Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139302e3134302e302f32342d3332203d3e203531313637.roa
File: 3138352e3139302e3134302e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: nzoA0hVIOGmXDPR5g16fazYUzoMTJ5K2MAbKmrC+qho=
Subject key identifier: C4:69:0B:C2:C1:28:DD:B8:37:17:EA:6C:88:09:F7:E2:C4:77:B9:3E
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 47C50A892AE892FBC372DA41CEE21CFAC325A0AB
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139302e3134302e302f32342d3332203d3e203531313637.roa
Signing time: Fri 20 Oct 2023 13:41:43 +0000
ROA not before: Fri 20 Oct 2023 13:36:43 +0000
ROA not after: Fri 18 Oct 2024 13:41:43 +0000
asID: 51167
IP address blocks: 185.190.140.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:c5:0a:89:2a:e8:92:fb:c3:72:da:41:ce:e2:1c:fa:c3:25:a0:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:43 2023 GMT
Not After : Oct 18 13:41:43 2024 GMT
Subject: CN=C4690BC2C128DDB83717EA6C8809F7E2C477B93E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:75:b3:ef:3d:7b:79:34:48:59:67:0d:8d:4e:
06:35:80:53:e6:4a:9b:cb:09:20:3d:43:4c:31:79:
c2:58:25:d3:d2:c9:f6:da:01:fa:51:85:c7:29:38:
89:88:4b:00:6e:29:ca:3c:50:9d:57:b7:d6:b1:87:
8b:64:d6:d0:12:24:db:52:b6:12:0d:53:1d:60:1c:
ba:d5:ec:35:6c:5c:18:1f:cf:47:0f:d9:5a:45:25:
52:50:c3:50:0d:ce:3e:8d:c1:ec:5f:36:b1:42:e3:
8a:3b:54:77:45:7a:7a:7e:6a:5b:93:d4:56:50:d2:
13:80:ad:4e:9b:d1:38:19:e5:f3:82:f0:47:a6:5f:
79:29:dc:8f:e5:bc:d5:94:79:ae:48:1e:50:50:b0:
c9:75:c7:32:ad:c8:23:a0:4c:01:31:06:24:3d:67:
15:e8:72:91:36:33:28:fb:60:48:76:95:1f:8d:f2:
4c:1f:56:f7:0d:07:30:c1:0e:67:fc:0b:51:fb:22:
b0:a9:46:6b:f3:d9:38:49:25:82:35:a5:9f:39:3e:
50:17:8e:6d:fc:93:03:c6:93:3e:ac:19:b2:39:7c:
40:cb:08:83:42:0f:d4:4e:7e:df:de:08:a7:5a:04:
92:ac:8b:37:89:5d:ad:de:ae:8b:7e:3b:f3:0c:d5:
6c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:69:0B:C2:C1:28:DD:B8:37:17:EA:6C:88:09:F7:E2:C4:77:B9:3E
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139302e3134302e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.140.0/24
Signature Algorithm: sha256WithRSAEncryption
09:73:39:27:01:ac:53:5b:93:25:1e:19:ae:f4:e3:d2:43:22:
89:fc:ef:b1:6d:8a:f9:74:49:13:f5:58:8b:5b:69:5c:ca:53:
58:fb:87:a3:95:72:dc:af:90:2b:d2:21:de:ff:ed:dc:79:45:
9c:82:f2:94:a8:4c:28:ac:01:bd:f2:b3:7f:74:29:95:1a:4f:
2b:25:c7:ff:98:ad:f1:af:a3:3f:1b:2b:6a:ee:40:7f:43:1c:
2b:32:3c:29:00:69:12:3c:4b:08:1d:4f:05:12:45:64:90:7c:
86:dc:e0:79:ec:67:40:99:c4:3b:e5:63:35:d7:8f:37:02:a6:
74:3f:99:3b:47:c0:82:08:77:cb:e9:45:58:dc:c4:27:86:da:
1c:81:41:fb:71:02:92:c7:fe:1f:ad:fe:33:64:10:62:e9:62:
69:9f:dd:10:41:68:1d:26:ec:4f:53:72:71:08:76:8e:dc:c0:
3c:46:d9:24:c7:c0:4c:7d:a8:aa:9d:af:d3:e0:44:4e:3a:d6:
2a:5c:de:60:a1:93:d5:5a:8d:bc:35:af:0c:8a:24:d9:ff:67:
27:12:e2:fc:78:a0:f3:5a:44:c1:42:3a:57:87:0e:45:4c:a2:
7a:e2:cf:1f:55:04:75:d2:93:de:32:1a:49:36:a5:46:cc:32:
6c:e9:6f:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 09:23:49 2024 by rpki-client on console-ams.rpki-client.org