Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138322e31302e302f32342d3234203d3e20323034313730.roa
File: 3138352e3138322e31302e302f32342d3234203d3e20323034313730.roa (raw, json)
Hash identifier: dsI9cojXe+RA0Q0MLqoPi4D1/zq1RW9qHgzIOrENL1c=
Subject key identifier: 6A:EA:50:6B:36:C4:5D:79:99:E5:B7:23:D8:69:42:B1:09:54:36:76
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 4977A4972D3195822C98EDE6524806035399095F
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138322e31302e302f32342d3234203d3e20323034313730.roa
Signing time: Fri 20 Oct 2023 13:41:53 +0000
ROA not before: Fri 20 Oct 2023 13:36:53 +0000
ROA not after: Fri 18 Oct 2024 13:41:53 +0000
asID: 204170
IP address blocks: 185.182.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:77:a4:97:2d:31:95:82:2c:98:ed:e6:52:48:06:03:53:99:09:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:53 2023 GMT
Not After : Oct 18 13:41:53 2024 GMT
Subject: CN=6AEA506B36C45D7999E5B723D86942B109543676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1a:92:71:4c:2e:4c:5c:fb:b3:a5:b8:08:33:
19:1f:2b:8e:a2:95:73:4b:cd:0b:60:3c:ff:4b:8a:
b1:fd:ce:bb:2a:0c:5d:9f:e0:d1:0f:53:fb:be:aa:
1f:d1:77:92:40:f1:e8:81:b2:c1:cb:d0:30:77:25:
8a:30:e1:eb:c1:b1:39:38:f7:42:78:41:8c:4f:06:
2f:27:82:c3:bb:14:a5:71:e4:4c:26:31:5b:7b:5b:
74:a2:dd:e8:4a:7d:14:e8:fe:0e:ef:18:7a:97:e6:
ba:f1:dc:54:5b:6a:a1:65:62:9d:68:1a:7e:ba:76:
84:b9:8f:d1:8a:7b:2d:47:6e:d1:d4:96:99:da:79:
73:ca:e7:e2:aa:20:5c:8f:3c:dc:55:dd:c8:a6:49:
bd:f4:07:a0:ef:5d:9a:3d:e1:9b:5f:45:0a:9a:0f:
14:66:97:d7:89:4c:69:0d:34:b6:7f:9b:f0:02:26:
6a:a7:02:2f:ac:0c:a2:e1:2e:bd:34:72:dd:f6:4d:
3a:41:42:9a:ec:4d:0a:2c:3c:db:75:62:aa:45:ed:
94:06:7b:21:df:26:65:9c:72:1d:4f:c9:e6:c9:0f:
a4:36:b8:6b:6d:a1:4c:3e:25:ee:dd:16:cc:cb:6e:
99:cb:61:ce:3c:9e:cd:02:af:3d:62:70:84:f6:ce:
99:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:EA:50:6B:36:C4:5D:79:99:E5:B7:23:D8:69:42:B1:09:54:36:76
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138322e31302e302f32342d3234203d3e20323034313730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.10.0/24
Signature Algorithm: sha256WithRSAEncryption
14:5f:3a:49:99:bd:0c:22:08:a7:39:ff:e0:c0:11:52:dc:73:
df:d4:58:81:d0:dc:e3:ef:ba:10:df:c9:91:fd:61:a7:ed:37:
1f:2c:5f:60:78:e4:93:88:e3:ad:16:11:e9:13:74:b4:02:87:
2a:71:ec:b6:13:2b:68:8f:b1:55:ce:ad:00:0c:31:dd:7d:a5:
8c:5b:33:53:93:21:88:12:9e:15:2e:44:b1:03:5a:31:cb:0e:
4e:55:3f:a8:4c:65:d2:61:69:25:ca:0f:d5:ac:73:3b:95:c7:
51:74:a2:2c:d2:2d:f1:fd:70:df:3d:5d:cd:2e:86:c8:25:fc:
f8:8d:91:2e:71:54:6e:c6:c5:d5:6b:78:da:79:24:89:12:9e:
74:22:e9:10:f8:5e:7e:6f:99:35:06:32:34:e7:b0:76:73:a5:
d4:27:4c:49:c7:4a:ca:d9:96:6b:20:3f:a1:1a:f3:d4:d7:ae:
33:18:58:f1:65:a0:a1:3b:59:6a:a0:32:74:79:10:42:a4:09:
5a:6d:56:c2:e6:ec:9d:c9:95:8b:b5:6a:cb:d2:8b:1d:92:d9:
d1:3a:f8:4d:f6:a1:8e:81:0b:0a:11:4c:ad:3c:3d:80:0b:bd:
a7:51:95:fa:dd:e7:0f:43:6d:f6:18:58:74:f8:28:4b:b1:a5:
85:62:a5:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 08:01:44 2024 by rpki-client on console-fra.rpki-client.org