Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138322e31302e302f32342d3234203d3e20323034313730.roa
File: 3138352e3138322e31302e302f32342d3234203d3e20323034313730.roa (raw, json)
Hash identifier: WYokQHyccvwFHZrmXijPqmzMftPY9SuwucUxS2O3L0U=
Subject key identifier: 72:74:DD:8B:94:91:0F:E9:86:E2:BC:E5:CE:04:3D:09:E5:4E:25:6D
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 7CEEE742B2832871FECBE2E5949725A4A96E12B4
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138322e31302e302f32342d3234203d3e20323034313730.roa
Signing time: Fri 20 Sep 2024 14:04:59 +0000
ROA not before: Fri 20 Sep 2024 13:59:59 +0000
ROA not after: Fri 19 Sep 2025 14:04:59 +0000
asID: 204170
IP address blocks: 185.182.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:ee:e7:42:b2:83:28:71:fe:cb:e2:e5:94:97:25:a4:a9:6e:12:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 20 13:59:59 2024 GMT
Not After : Sep 19 14:04:59 2025 GMT
Subject: CN=7274DD8B94910FE986E2BCE5CE043D09E54E256D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7b:f1:d0:78:3c:e5:fb:fa:cc:b8:41:25:94:
18:9a:7e:70:f9:d2:61:db:33:17:00:90:41:77:72:
02:40:2c:cc:63:e4:88:f2:8f:83:88:45:7b:d0:b1:
5e:49:fb:27:68:cf:81:b9:ea:2a:78:b9:85:99:1d:
d8:cc:f7:c3:42:3c:e3:c8:f4:9c:d6:65:b7:7c:a4:
67:00:23:23:8e:67:82:3b:31:af:88:8a:21:f6:d0:
4a:4c:ab:2b:4a:7e:3b:29:fc:8a:66:c8:4c:90:8b:
ef:38:f0:e1:22:50:da:1c:6e:1a:27:6c:27:fa:b8:
f7:86:b6:5c:63:b0:99:2d:4c:6e:10:1f:6f:4c:7a:
07:d2:88:83:09:63:97:e1:0c:f5:a7:86:42:20:d0:
8b:39:63:e4:fa:47:66:6d:d3:b6:c7:45:f6:00:76:
52:d2:0e:67:06:6b:df:7b:04:9e:af:ed:eb:ca:a0:
4d:f4:be:15:04:ce:e7:57:63:e0:6f:a9:df:12:f3:
9b:e3:35:eb:56:78:83:af:2c:4b:a4:59:99:62:e3:
d2:09:15:f6:5c:06:30:19:51:86:1d:c0:60:23:6a:
21:e5:26:4e:f7:b4:8b:e9:01:28:e2:92:0a:41:08:
bb:ca:17:b4:14:d9:94:5a:56:13:24:1f:0d:c9:dd:
50:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:74:DD:8B:94:91:0F:E9:86:E2:BC:E5:CE:04:3D:09:E5:4E:25:6D
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138322e31302e302f32342d3234203d3e20323034313730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.10.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:dc:69:83:9e:74:7c:3d:0b:b9:63:2b:62:c6:20:fe:be:03:
c3:7c:60:4c:ec:c4:6b:cd:a8:e5:46:cf:e5:89:8c:e8:1e:54:
cc:52:e0:df:dc:db:f3:4a:06:0d:d2:3b:88:a7:4d:de:c3:98:
28:fd:29:8c:ad:bc:52:14:a1:e3:10:42:04:47:ea:a4:51:b7:
de:17:34:ec:b3:b7:90:fe:f5:19:54:c8:78:e8:74:91:b3:06:
8c:51:a6:d2:31:f5:6e:66:21:b8:e2:83:1c:88:ff:87:b4:51:
02:a8:77:10:94:9c:50:6e:21:c9:8f:6e:e2:89:b0:85:af:d0:
41:28:7c:c1:2f:69:3b:76:bf:07:f4:24:68:13:da:29:09:81:
9f:f9:9f:a0:9a:6a:81:6f:7f:6e:56:a5:ee:23:69:b5:62:7e:
34:bd:b3:8e:38:01:40:f0:ed:29:9c:dc:1d:ca:1f:31:9d:88:
cf:b8:cd:51:33:86:3b:79:25:fd:e3:e6:5b:59:08:ec:30:95:
5a:1b:00:c7:ea:c6:35:e6:8f:64:d9:be:48:6d:dc:d9:4c:3a:
17:e6:89:67:d2:c5:b6:d9:e9:dd:12:31:06:f1:96:b5:ec:c7:
18:b2:d2:18:51:4b:2a:6e:4c:1f:58:32:2e:e5:d1:93:f7:6f:
1b:a5:5d:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:45 2024 by rpki-client on console-ams.rpki-client.org