Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35332e302f32342d3234203d3e20313336373837.roa
File: 3138352e3138332e35332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: ltd3hQVX3VBfgjdziisMQ+LWTORIJRKibA+HWlN1UAc=
Subject key identifier: 53:8A:63:BA:4F:5A:AD:E4:51:A7:17:87:A4:7C:16:EE:97:34:1A:7C
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 4B00F645F7EFCDE80C8AAD00EA02CF4447CEAE1E
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35332e302f32342d3234203d3e20313336373837.roa
Signing time: Sat 15 Jul 2023 06:27:26 +0000
ROA not before: Sat 15 Jul 2023 06:22:26 +0000
ROA not after: Sat 13 Jul 2024 06:27:26 +0000
asID: 136787
IP address blocks: 185.183.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:00:f6:45:f7:ef:cd:e8:0c:8a:ad:00:ea:02:cf:44:47:ce:ae:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jul 15 06:22:26 2023 GMT
Not After : Jul 13 06:27:26 2024 GMT
Subject: CN=538A63BA4F5AADE451A71787A47C16EE97341A7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:62:54:35:40:eb:ec:61:b5:10:4c:bc:10:10:
eb:aa:8f:12:a8:4f:83:c4:7a:27:e7:8a:5e:b4:4e:
48:f1:20:7e:6e:0b:32:66:af:c8:cb:60:17:51:35:
66:8e:46:7e:6f:e5:f2:ad:03:d2:1f:9a:ef:d2:a3:
78:ce:a0:54:81:4e:5a:63:11:59:08:e9:14:1e:59:
6f:e3:db:fe:6f:af:88:be:91:2d:56:fe:d1:78:2b:
c7:fb:70:54:b4:ea:d5:b7:41:1e:d2:9f:c8:c2:61:
c5:72:b6:cd:e6:f4:54:0a:2d:20:bb:78:64:ea:4f:
87:d3:0f:80:36:86:1a:68:d1:a9:e1:81:4c:09:1a:
19:6a:75:0c:cc:78:f4:83:b1:9e:1e:06:f9:14:c1:
0a:73:b5:9d:df:b7:f5:a6:f8:e4:79:0f:77:c2:b0:
fb:59:a8:46:63:23:76:e9:f5:9f:16:d8:39:e7:00:
1d:40:6d:83:45:94:53:f4:c1:19:76:3f:2f:56:7b:
5e:0d:7c:39:c1:07:dd:82:c9:cc:79:f1:19:cf:59:
16:bd:35:24:6e:a3:bf:eb:b7:6f:22:c7:73:ea:29:
fd:4e:35:32:43:5d:06:d8:dd:24:d4:51:7f:de:2a:
82:61:78:76:9a:1c:84:2a:dd:fa:00:c3:ba:55:45:
76:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:8A:63:BA:4F:5A:AD:E4:51:A7:17:87:A4:7C:16:EE:97:34:1A:7C
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.183.53.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:a4:e9:0c:5c:26:9a:7d:9d:6b:00:6f:e9:98:ac:6a:85:a8:
58:b3:50:6f:e8:ac:0a:b5:e8:32:3f:82:ba:c1:67:9a:3e:f6:
04:c1:be:87:74:58:6b:76:c6:82:8c:ad:00:c1:09:97:d9:1f:
ba:89:0a:7f:6c:ce:43:0d:5e:77:f6:6f:d6:c5:de:f2:56:b6:
95:ce:aa:5c:8a:fe:c2:c1:47:d2:94:de:18:c3:36:d4:3e:ef:
7f:40:e2:9f:3d:92:6c:39:95:55:80:2d:64:7f:3d:e7:ee:58:
65:80:bb:5e:07:30:09:f6:06:e0:8b:75:52:23:fa:83:a6:d8:
62:f7:8b:36:4f:bb:c2:0c:1f:27:a9:bb:4c:53:51:ed:d3:de:
0b:b6:c5:0b:f9:c8:f9:ce:6c:fb:7e:bf:6c:db:2c:ae:33:21:
d2:f6:59:24:34:79:0f:59:7c:7d:23:7e:cd:2e:10:4a:db:f8:
bb:f2:22:f3:77:e0:77:5e:ee:9b:2e:97:c8:d9:a0:3d:4c:fd:
89:37:a5:01:de:f1:a1:c7:b0:93:87:d3:3a:8e:a7:5a:1c:0b:
2f:e8:27:95:a1:7b:09:d8:eb:c2:de:31:0f:c4:3c:e8:4b:a3:
07:c6:31:bb:41:07:b3:a9:77:2e:12:d9:0d:b6:14:3a:62:b2:
de:7b:82:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 21:49:15 2024 by rpki-client on console-ams.rpki-client.org