Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3233342e302f32342d3234203d3e2033333536.roa
File: 3138352e3138372e3233342e302f32342d3234203d3e2033333536.roa (raw, json)
Hash identifier: UChUyI7X2ZT4TIwuaapnANY+4qS2ZAslPMNEY9oPCgU=
Subject key identifier: 76:0B:A9:54:0F:13:BC:A9:A2:4A:7B:7A:2E:34:51:F8:D4:FB:47:AD
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 14AA0AAD8EB1A50D0E0182D9AA87E4F22C2FF94B
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3233342e302f32342d3234203d3e2033333536.roa
Signing time: Fri 20 Sep 2024 14:04:53 +0000
ROA not before: Fri 20 Sep 2024 13:59:53 +0000
ROA not after: Fri 19 Sep 2025 14:04:53 +0000
asID: 3356
IP address blocks: 185.187.234.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 13:54:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:aa:0a:ad:8e:b1:a5:0d:0e:01:82:d9:aa:87:e4:f2:2c:2f:f9:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 20 13:59:53 2024 GMT
Not After : Sep 19 14:04:53 2025 GMT
Subject: CN=760BA9540F13BCA9A24A7B7A2E3451F8D4FB47AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d6:8c:85:54:80:47:ad:6e:53:4e:c3:1d:0b:
62:77:cd:90:84:e6:45:1f:86:f7:03:45:fa:66:7c:
fd:cb:05:6d:47:97:ba:ab:48:27:87:e5:b0:da:0e:
dc:b4:a6:35:d8:76:42:1e:db:70:32:03:96:0d:63:
1c:63:d8:0c:7c:0d:82:7e:ee:de:08:14:95:a5:32:
39:52:65:7f:92:fc:3d:3b:aa:32:a3:9a:ad:75:a8:
fb:c1:aa:26:94:9d:e7:63:5f:67:bd:80:68:ad:9c:
3f:46:3d:11:cd:6e:f1:f3:87:c4:b4:48:cf:b1:25:
50:37:cb:07:f7:ef:4e:34:7e:cb:80:6f:11:da:f2:
d3:58:ce:14:07:e6:5b:29:94:5b:f5:a0:81:8c:c6:
ed:cf:02:d1:92:7f:03:d5:bb:7c:01:b0:5f:78:46:
57:31:51:88:a4:d2:7c:e2:17:cc:fb:ef:ac:66:f6:
e9:c5:30:02:c2:e0:c2:f0:89:0e:b7:d1:2c:90:b2:
0e:6d:27:24:46:51:c7:45:0d:86:96:b5:ad:8a:ce:
73:3b:39:08:9b:9b:eb:44:cb:77:ce:21:80:19:dd:
3c:e5:0c:06:f4:dd:75:10:32:06:ca:ba:c1:81:1c:
e9:c7:8e:10:6b:d6:b8:0c:7f:14:5a:a9:aa:02:0a:
b7:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:0B:A9:54:0F:13:BC:A9:A2:4A:7B:7A:2E:34:51:F8:D4:FB:47:AD
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3233342e302f32342d3234203d3e2033333536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.234.0/24
Signature Algorithm: sha256WithRSAEncryption
92:06:55:1d:c2:ed:70:f1:55:a5:ee:77:05:c4:4a:5a:4b:0d:
68:ca:ae:c0:71:cc:3a:5f:f8:1e:b0:38:ee:61:92:25:8f:2e:
55:f0:81:61:9c:f2:90:d0:ed:e9:7e:71:21:8c:be:26:ac:45:
23:bc:c7:d8:d9:c2:41:6b:8c:bc:9a:1c:59:67:26:d4:20:c7:
77:0c:e3:e8:74:c6:f2:42:7d:db:a7:e8:a7:ba:dc:8f:8e:65:
dd:41:84:d4:65:6e:19:19:80:69:d0:59:ad:41:bf:6f:dc:af:
85:2b:f0:15:a0:d9:d9:28:90:11:a1:13:fe:12:68:65:6c:0f:
a4:e0:eb:61:41:e4:ba:3f:3b:45:e3:fe:b8:e1:fa:96:71:b3:
f1:5c:95:d5:9f:2c:c1:99:f8:56:02:95:f4:01:02:3e:c3:2e:
26:d3:e9:47:52:5a:1c:41:b5:67:3b:6b:89:56:77:71:c5:2b:
06:9d:fc:cb:b9:ce:61:6d:c9:0f:19:20:62:4e:9b:6e:71:6a:
e3:6f:bb:69:a2:d3:a7:45:f3:dc:bc:96:49:fb:d9:a0:c7:86:
20:fb:45:80:6f:ea:4f:48:a1:d5:0d:bf:d5:13:16:78:13:55:
ab:b2:72:ad:bd:b1:11:07:20:ae:91:92:53:d6:58:ab:37:3c:
0f:e1:fc:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 04:33:34 2025 by rpki-client