Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137382e31362e3133322e302f32322d3232203d3e203437353833.roa
File: 3137382e31362e3133322e302f32322d3232203d3e203437353833.roa (raw, json)
Hash identifier: QcFCQOkx7+LdJnHClNZXTlaVI8pAXnK1Exn8kLgTyes=
Subject key identifier: 8C:75:2F:13:73:CF:0F:AE:07:0C:12:BF:BB:40:F2:E4:21:32:C6:C7
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 4AF09F226829369BA12557764AC7D0416D3BE740
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137382e31362e3133322e302f32322d3232203d3e203437353833.roa
Signing time: Tue 17 Oct 2023 06:29:26 +0000
ROA not before: Tue 17 Oct 2023 06:24:26 +0000
ROA not after: Tue 15 Oct 2024 06:29:26 +0000
asID: 47583
IP address blocks: 178.16.132.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 14:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:f0:9f:22:68:29:36:9b:a1:25:57:76:4a:c7:d0:41:6d:3b:e7:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 17 06:24:26 2023 GMT
Not After : Oct 15 06:29:26 2024 GMT
Subject: CN=8C752F1373CF0FAE070C12BFBB40F2E42132C6C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6e:6f:07:ae:d0:d5:f1:bc:a6:89:fd:b3:c1:
c1:34:4b:01:2b:1e:2d:84:5a:f7:dd:a1:71:46:ef:
a5:92:ba:61:35:f7:ab:bb:bd:17:b4:68:88:b0:6a:
81:53:ba:76:3b:1e:60:5b:f0:6b:19:18:c9:52:77:
e2:ae:2d:64:e1:4e:67:25:6e:01:a0:9e:cb:e4:b8:
fa:63:da:cd:94:00:7a:dc:25:01:39:0b:7a:ed:9f:
b9:e7:f8:97:56:12:d6:82:7a:00:46:69:4a:0b:0b:
33:7e:65:8f:3b:8c:73:5a:7b:9b:42:cd:9a:2b:fc:
ad:7d:1b:de:d7:ce:0e:42:d5:2b:e0:38:19:9a:3e:
9b:f8:2b:b9:26:5b:fb:ab:d2:a7:29:5d:85:53:12:
cf:b5:ca:85:3d:2e:0c:ae:30:48:1d:53:09:0d:62:
d6:9a:21:90:3c:77:4e:68:28:e2:7c:4c:19:e0:85:
b0:9a:9a:95:e6:9c:b9:30:99:a8:6f:65:9b:57:55:
b5:38:ff:79:a9:a6:66:a1:12:ab:a7:d2:35:b9:81:
95:ef:26:5e:ef:70:09:fb:4f:2b:49:12:d5:db:6c:
95:4d:21:24:c8:74:4d:29:62:48:a5:73:f5:e3:c5:
7e:3b:5c:82:24:26:15:df:3c:8e:aa:4a:5a:38:c7:
46:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:75:2F:13:73:CF:0F:AE:07:0C:12:BF:BB:40:F2:E4:21:32:C6:C7
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137382e31362e3133322e302f32322d3232203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.16.132.0/22
Signature Algorithm: sha256WithRSAEncryption
82:04:b0:1f:5d:58:27:27:77:ec:11:dd:49:ff:bb:df:2b:79:
19:36:df:df:5c:08:b1:98:6c:82:d4:66:eb:36:68:70:57:fa:
09:8e:83:3a:b2:a1:62:de:a8:ed:1a:06:c3:c1:65:20:d9:34:
0f:eb:bf:fe:71:db:eb:68:98:12:bf:6d:6c:30:70:ab:ed:02:
19:1a:58:1d:fc:ab:9b:3c:0a:69:fa:5c:5c:98:10:c3:95:fb:
74:4b:d1:1e:37:73:70:fb:cb:5a:f6:79:f8:8f:82:3b:bc:c9:
46:cf:e6:c6:23:ae:aa:92:3f:d2:41:2d:42:d6:08:a9:2b:7f:
44:03:23:c9:22:5d:e1:66:b0:93:f0:bc:51:09:c4:dc:d8:d8:
cc:41:62:cc:dd:23:9b:83:a0:b1:50:47:a1:25:6a:1b:00:a0:
d6:67:a3:f2:94:33:a4:be:18:c1:aa:dc:2d:50:fa:05:ce:45:
2c:66:da:38:b3:7b:be:d1:73:de:64:6c:37:f6:81:14:ea:4e:
87:cb:89:d6:00:7c:f4:42:c0:57:32:35:e9:ee:24:b7:56:f3:
33:c3:83:cd:58:94:29:2f:84:ce:79:23:96:e2:73:84:f2:b2:
b7:83:39:ba:24:b2:cc:f2:9a:fd:20:00:6f:e8:94:2d:12:93:
fe:c9:84:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 21:12:36 2024 by rpki-client on console-fra.rpki-client.org