Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e37302e302f32342d3234203d3e203633343733.roa
File: 3137362e3132362e37302e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: y3/a9z0KB/3n5ra8hm5cGk33J4At1Xh7EE7GijAF5FY=
Subject key identifier: D7:0F:2B:2C:EE:E6:1D:0B:13:92:13:4A:68:AC:FD:1F:04:17:BD:E0
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6D41233ED7704EBA5713E4C7064A86805573B309
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e37302e302f32342d3234203d3e203633343733.roa
Signing time: Sun 20 Aug 2023 07:15:19 +0000
ROA not before: Sun 20 Aug 2023 07:10:19 +0000
ROA not after: Sun 18 Aug 2024 07:15:19 +0000
asID: 63473
IP address blocks: 176.126.70.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 14:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:41:23:3e:d7:70:4e:ba:57:13:e4:c7:06:4a:86:80:55:73:b3:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Aug 20 07:10:19 2023 GMT
Not After : Aug 18 07:15:19 2024 GMT
Subject: CN=D70F2B2CEEE61D0B1392134A68ACFD1F0417BDE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:55:6d:53:6a:2d:77:49:45:4e:5b:60:20:c9:
cc:28:88:85:c4:05:86:aa:f2:82:93:4e:62:93:b2:
71:70:b8:e9:31:fd:ac:85:e9:a3:a6:be:b2:5c:75:
6d:d9:38:c3:7e:80:76:a7:17:df:09:cd:2d:0a:e8:
c2:6a:3b:fa:22:33:59:89:3f:72:f9:2a:39:46:80:
77:b0:15:9e:bc:44:4f:8b:eb:83:52:c1:47:b1:4d:
24:8d:47:3f:24:ef:cc:32:29:02:7a:0e:3a:3d:84:
09:1a:45:11:51:4a:8a:f4:66:1b:4a:5d:58:8a:74:
89:35:9b:8b:fd:da:50:34:dd:52:fd:90:38:6a:1b:
15:09:d2:3f:d5:3d:90:e3:7a:04:68:49:48:52:40:
59:42:22:af:81:ba:45:ad:1f:e7:fb:8f:51:01:54:
c2:1e:d9:cf:98:f2:55:c8:f7:ab:b5:ed:16:4e:e6:
de:21:2f:1e:6b:e7:57:d4:e7:f8:6b:ca:65:21:b3:
78:fb:fd:78:08:d5:55:0e:3b:3f:19:3c:33:78:47:
5f:21:c9:be:a7:7d:de:42:f4:56:05:f3:f3:16:63:
c7:f6:22:2e:f2:af:59:2f:22:0b:34:e3:93:16:eb:
6a:28:2c:28:a4:11:7a:0a:62:1b:2d:36:95:15:ba:
ce:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:0F:2B:2C:EE:E6:1D:0B:13:92:13:4A:68:AC:FD:1F:04:17:BD:E0
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e37302e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.70.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:7e:2e:4a:82:51:a5:e4:64:20:5b:2e:7d:8c:3f:72:78:b8:
8a:3a:b1:af:fc:ef:1c:84:0f:b1:20:0b:44:e7:32:4f:f8:23:
01:eb:b0:46:e0:c8:27:2d:41:a4:e3:b9:f2:d6:7c:24:07:b5:
02:ee:ae:e4:0d:23:3e:41:59:89:b0:01:b0:c5:3b:a8:d4:27:
5f:03:90:26:27:86:86:58:4d:c8:de:0a:bd:b0:be:3b:df:d1:
65:c5:b5:2e:9d:7f:14:cb:a7:13:46:4b:8e:c1:1e:d0:8f:10:
3a:a8:ed:44:95:83:03:e3:af:3c:96:2c:16:f9:54:43:0e:66:
79:31:c9:89:e3:82:4b:4f:6b:f4:4b:32:82:34:3b:8a:f2:9b:
a5:70:5b:80:7a:4d:1e:1e:d7:8b:6d:00:3d:4f:1c:84:06:e1:
83:23:93:1e:15:b4:3d:2f:6c:58:26:d0:f0:c2:79:0b:eb:df:
e0:77:8d:27:1c:7a:e3:19:59:f6:9c:58:54:25:6e:c3:b3:23:
22:4b:e1:5a:ea:22:75:df:c9:bd:4c:35:fe:23:32:34:49:63:
27:13:72:0b:e9:cf:7c:47:98:09:2b:c1:6a:79:fe:3f:8d:16:
fa:ee:f9:63:0d:e1:42:e1:99:2d:97:5b:13:34:24:18:8e:2b:
c2:3d:66:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 21:12:36 2024 by rpki-client on console-fra.rpki-client.org