Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35322e302f32342d3234203d3e20313336373837.roa
File: 3138352e3138332e35322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: fwTRCRWDuiIOn/MoLedNRVjaVo12tdeXTK3OfYAtuy8=
Subject key identifier: B5:08:9B:19:D0:9C:61:7A:24:31:B1:5B:F4:9B:6B:88:66:53:36:8B
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 5D0C0E31B49DB68CB14B14E2139555DA14A3E5FB
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35322e302f32342d3234203d3e20313336373837.roa
Signing time: Sat 15 Jun 2024 07:03:56 +0000
ROA not before: Sat 15 Jun 2024 06:58:56 +0000
ROA not after: Sat 14 Jun 2025 07:03:56 +0000
asID: 136787
IP address blocks: 185.183.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:0c:0e:31:b4:9d:b6:8c:b1:4b:14:e2:13:95:55:da:14:a3:e5:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 15 06:58:56 2024 GMT
Not After : Jun 14 07:03:56 2025 GMT
Subject: CN=B5089B19D09C617A2431B15BF49B6B886653368B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:23:b2:9f:62:45:da:25:ad:bb:00:fe:9a:50:
a7:5c:42:c2:e7:cc:86:2b:b7:5e:0a:00:d3:65:5e:
59:b9:fb:e2:56:42:f6:71:d0:95:de:df:0d:ee:81:
7f:9e:69:f9:46:30:a0:fe:56:e1:9c:cc:f4:63:af:
e0:1b:96:64:30:89:ad:f5:6d:fa:2e:c7:2f:36:78:
6f:19:e2:ea:d5:61:4c:15:74:2f:0c:ab:31:86:76:
ce:13:a2:01:64:1c:af:31:be:56:96:0a:59:f4:3d:
a5:e8:5f:86:92:06:fe:c0:c5:e0:7f:f9:ad:8f:d4:
0e:0c:a3:4a:eb:4b:f5:d1:94:66:9d:35:1f:b6:c0:
10:e3:4f:50:db:9f:ac:5c:63:cb:20:98:9b:0e:e6:
d9:77:fe:26:4e:e2:d9:ff:44:d9:19:3a:a1:d8:c9:
b8:78:b3:ac:f2:97:91:ec:fa:27:88:3b:ad:10:57:
ab:ef:9e:54:f1:8f:50:ab:8d:5f:71:ba:1d:1e:c5:
17:77:32:87:3b:48:b3:b2:3d:0a:80:13:74:85:d8:
e9:d2:77:74:30:34:1a:4a:91:6d:30:2c:b1:ad:85:
5c:6e:51:d7:0a:90:c9:6f:43:9d:d1:21:3c:fc:96:
63:1a:4f:f1:a1:1a:35:f2:a3:5b:2a:0d:41:e3:df:
78:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:08:9B:19:D0:9C:61:7A:24:31:B1:5B:F4:9B:6B:88:66:53:36:8B
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.183.52.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:dc:df:b7:83:b5:cb:0b:a5:98:07:72:8a:88:20:8f:0c:63:
04:43:31:b3:f9:c9:32:18:29:71:0e:d6:cf:db:73:43:47:aa:
a4:97:ae:ef:f7:e3:c4:37:8d:b6:b7:7f:24:1f:32:81:74:d6:
ef:13:c1:2f:37:ee:13:1f:d1:0e:3f:69:a2:06:1c:72:e4:cf:
a2:e1:8e:d9:ad:ce:9a:66:ca:7f:b7:2e:36:8b:5c:57:a6:6a:
a5:95:97:c2:33:bd:22:ed:42:85:5f:25:a6:ac:e7:f5:9f:af:
2e:41:98:fe:2f:ed:fe:64:ae:55:2c:ba:41:e4:dd:30:d3:48:
eb:a6:d1:af:a2:5d:9a:7f:e3:12:0c:22:54:16:57:04:8e:4a:
43:80:62:1c:40:83:62:21:9c:92:05:56:43:98:74:a7:f4:1a:
87:32:79:29:bf:a7:82:65:0c:52:fd:94:4b:b8:59:91:8f:67:
10:f1:14:49:91:fc:f8:c1:e2:9c:11:5b:84:3f:ae:3d:8d:57:
3c:e0:ce:54:53:6c:1e:10:76:55:03:ee:4b:89:cb:08:10:b3:
27:a4:4b:86:be:6f:04:d9:de:4c:be:da:3b:d9:3e:54:18:57:
e7:00:4e:06:59:ec:f6:5d:0e:97:b7:f0:00:fa:c2:68:05:03:
48:c7:ee:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:45 2024 by rpki-client on console-ams.rpki-client.org