Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139332e36352e302f32342d3234203d3e203439393831.roa
File: 3138352e3139332e36352e302f32342d3234203d3e203439393831.roa (raw, json)
Hash identifier: svHRyxXWrdb7+p7ZDXtyasDbE0ij8XexpJ7tmpLdm+8=
Subject key identifier: 9C:70:18:07:79:08:C5:9D:E8:E3:2F:18:45:10:4F:27:72:DE:EC:D0
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 4A268E89640959960BC74C104F03314EB47D5BB0
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139332e36352e302f32342d3234203d3e203439393831.roa
Signing time: Fri 20 Sep 2024 14:05:00 +0000
ROA not before: Fri 20 Sep 2024 14:00:00 +0000
ROA not after: Fri 19 Sep 2025 14:05:00 +0000
asID: 49981
IP address blocks: 185.193.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:26:8e:89:64:09:59:96:0b:c7:4c:10:4f:03:31:4e:b4:7d:5b:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 20 14:00:00 2024 GMT
Not After : Sep 19 14:05:00 2025 GMT
Subject: CN=9C7018077908C59DE8E32F1845104F2772DEECD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ce:88:0d:86:8c:3d:bc:a7:67:12:9e:aa:2a:
5c:63:ed:dd:df:9d:d7:c7:17:16:6e:85:35:8b:e7:
c2:af:d1:93:30:c1:97:df:a8:2e:84:4e:fb:11:ca:
ff:f6:2d:f9:bf:23:d5:76:24:58:fb:65:05:39:93:
01:d6:78:75:ac:82:e1:00:0e:21:2b:9a:dc:8e:8f:
42:07:02:00:6d:5b:5c:c0:60:7f:25:61:89:56:07:
a0:65:aa:c0:2c:e2:aa:44:0d:82:e9:dd:8b:81:85:
07:95:cb:95:4d:44:e0:55:28:71:8d:01:3c:86:29:
ae:8e:34:3f:61:6e:ed:0d:10:2b:b9:78:a5:66:70:
4c:73:d3:81:a5:8d:4f:8d:dd:31:b1:6b:1f:89:54:
7f:28:cf:4c:6d:44:66:7f:e9:13:35:eb:9e:bf:91:
3d:25:e9:86:3c:6b:23:20:b5:77:bb:7d:29:f8:40:
b2:dd:f1:36:14:d7:f3:3f:46:0c:93:84:0f:60:48:
fd:d4:88:f9:93:07:0f:e6:19:dc:0f:47:ae:e6:df:
2e:29:67:ce:d4:d6:98:13:fc:e6:65:5c:27:b5:5c:
6d:1b:23:ed:b9:f6:58:4e:c6:1b:88:ca:a8:a0:e6:
22:7d:3c:db:ed:fa:3f:69:f4:36:10:5f:89:51:93:
86:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:70:18:07:79:08:C5:9D:E8:E3:2F:18:45:10:4F:27:72:DE:EC:D0
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139332e36352e302f32342d3234203d3e203439393831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.65.0/24
Signature Algorithm: sha256WithRSAEncryption
20:88:ad:00:bc:cd:41:26:04:cd:58:a1:89:1c:6e:10:ca:0f:
52:5e:6f:bf:43:b0:11:77:fd:37:20:4a:0f:0d:cf:57:88:df:
bc:ce:6a:b5:2b:6c:0b:8b:39:72:45:3b:aa:b4:6c:65:64:3f:
2d:05:1d:d0:9d:c8:40:73:56:dc:11:eb:14:52:29:5d:85:bf:
bc:20:d7:b8:01:d5:76:cc:88:f9:d0:fc:5c:4a:5c:7f:f2:56:
62:aa:4d:66:0e:f1:73:4d:3d:03:f4:f4:46:8c:03:3d:54:d4:
58:d8:35:10:e8:d7:ad:86:e3:cf:b5:b7:20:8c:6c:52:dc:11:
a7:70:7f:eb:93:e8:2d:59:5f:d9:80:de:c6:d4:39:64:1b:ee:
30:00:76:bf:2b:7f:64:fe:b8:70:aa:1a:8e:fa:5e:a1:41:0d:
a0:82:0d:44:78:88:3e:a9:e4:0a:fd:90:a8:6f:ba:12:e0:f0:
1e:67:b6:4d:69:4c:94:cc:ad:0f:89:49:22:98:7b:78:cc:44:
ba:62:e4:58:19:2e:96:1b:00:a1:ad:78:95:fe:a3:5d:cd:18:
5b:f8:eb:00:1e:33:0d:c3:4a:0e:41:a5:5e:da:93:62:c1:12:
11:2c:21:b5:bf:e4:41:ca:a5:5e:dd:68:a7:54:76:42:4f:32:
7b:7f:bf:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:25 2024 by rpki-client on console-ams.rpki-client.org