Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e38342e302f32342d3234203d3e203633343733.roa
File: 3137362e3132362e38342e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: AbVEgEdq+RxedFI1xbJc0jIrY+45ycX3Ua/nfA3zJu8=
Subject key identifier: 3E:06:A5:AE:77:97:0F:22:A4:A3:22:6C:DC:35:94:97:4D:B8:AA:28
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6AC32D8C3DF9C942C514296C4B69BC862DFAD892
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e38342e302f32342d3234203d3e203633343733.roa
Signing time: Sun 20 Aug 2023 07:15:33 +0000
ROA not before: Sun 20 Aug 2023 07:10:33 +0000
ROA not after: Sun 18 Aug 2024 07:15:33 +0000
asID: 63473
IP address blocks: 176.126.84.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 14:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:c3:2d:8c:3d:f9:c9:42:c5:14:29:6c:4b:69:bc:86:2d:fa:d8:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Aug 20 07:10:33 2023 GMT
Not After : Aug 18 07:15:33 2024 GMT
Subject: CN=3E06A5AE77970F22A4A3226CDC3594974DB8AA28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c3:40:82:24:c8:c2:f6:03:cb:de:24:63:53:
e2:1b:6d:46:3f:d0:8f:53:98:5f:f8:b7:ba:32:5d:
d0:b1:32:fe:48:b7:2b:c7:d8:f6:bb:c0:f5:ca:4a:
12:f5:20:2b:ee:e8:04:21:6b:39:08:41:cf:5f:24:
01:78:95:65:8b:38:26:2e:0c:88:0d:36:17:4f:f1:
15:d8:32:7a:4d:82:23:98:98:9e:3e:51:3b:ad:c6:
dd:fb:bd:af:ea:b8:31:cc:dd:f8:4f:e5:54:55:b2:
e9:0b:5d:3d:31:5c:03:da:00:fe:ad:7d:78:39:e1:
51:e4:66:e2:e9:71:cd:18:4b:3e:b3:83:f0:3c:ef:
c3:f5:d0:c8:42:21:7c:7c:ee:60:00:da:a3:6b:39:
1d:a4:e8:f2:d5:cc:65:f1:6e:ec:55:ec:80:8e:6b:
a7:9c:93:5d:9d:fb:60:ca:d6:e5:83:87:86:44:fe:
d6:8e:5f:85:5f:c1:5f:f3:c3:ec:92:e4:e2:5c:31:
0c:09:e6:cb:7a:fd:9b:d8:34:87:aa:4a:67:4d:7e:
45:3d:e1:7f:af:eb:9d:39:b1:97:c4:2b:65:25:ab:
d9:05:db:7d:23:d4:78:c3:c2:eb:b9:db:2d:7a:3d:
72:00:18:24:bd:48:66:a9:1a:01:b1:cb:48:46:0f:
27:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:06:A5:AE:77:97:0F:22:A4:A3:22:6C:DC:35:94:97:4D:B8:AA:28
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137362e3132362e38342e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.84.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:9b:4e:b1:43:bb:64:10:b9:92:85:e7:a4:7f:a9:ae:20:ac:
8f:ee:f0:67:53:ba:fa:30:00:05:f6:6c:c9:7c:dc:eb:6b:db:
09:f1:6f:e7:e6:d4:2c:f5:64:c9:8a:c5:0f:8f:51:0d:ed:02:
d8:a0:36:4d:ef:dc:61:06:c0:41:fd:f0:5a:80:1b:be:37:3c:
e2:29:d2:a1:cd:51:17:eb:c2:56:37:2f:61:06:6f:3a:fe:99:
79:63:14:e4:30:cc:1d:0c:b9:09:f9:8b:97:0e:9e:3d:57:77:
71:01:5a:13:e0:ea:e6:54:f9:2e:22:7f:a6:17:d2:f4:35:5b:
96:d3:34:61:49:1f:60:9b:96:a3:8c:4c:38:de:41:6d:e1:26:
3c:38:8b:72:bc:19:5b:db:66:4a:9c:77:da:fc:b9:41:70:06:
32:e0:65:83:d5:ce:cd:31:43:b1:9f:3f:3d:c3:71:08:f7:bd:
ca:87:8c:e0:af:b7:ef:b5:23:b8:95:1a:97:51:c9:a8:c0:1d:
8e:8e:98:d5:50:02:3f:16:82:23:cc:38:ce:79:e2:8c:ee:1f:
2f:86:1b:58:66:27:54:fd:63:d9:34:28:36:35:38:49:6a:ec:
17:c1:6b:01:b5:47:fe:d0:9a:a2:0f:cf:00:4b:3c:92:d4:75:
f7:99:03:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 23:31:23 2024 by rpki-client on console-ams.rpki-client.org