Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e38372e302f32342d3234203d3e20313336373837.roa
File: 3138352e3138332e38372e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: AzIDHmEhmnqQWYqqkk0D/f4nLR9WENbR60L3HCoXDIg=
Subject key identifier: C2:06:7A:2E:30:03:BF:51:6F:1B:DE:C1:AF:E8:11:77:D9:72:0F:BB
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 060F124AF22CC065526C46D0FF28EB6E419E6291
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e38372e302f32342d3234203d3e20313336373837.roa
Signing time: Sun 11 Jun 2023 11:00:43 +0000
ROA not before: Sun 11 Jun 2023 10:55:43 +0000
ROA not after: Sun 09 Jun 2024 11:00:43 +0000
asID: 136787
IP address blocks: 185.183.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:0f:12:4a:f2:2c:c0:65:52:6c:46:d0:ff:28:eb:6e:41:9e:62:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 11 10:55:43 2023 GMT
Not After : Jun 9 11:00:43 2024 GMT
Subject: CN=C2067A2E3003BF516F1BDEC1AFE81177D9720FBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:11:60:83:e7:13:4e:46:3b:52:2c:10:64:ce:
53:73:21:22:31:ea:7b:a3:f9:dc:0c:b7:6d:ff:a2:
a0:00:5b:ea:90:2b:37:06:c6:0e:f9:5d:88:b7:dd:
9e:e9:2d:c1:e2:44:10:9e:2f:95:0e:5d:fc:75:5a:
b3:05:5b:d8:59:ed:76:d6:0f:65:91:24:57:80:e0:
96:73:50:e3:46:20:28:35:81:6e:26:95:3d:83:55:
fb:a9:b6:b5:c5:7d:1d:dd:23:be:ef:91:d8:27:72:
38:00:68:de:e0:b1:7a:90:a7:c7:ce:d0:f8:47:7d:
62:86:35:33:00:95:84:03:74:f5:f1:da:1e:12:1e:
4b:71:7d:5f:00:84:9a:bd:4c:52:e2:5b:1a:15:2e:
9a:4f:ce:00:c6:4c:ac:fd:96:d3:41:f2:5c:2e:e4:
1b:fb:8a:e6:72:c9:0c:11:3a:4a:5d:f3:c8:a1:1d:
aa:df:7c:6f:51:cf:d3:62:a6:40:fe:a5:b2:62:0e:
e8:ae:0a:5e:85:70:69:df:d6:64:b4:fa:78:d6:1c:
5c:3b:82:04:53:33:94:d4:60:83:7a:c1:50:49:65:
ea:c6:6f:f8:a1:e9:1d:2f:d4:5c:71:92:65:e9:a1:
6a:4d:8a:cd:ab:26:7f:67:e3:c2:0b:68:84:4d:10:
e5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:06:7A:2E:30:03:BF:51:6F:1B:DE:C1:AF:E8:11:77:D9:72:0F:BB
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e38372e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.183.87.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:ca:8b:b4:ac:75:be:d3:92:2b:a1:72:df:ce:c4:9e:93:27:
e9:d5:a6:af:5d:04:c4:6f:fe:d0:6d:c8:de:89:65:c6:ad:4b:
d6:97:36:e4:33:97:64:70:91:b5:db:c0:29:49:03:fd:ed:6b:
b8:ad:f0:d0:a0:f6:34:36:49:d9:ad:6a:f7:43:3e:d8:fd:f4:
07:56:dd:2f:65:01:dd:5e:18:78:d2:ee:4c:89:c8:b0:21:51:
ae:14:a0:d0:76:70:91:95:59:da:02:6d:88:df:52:66:b1:40:
db:8e:c6:20:71:8e:0b:fa:aa:e1:d3:6e:13:dc:0c:53:2f:c8:
6c:03:83:fe:54:3c:22:a9:d5:c2:12:78:2f:e6:dc:a0:e0:7c:
56:cc:0e:1e:f6:6b:77:9e:4b:7e:10:b8:93:6a:9d:05:51:8a:
87:d5:7a:dd:d0:58:ce:e4:4c:81:83:96:09:a1:bf:02:b9:88:
a2:9b:9e:78:da:f2:35:30:85:4a:95:07:8e:c4:77:c5:e7:e6:
b9:e9:01:89:0c:4c:06:92:9b:cb:dd:d8:2a:56:6a:bb:71:de:
36:23:59:c5:cf:46:55:10:21:d5:b9:26:77:61:0e:de:19:a3:
ce:32:9b:e9:7e:b6:a2:c6:21:c7:96:96:fa:17:6b:b1:ff:df:
e4:d0:5e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 21:04:27 2024 by rpki-client on console-fra.rpki-client.org