Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3136392e302f32342d3332203d3e203531313637.roa
File: 3138352e3138372e3136392e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: mjZd03s6y0C3A34e+lT/NfLalvLFcldZ8m06kbiSj8A=
Subject key identifier: 0F:BC:16:57:45:48:67:68:1F:E7:BD:76:31:64:15:2F:64:13:0C:87
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 056799113ED7DACF84225A4BF27124829500CB75
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3136392e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:53:21 +0000
ROA not before: Mon 26 Feb 2024 08:48:21 +0000
ROA not after: Mon 24 Feb 2025 08:53:21 +0000
asID: 51167
IP address blocks: 185.187.169.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:67:99:11:3e:d7:da:cf:84:22:5a:4b:f2:71:24:82:95:00:cb:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 26 08:48:21 2024 GMT
Not After : Feb 24 08:53:21 2025 GMT
Subject: CN=0FBC1657454867681FE7BD763164152F64130C87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:25:39:63:e1:0c:c4:fa:e8:ea:71:d2:e3:8e:
1b:f5:ce:f9:2c:92:04:41:2d:f7:a8:d7:a2:57:40:
f1:ea:38:cd:cc:66:8f:a2:fe:60:ee:d3:78:fc:bc:
69:13:d9:6e:ec:05:f1:c0:25:c2:57:f3:5e:86:22:
9b:93:dc:62:37:69:69:ac:3e:88:3c:7d:95:e6:cf:
69:d3:08:9c:3c:ca:7a:2a:de:b8:ef:ba:33:51:01:
11:24:7c:4f:cf:b6:b2:45:76:ca:29:b3:11:87:38:
84:d3:2c:02:d5:f0:73:5f:ec:ae:c3:24:64:b8:d2:
a5:75:b7:d6:ce:77:3e:d1:15:30:d2:33:71:ce:50:
b8:a0:ac:f0:a6:35:ad:f7:c6:12:e9:40:f6:45:10:
d9:b8:b9:2c:c2:d9:b3:6a:56:9c:6a:4c:a8:ac:f3:
49:16:b0:ec:a1:de:0e:c6:9c:7c:b0:f3:f2:88:c0:
70:13:0b:bf:8c:b2:53:b2:ad:70:d6:ee:c7:9d:9c:
06:b9:93:fb:49:ca:07:11:68:8f:7b:ac:e6:d5:a5:
1b:33:c1:2b:90:6b:3c:05:7b:8f:4d:8d:18:02:38:
cc:30:2b:c5:b8:dd:0b:c3:fa:e3:c9:8e:87:46:5b:
09:13:45:59:51:55:d6:e2:18:d7:7c:7c:82:3c:78:
2b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:BC:16:57:45:48:67:68:1F:E7:BD:76:31:64:15:2F:64:13:0C:87
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3136392e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.169.0/24
Signature Algorithm: sha256WithRSAEncryption
09:36:ec:95:ed:1f:24:1e:19:73:28:ae:b4:c9:19:1d:5f:ed:
b4:29:db:a1:02:68:43:42:d5:b0:57:3e:e5:05:19:cc:99:e1:
60:76:fc:76:27:af:2c:cb:3c:5e:b9:01:4a:c1:c1:8e:80:a6:
6e:fb:66:8d:ff:2b:e1:86:06:34:ac:a3:d4:72:a2:22:d2:ec:
7d:92:38:b7:12:15:ef:f2:5f:e6:26:e7:92:19:c9:e0:f7:a6:
21:87:4c:4a:64:a8:f9:48:30:30:ed:51:4b:18:50:e1:50:8e:
74:bb:3a:bb:bf:42:e7:df:54:d3:8a:fb:90:a5:44:eb:98:f2:
07:e5:8f:86:cd:a0:af:ea:31:67:50:be:21:25:72:a3:52:9d:
96:81:34:68:ba:ea:3b:d2:c0:c4:7b:c4:20:ee:ff:3a:b9:47:
1f:4e:30:3b:64:cf:27:2f:72:64:ff:2d:91:a0:fc:df:3d:7f:
81:2a:6a:d9:b2:ae:e6:30:79:2c:f3:e1:70:7d:25:c8:7e:5b:
e5:27:e0:a1:43:74:d8:75:d5:1d:3e:3e:a6:7e:11:5a:25:6d:
3f:a7:36:b6:b8:f4:24:b4:b5:f2:b7:19:8c:2d:73:e2:37:fd:
2c:a1:5e:9c:fc:e5:06:bc:ad:06:5c:43:a5:27:ef:6c:1b:29:
30:05:cf:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 08:01:44 2024 by rpki-client on console-fra.rpki-client.org