:3B:B7:77:BB:7F
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 60934464BC2A8F6C4E03C0292C124715148B5248
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e37302e302f32342d3234203d3e203633343733.roa
Signing time: Sun 21 Jul 2024 08:04:19 +0000
ROA not before: Sun 21 Jul 2024 07:59:19 +0000
ROA not after: Sun 20 Jul 2025 08:04:19 +0000
asID: 63473
IP address blocks: 176.126.70.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:93:44:64:bc:2a:8f:6c:4e:03:c0:29:2c:12:47:15:14:8b:52:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jul 21 07:59:19 2024 GMT
Not After : Jul 20 08:04:19 2025 GMT
Subject: CN=34D9B0E49909C43D1D9E70E7CD21003BB777BB7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a8:71:a4:cc:37:c1:c8:4f:35:64:46:23:3d:
69:60:e3:cd:0e:eb:f3:d4:52:11:7b:33:71:6a:87:
72:4b:32:a5:3d:98:62:46:d3:63:e5:87:3e:ea:4d:
c2:06:a1:05:ee:12:8a:2d:f9:6a:7b:60:69:02:e0:
5d:c8:16:88:3d:6e:9f:55:7b:71:5e:d7:80:fc:21:
69:e6:7e:b8:94:b0:42:8f:49:22:b5:ba:00:2e:d1:
3b:90:ea:a0:35:21:41:53:bf:e5:b9:76:30:2d:6a:
7b:46:f2:e8:6e:5a:f6:6d:92:0e:75:41:f0:09:8b:
d7:a5:0b:5a:d7:0e:2d:8b:49:87:95:42:61:ae:2e:
c3:03:0b:01:2f:3e:38:dd:ea:fd:4d:27:97:91:00:
08:10:25:a5:08:8e:cc:78:38:a2:d8:28:49:e4:82:
d1:d3:b0:af:2f:26:b7:f1:90:1b:84:e5:2d:6e:6b:
04:18:e7:13:27:3c:d9:14:41:46:0d:3c:16:57:e3:
0d:6b:b5:96:82:48:8a:d2:2e:49:19:70:52:01:7d:
5d:0d:ca:0e:59:a7:de:93:e9:e5:87:99:26:10:b3:
00:7f:b4:9e:99:27:83:28:56:9b:46:46:de:7d:88:
37:50:4a:df:46:c0:1b:33:60:79:55:d1:1e:72:e3:
db:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:D9:B0:E4:99:09:C4:3D:1D:9E:70:E7:CD:21:00:3B:B7:77:BB:7F
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e37302e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.70.0/24
Signature Algorithm: sha256WithRSAEncryption
62:ca:be:91:e0:0f:0c:8b:75:ac:23:7f:b0:fc:ed:39:eb:72:
c8:91:1c:12:33:a0:8b:2d:84:97:cb:87:97:5a:cb:98:3b:fc:
46:5e:2e:8c:5d:6c:eb:c0:8f:a4:c4:46:87:88:d3:98:e3:39:
df:24:98:98:9d:af:23:dc:06:56:4c:df:25:a6:f8:fd:a5:c9:
3c:b6:6d:98:c2:72:17:52:e8:99:91:27:02:04:4f:d8:5c:17:
0b:a9:62:f4:4f:9c:98:a7:82:e4:3f:c7:f4:8b:4b:9d:37:06:
d2:47:17:66:10:82:d6:e9:e1:50:0b:e7:df:00:16:a4:ec:74:
74:f8:f8:e0:cd:8b:57:7c:20:b3:01:14:59:a2:e7:fb:b0:a5:
2b:20:d5:08:bd:64:75:2f:1b:15:f6:2e:12:26:fc:a0:66:c4:
0f:3b:93:ec:7b:68:c8:a6:13:0a:0c:e8:38:3a:0b:e5:ee:e3:
73:ba:d3:f9:96:08:eb:25:21:3a:1f:d9:43:f7:06:a3:d9:3e:
cf:c5:1c:7a:e1:aa:42:8f:02:9c:51:c1:50:cc:48:cb:07:db:
aa:b0:3a:c8:36:2f:2f:0f:f6:ed:7e:13:65:42:1b:76:92:71:
01:c8:54:bf:85:a7:43:86:e9:2b:26:43:50:56:22:80:31:ab:
3d:76:a5:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:45 2024 by rpki-client on console-ams.rpki-client.org