Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131382e302f32342d3234203d3e20313336373837.roa
File: 3138352e3137372e3131382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: /bhZP7ZdCnLtn7r4RX7ZXrUPW/4fxfiPchV8hTGS4qs=
Subject key identifier: 04:78:CA:00:F5:40:12:CE:69:44:14:C0:F1:E1:CA:91:0E:DC:99:FD
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 060F51BB3ADAC5E551F0FC35D978247EDBBC6CF4
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131382e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 27 Oct 2024 20:05:19 +0000
ROA not before: Sun 27 Oct 2024 20:00:19 +0000
ROA not after: Sun 26 Oct 2025 20:05:19 +0000
asID: 136787
IP address blocks: 185.177.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:0f:51:bb:3a:da:c5:e5:51:f0:fc:35:d9:78:24:7e:db:bc:6c:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 27 20:00:19 2024 GMT
Not After : Oct 26 20:05:19 2025 GMT
Subject: CN=0478CA00F54012CE694414C0F1E1CA910EDC99FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e1:d0:7e:0f:e3:6b:b9:87:04:f9:df:ff:03:
54:03:88:cc:31:2d:52:ba:7e:62:7a:e9:06:a6:5f:
f5:49:37:d2:f9:43:93:c8:e1:8f:11:1d:32:01:14:
62:18:2d:8f:a1:58:92:da:08:f6:b2:f1:88:8d:8a:
de:0d:db:bf:60:6c:01:76:ea:55:8b:2c:63:0d:65:
36:38:2e:3b:85:51:8f:75:f4:b0:0f:fd:72:e6:73:
20:31:dd:ac:3e:30:55:7f:eb:b2:2a:f9:0e:3a:58:
56:92:f0:d8:60:2b:a7:6e:c5:ab:6b:42:7f:0b:ac:
b1:e0:b3:8b:1b:d1:11:8d:98:1b:03:1a:ce:11:cc:
36:c1:49:a3:56:ea:be:ad:36:7f:7f:d5:c3:85:cd:
cd:54:d5:ea:11:03:61:f6:96:2d:63:2b:e5:93:44:
b4:6c:eb:78:66:16:79:57:3f:39:ea:f6:a4:89:ae:
09:3b:b0:68:20:a2:24:e0:76:66:bf:58:35:07:46:
b8:19:9c:76:94:99:4c:b9:c7:e3:63:0e:9a:21:aa:
c1:f1:7a:3f:1b:41:05:39:1f:0a:e5:6e:47:82:12:
2e:02:5e:41:3b:e3:0f:50:ed:f5:2d:10:38:31:12:
93:26:1e:29:1d:71:25:4b:e2:02:84:e2:16:48:54:
2f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:78:CA:00:F5:40:12:CE:69:44:14:C0:F1:E1:CA:91:0E:DC:99:FD
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.118.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:8e:49:15:ef:20:30:a8:85:5b:16:db:d0:60:76:de:7a:4e:
1d:b9:36:c6:c1:06:bb:d2:78:a8:8e:45:ae:22:53:ab:3c:5c:
6d:24:e8:6b:d1:61:b5:55:da:5a:74:11:e4:13:4c:53:ee:c8:
6a:ae:f2:2d:cd:bb:65:e9:e2:84:ff:f3:55:f3:2d:b1:48:26:
ae:9a:7e:39:49:4f:2c:d8:e2:f9:f5:68:d4:1e:be:fa:a8:d1:
17:1b:9f:e1:5f:ad:5f:6f:9f:fb:b7:68:16:e7:95:f4:d4:8e:
92:39:93:01:bf:33:5c:25:aa:15:9c:ef:8e:49:1b:66:47:43:
78:e7:5a:eb:93:38:53:01:8a:57:d5:6a:79:7f:d6:27:fd:3b:
eb:9b:45:6d:45:f7:0e:04:3a:f2:bf:f2:e5:ce:43:6f:16:c4:
eb:ec:da:cf:08:24:bd:1a:46:6f:89:9d:b1:18:17:42:6d:81:
9e:c1:f9:5a:d8:51:1d:58:d1:bc:7a:de:23:61:e1:24:f2:9d:
0b:be:5a:d1:84:de:2a:43:ef:0c:a4:b1:6e:92:5f:70:b4:39:
00:cf:6b:7c:4f:3b:d2:82:67:ef:90:93:2b:2f:7a:81:6f:1f:
5b:28:48:f7:ce:a7:74:24:b6:95:54:98:65:9d:4c:49:7d:12:
37:7a:bf:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:03 2024 by rpki-client on console-fra.rpki-client.org