Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3234302e302f32332d3234203d3e203437353833.roa
File: 3138352e3138372e3234302e302f32332d3234203d3e203437353833.roa (raw, json)
Hash identifier: xITAmXe+qd9O4x1Zr+pahH835xFVTqWkKt19Su9mZvE=
Subject key identifier: 5B:DB:31:58:BD:39:3E:34:60:C0:3C:CA:A6:0B:25:45:58:71:B0:09
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6E3667178A0AD3A85915BEAC853E280F07B14289
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3234302e302f32332d3234203d3e203437353833.roa
Signing time: Fri 20 Oct 2023 13:41:56 +0000
ROA not before: Fri 20 Oct 2023 13:36:56 +0000
ROA not after: Fri 18 Oct 2024 13:41:56 +0000
asID: 47583
IP address blocks: 185.187.240.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:36:67:17:8a:0a:d3:a8:59:15:be:ac:85:3e:28:0f:07:b1:42:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:56 2023 GMT
Not After : Oct 18 13:41:56 2024 GMT
Subject: CN=5BDB3158BD393E3460C03CCAA60B25455871B009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:78:35:80:ce:a8:74:a6:54:16:7b:f3:b0:0c:
fb:80:84:45:fc:14:47:9c:f5:46:f2:97:91:95:c4:
c5:7a:82:22:67:bd:8d:91:9c:08:4d:06:9b:a9:4b:
f2:7f:da:88:a7:4e:03:d7:32:8c:a2:d1:f3:7a:84:
94:4f:b3:3f:fd:9c:88:f5:86:ff:71:4f:1c:e6:6a:
ef:16:d3:14:41:49:6c:ae:db:2e:c7:8a:2e:a2:a2:
6b:33:ac:54:cf:92:73:ba:95:e9:8c:2d:82:21:2e:
fb:75:a7:35:22:bf:5f:0b:32:db:e6:6f:9b:55:a9:
59:19:2d:9a:b1:f6:c8:c0:e5:41:9f:7d:07:9d:c4:
20:33:7b:62:4b:02:88:44:8c:72:cf:3e:a9:74:64:
df:9a:0f:fd:0f:82:5a:af:f7:cf:8d:52:47:2f:b7:
3c:26:9c:a9:a1:d3:96:e5:65:c2:4a:18:9d:c5:0d:
9c:16:bb:34:f1:08:e9:e2:31:35:01:f3:98:68:9d:
38:13:95:9b:c4:11:62:d6:93:03:60:58:1f:d5:eb:
20:23:98:05:dc:b8:74:11:84:e9:dc:98:54:76:da:
9f:25:98:52:2d:a1:50:eb:c3:a4:46:51:26:5a:4c:
8f:d9:5f:10:c5:83:93:fe:b8:b0:01:73:8f:19:78:
f8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:DB:31:58:BD:39:3E:34:60:C0:3C:CA:A6:0B:25:45:58:71:B0:09
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3234302e302f32332d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.240.0/23
Signature Algorithm: sha256WithRSAEncryption
96:06:5e:93:a4:b6:10:55:97:df:3a:e9:df:62:af:95:5e:a3:
ea:89:fd:a1:f2:71:0b:c4:6c:da:8f:ca:12:99:0e:37:f7:b3:
da:5f:44:50:56:a6:0d:08:01:91:ee:28:ea:8e:06:86:75:21:
35:cb:5f:0d:7e:1b:d2:17:94:3e:1c:71:ab:3a:fc:01:e2:6b:
44:5d:df:02:92:53:66:71:88:13:d0:53:28:04:b5:37:4c:a2:
af:ef:d3:88:68:e9:19:3e:35:4e:df:15:53:64:8f:60:af:83:
f1:50:31:09:5e:a6:5a:1c:15:cf:f3:20:0e:f1:44:6e:73:94:
66:9c:a4:9b:df:52:92:1e:08:2b:a8:27:27:dd:85:1c:a4:20:
4d:a2:6d:ea:09:0d:1d:72:65:39:a3:86:cc:b6:70:c7:52:93:
f5:21:9f:cf:f1:df:ad:d5:59:26:17:38:da:23:c6:04:27:58:
1c:5b:11:51:97:d9:a5:b6:80:f9:c1:9f:13:de:0c:d6:b5:17:
50:db:3d:4e:30:39:d1:76:3c:14:14:eb:f1:c6:31:7a:8b:ef:
29:05:47:ac:ac:1a:46:ab:e0:61:38:11:4f:f0:26:39:c5:6f:
4e:8f:91:fa:bc:39:0a:fa:8f:2f:1b:f6:ac:ab:9f:78:df:87:
cd:1f:a4:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 09:23:49 2024 by rpki-client on console-ams.rpki-client.org