Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35332e302f32342d3234203d3e20313336373837.roa
File: 3138352e3138332e35332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: Eux7hj+Ff/8OlWjxiVRhFbOzs5y+R7x2dh0Nf+mmsbk=
Subject key identifier: CC:A5:3E:EE:42:5B:E1:AC:17:98:74:72:F1:97:9E:E1:FF:9F:44:58
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 43398D30EE17D15C7A0693CDD6096EDC3897A0FD
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35332e302f32342d3234203d3e20313336373837.roa
Signing time: Sat 15 Jun 2024 07:03:56 +0000
ROA not before: Sat 15 Jun 2024 06:58:56 +0000
ROA not after: Sat 14 Jun 2025 07:03:56 +0000
asID: 136787
IP address blocks: 185.183.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:39:8d:30:ee:17:d1:5c:7a:06:93:cd:d6:09:6e:dc:38:97:a0:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 15 06:58:56 2024 GMT
Not After : Jun 14 07:03:56 2025 GMT
Subject: CN=CCA53EEE425BE1AC17987472F1979EE1FF9F4458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:5d:4a:d6:fd:06:b1:3d:a1:80:2f:33:71:44:
34:59:2f:a5:13:de:41:b6:ce:d5:e2:50:45:81:1e:
3a:35:21:13:bb:55:29:13:09:fe:71:b2:af:c6:84:
86:97:1d:65:52:49:76:56:4c:9f:34:27:e4:3f:02:
5d:99:c5:f0:d5:9e:7f:35:8d:53:25:53:9a:9a:a5:
e6:26:8f:e4:ae:33:3c:2b:e8:a7:90:81:2f:46:32:
b7:a4:d0:23:de:b2:d3:96:1c:2d:22:96:be:41:a2:
b7:12:3c:37:b4:31:3a:6a:43:7a:42:73:74:39:7d:
93:39:a2:d6:81:85:f5:49:e6:d4:ed:c3:2b:55:ef:
45:17:cc:48:be:9e:95:c5:2b:e7:73:d3:89:26:5f:
fb:81:0e:2f:7b:03:6d:6b:f2:45:54:34:5f:74:d8:
cc:54:29:e3:e3:ca:95:61:07:f7:40:6b:cf:6d:53:
b3:4b:c0:4d:10:e1:d2:94:77:4c:9e:73:ed:b8:0a:
81:a3:b0:e5:a4:da:3e:1d:2f:c7:a1:65:de:c7:06:
03:4d:7e:17:b2:4a:19:af:88:c9:6b:92:11:45:a2:
77:ca:db:5f:ad:fc:8a:23:40:a3:e1:fa:72:b7:be:
cf:ea:74:c4:e0:2c:22:3c:2a:cb:cd:f9:8b:fa:5c:
e5:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:A5:3E:EE:42:5B:E1:AC:17:98:74:72:F1:97:9E:E1:FF:9F:44:58
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.183.53.0/24
Signature Algorithm: sha256WithRSAEncryption
85:be:cd:03:c2:8d:ef:03:56:b6:67:85:68:13:bf:23:c2:a6:
3d:e7:ed:48:8b:94:d8:6d:26:01:a6:52:78:6d:48:fa:9c:51:
09:20:6e:42:88:9e:e4:97:fc:62:66:65:16:61:0e:26:93:30:
30:02:52:7c:48:48:c2:7f:93:82:18:fd:a1:f0:06:cc:e0:de:
eb:35:3e:02:40:a6:c6:98:9d:14:a9:c6:9c:3d:39:0d:eb:28:
3d:f9:b9:36:93:c4:6c:c3:c9:33:70:8a:26:b2:98:f9:15:81:
bd:94:f7:44:87:b5:bd:2d:47:2e:4f:6c:96:aa:19:61:0e:0f:
d3:0c:66:9c:35:73:64:a3:25:a8:54:2c:71:a9:55:13:4d:70:
f8:50:95:8a:ff:0b:cd:2c:94:2e:30:c4:53:bb:00:6c:d7:b1:
8d:aa:7a:b6:f1:5b:dd:c2:c3:91:c3:ba:35:e5:32:17:00:2c:
af:c5:b5:88:9c:ce:b3:85:1c:f6:64:f6:ed:8d:35:86:7e:91:
7f:07:fa:ae:f3:c5:04:3b:92:5c:14:ee:01:67:cb:95:47:72:
5c:c9:87:21:d2:b1:66:3a:47:95:e5:07:2b:72:ed:b1:20:c1:
68:80:cc:f4:06:57:28:a6:11:a2:93:8d:57:3f:71:80:e6:43:
d6:dc:4e:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:45 2024 by rpki-client on console-ams.rpki-client.org