Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139332e36352e302f32342d3234203d3e203439393831.roa
File: 3138352e3139332e36352e302f32342d3234203d3e203439393831.roa (raw, json)
Hash identifier: poWnElNE9zrFMrhiBpYNY0JHYxitfnkInHhkq13OtsU=
Subject key identifier: C6:36:97:DD:AC:F6:A1:B1:EB:DE:D6:AD:5B:A1:B1:FB:D0:89:CD:66
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 083857701347DCF09BA9C182A9EA6BE4A9C11C72
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139332e36352e302f32342d3234203d3e203439393831.roa
Signing time: Fri 20 Oct 2023 13:41:49 +0000
ROA not before: Fri 20 Oct 2023 13:36:49 +0000
ROA not after: Fri 18 Oct 2024 13:41:49 +0000
asID: 49981
IP address blocks: 185.193.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:38:57:70:13:47:dc:f0:9b:a9:c1:82:a9:ea:6b:e4:a9:c1:1c:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:49 2023 GMT
Not After : Oct 18 13:41:49 2024 GMT
Subject: CN=C63697DDACF6A1B1EBDED6AD5BA1B1FBD089CD66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:69:60:4b:ef:0f:49:84:88:29:71:ea:d8:6f:
16:0d:15:9f:ec:af:df:8a:da:ad:1c:f7:48:d4:7a:
29:db:f6:07:27:8e:ca:fe:7d:ee:bb:25:6d:12:77:
ec:13:c4:18:b7:26:08:b9:23:c8:47:91:8a:e3:99:
41:e0:fb:42:99:76:3e:db:ba:f6:f5:18:ba:3a:08:
b6:9c:64:6f:90:78:8d:b7:e6:c4:fd:84:14:5e:49:
50:65:f6:4d:70:c1:96:15:ab:58:b4:56:04:a5:ce:
a3:3a:43:47:f8:f4:0f:30:42:4b:8a:85:6c:3b:2c:
79:ef:61:45:fd:83:e5:29:59:5e:ff:46:26:90:2c:
4f:c3:a4:8e:e5:20:d9:6b:2d:5b:3d:f2:46:34:ee:
8c:b5:58:10:d1:89:95:e7:69:08:8d:38:0d:71:ae:
59:7f:c3:50:ea:3b:fc:0b:c7:34:81:fa:a7:a2:b1:
0a:35:c3:b2:87:dd:e8:42:fc:92:d6:e1:c7:61:a3:
dc:5f:3c:96:2f:62:ff:39:f2:ec:3e:1b:c4:36:a4:
97:9b:2e:5c:fe:35:30:f0:53:6a:0c:2b:65:a5:ea:
b3:c0:9c:77:d2:1d:3d:90:71:70:ec:6a:b5:73:63:
16:7a:bc:5f:16:9c:35:25:b2:81:08:ac:ea:cb:72:
04:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:36:97:DD:AC:F6:A1:B1:EB:DE:D6:AD:5B:A1:B1:FB:D0:89:CD:66
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139332e36352e302f32342d3234203d3e203439393831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.65.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:5b:09:bb:e4:83:1f:11:59:16:a8:8d:c6:55:b9:69:42:33:
92:1e:30:72:e8:98:47:e3:06:59:b6:09:1a:74:6f:39:33:8e:
5b:0c:35:ac:b2:69:7a:fa:40:37:43:7e:2d:01:78:f1:81:6a:
ef:16:39:36:77:46:34:68:a8:9c:e3:ce:fa:3b:87:a4:1f:18:
9d:a5:6a:47:4e:84:a3:f6:86:cb:19:f2:5c:bc:06:42:49:00:
ad:f2:7a:d7:59:3e:d1:7c:de:67:0b:9b:55:83:34:4c:25:d0:
9a:e6:a0:29:d3:66:5b:2a:71:84:72:a7:a0:bd:c2:55:e6:16:
fc:71:68:81:91:bd:63:11:82:16:72:ad:8b:98:da:ab:10:5d:
97:17:ec:7f:a0:54:8a:ae:35:99:93:97:ff:0a:e6:57:54:9a:
8a:e0:3e:47:54:26:ce:84:8a:e3:b7:6a:f9:6a:4b:1e:0c:d4:
86:4a:68:46:e1:0c:3e:48:93:10:70:ef:e5:85:5d:0e:e1:ac:
e4:9d:0f:bc:b5:8f:8b:36:9a:2b:ba:5c:53:34:4c:5e:84:6e:
00:fb:7a:55:a7:a4:4f:5e:01:67:77:f0:1d:0c:b6:6b:ea:d2:
0b:f8:d6:47:2b:8a:14:11:3b:0e:ff:93:04:0f:89:f3:42:2b:
4c:b8:93:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 03:51:30 2024 by rpki-client on console-ams.rpki-client.org