Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131382e302f32342d3234203d3e20313336373837.roa
File: 3138352e3137372e3131382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: bfqVnib5VyeGDGOjTnPk3eaj0qzi/SlM/Xe3XXkEKhU=
Subject key identifier: 9B:24:B2:93:A2:1F:4C:93:68:E3:BD:2C:09:0A:67:1F:FE:C8:E0:DA
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 0C895C4DC7AFCB73B6FDB1CA4A111302E59A910B
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131382e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 26 Nov 2023 19:50:01 +0000
ROA not before: Sun 26 Nov 2023 19:45:01 +0000
ROA not after: Sun 24 Nov 2024 19:50:01 +0000
asID: 136787
IP address blocks: 185.177.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:54:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:89:5c:4d:c7:af:cb:73:b6:fd:b1:ca:4a:11:13:02:e5:9a:91:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Nov 26 19:45:01 2023 GMT
Not After : Nov 24 19:50:01 2024 GMT
Subject: CN=9B24B293A21F4C9368E3BD2C090A671FFEC8E0DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ef:27:f0:02:f2:f8:ab:ff:e9:79:e9:1a:ee:
a2:e0:be:08:87:5a:63:33:5e:6d:99:c9:5f:c8:c7:
cb:e8:79:d1:cf:ae:6c:1d:9f:2c:d4:c3:48:3e:49:
6e:11:f6:24:4b:fd:28:5f:57:b3:68:65:1e:e1:03:
95:05:b8:48:28:d8:97:f9:36:af:1b:d4:ef:85:ce:
02:c1:0a:f1:67:98:d1:c1:e1:31:0a:73:2d:ca:3d:
02:bb:ae:50:e8:07:f4:41:b2:17:aa:69:3c:1f:2c:
85:28:ce:cf:20:5f:33:6a:0b:d3:ca:a3:c0:af:63:
0b:76:6a:2d:16:24:52:20:27:a7:87:29:8c:43:18:
f0:b6:ed:6f:15:01:8a:bb:aa:c3:5c:83:46:f6:df:
9d:fe:c7:cc:9e:40:d1:87:74:69:ac:2a:1a:7b:c7:
07:6c:07:04:24:ea:9c:ef:71:81:c0:ba:f1:85:40:
71:65:e5:f7:11:2c:8e:52:f7:0f:e7:8a:a8:2b:aa:
f1:e9:10:a5:2f:a4:f1:04:45:04:a8:dd:ab:3c:fd:
09:9a:59:9b:a0:0f:3e:1f:cd:c7:70:0d:a4:b5:43:
d1:30:13:91:90:19:31:7d:6a:30:52:39:59:34:98:
de:24:54:dc:68:34:98:56:16:ea:7a:65:c6:02:b2:
63:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:24:B2:93:A2:1F:4C:93:68:E3:BD:2C:09:0A:67:1F:FE:C8:E0:DA
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.118.0/24
Signature Algorithm: sha256WithRSAEncryption
47:77:2b:1d:fd:76:b5:b7:ff:ad:f4:4a:19:ed:09:9a:16:77:
b2:47:11:41:af:36:9d:2d:59:8c:c3:3e:95:5a:85:60:58:c5:
92:48:05:46:79:b2:ee:f3:74:2b:c1:e2:23:e6:69:0b:a8:13:
00:7e:c6:d6:33:f6:69:74:0b:15:d0:d6:b6:29:b6:c1:9a:81:
96:f9:3d:a8:6e:e9:fe:af:61:7d:ad:89:eb:f2:82:a0:cd:51:
51:c9:e4:1c:98:84:a3:fb:b7:0d:57:07:5d:b8:d6:35:75:9f:
2e:5a:92:ac:53:a3:4c:ac:65:d3:f2:95:ac:b0:94:f7:ef:b0:
96:74:f6:0d:2e:72:4e:9b:74:ab:cf:d1:71:49:5c:c3:23:9a:
99:ce:00:8a:78:e9:9c:43:6c:c6:a9:f0:8d:c5:a1:1a:79:85:
0b:87:81:42:1f:66:ee:6a:bb:3c:56:f7:56:a6:85:7c:af:e0:
16:45:2e:e1:a2:23:a3:ab:22:de:48:9d:e4:b4:e0:65:fd:fa:
92:6c:67:a6:97:8f:b6:d1:ed:2a:d1:5f:8d:01:d1:4e:52:9a:
86:59:c9:b7:bd:14:78:53:af:da:d7:87:99:01:6f:30:86:39:
54:bc:c2:2e:2c:0d:9a:17:6e:5a:7c:9d:b9:40:b6:2e:ef:ad:
37:69:2c:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 20:21:25 2024 by rpki-client on console-fra.rpki-client.org