Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137382e31362e3133322e302f32322d3234203d3e203437353833.roa
File: 3137382e31362e3133322e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: zVRqQg1bFjNYM5+6i1fm54FW7qJXvWobM1VVt/1XKxE=
Subject key identifier: F0:01:D5:11:88:53:86:04:D4:3A:04:69:3A:87:D9:25:45:6D:42:1E
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 20F71DA7CEDE6DCFA4BE172C690420F8FB2375FC
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137382e31362e3133322e302f32322d3234203d3e203437353833.roa
Signing time: Thu 13 Jun 2024 10:40:59 +0000
ROA not before: Thu 13 Jun 2024 10:35:59 +0000
ROA not after: Thu 12 Jun 2025 10:40:59 +0000
asID: 47583
IP address blocks: 178.16.132.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:f7:1d:a7:ce:de:6d:cf:a4:be:17:2c:69:04:20:f8:fb:23:75:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 13 10:35:59 2024 GMT
Not After : Jun 12 10:40:59 2025 GMT
Subject: CN=F001D51188538604D43A04693A87D925456D421E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:92:3b:7f:3a:df:9b:98:a6:eb:3e:d9:90:1f:
9c:ae:f8:12:6a:d4:70:6b:a2:5e:84:c5:d0:18:33:
51:6a:79:53:b6:5e:16:d1:f5:5a:cb:f7:28:2a:0e:
58:12:78:a3:e0:26:fd:bd:3e:3f:f3:da:30:3c:94:
05:9a:b5:2d:ea:85:c7:44:14:17:9b:80:7e:56:c3:
7a:10:ae:6c:27:7d:52:97:e1:64:0a:a0:62:75:dc:
2a:94:d4:82:01:81:8a:86:92:3b:f0:cb:8b:ae:12:
97:e6:ca:b6:c2:e8:fd:f2:07:47:ae:a5:f6:83:d3:
7b:1c:4f:0a:31:9f:51:7b:22:f5:4e:00:b2:bb:bc:
37:29:be:c1:fd:ea:54:fd:c6:13:58:c7:ec:2c:f4:
10:cc:ec:b2:13:35:7d:47:05:22:8f:7d:5e:50:4a:
54:18:f6:4c:67:1d:90:ac:9e:9b:cd:8b:73:45:85:
5a:cc:06:bb:19:91:44:49:65:fa:f4:66:f6:31:80:
e6:fb:a6:9d:af:90:d6:e7:9c:99:8b:dc:39:6d:60:
3f:12:5c:11:e1:2d:f7:b8:0d:f8:f0:d1:33:49:38:
5b:fe:61:d9:94:7f:b2:40:11:60:73:1a:7f:62:16:
af:68:a1:38:93:31:d2:1e:98:65:3f:e5:7f:b3:a9:
ee:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:01:D5:11:88:53:86:04:D4:3A:04:69:3A:87:D9:25:45:6D:42:1E
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3137382e31362e3133322e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.16.132.0/22
Signature Algorithm: sha256WithRSAEncryption
30:57:e9:d7:cc:c0:e5:fb:b4:49:3b:ca:ec:8d:81:80:82:ca:
e9:15:c3:0e:f0:b1:91:67:00:04:24:b3:b5:01:74:d7:7c:9d:
4e:90:13:24:9c:22:0a:43:f4:4b:36:f7:32:f6:33:90:16:07:
85:be:de:8a:f3:8e:0c:87:f7:28:d6:d1:22:9a:05:d8:73:91:
fb:a3:e4:d1:ae:69:0f:66:4b:d6:d4:b1:8a:ef:da:a6:e0:20:
4b:30:e4:fd:84:c1:6e:6e:e3:c9:08:8d:2b:16:90:b4:b2:2e:
7f:b8:e2:e0:38:81:5f:67:c3:31:b1:9e:3f:4e:1e:0f:17:0d:
77:a7:59:46:3b:8b:60:b0:c6:c1:5f:24:eb:bc:c1:35:c2:89:
ef:63:42:6c:b3:d3:90:51:06:57:22:1a:e3:93:e4:ac:fb:f2:
c6:ec:1f:76:9e:51:f1:45:1f:37:3e:a6:9f:a5:59:6b:c5:54:
37:d9:eb:32:bd:9b:72:41:89:1c:a2:c6:f7:2c:ca:52:0d:22:
8e:d2:19:c0:de:11:46:48:45:b1:71:60:ce:fa:74:46:94:d0:
92:0f:e0:59:ee:08:fe:9f:07:5d:9c:a4:11:81:57:3d:1e:26:
ef:7d:9f:6b:45:de:e5:76:ad:fb:1c:05:f2:15:c6:4a:a3:a5:
cd:cc:f4:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:03 2024 by rpki-client on console-fra.rpki-client.org