Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139332e36352e302f32342d3234203d3e203630353438.roa
File: 3138352e3139332e36352e302f32342d3234203d3e203630353438.roa (raw, json)
Hash identifier: 9BprRG/qcn+aV0hBFYAu4vyXBePvpTFeUkaNvqky/sY=
Subject key identifier: 37:9D:7F:4A:39:7D:86:89:E1:32:26:53:2F:5C:CD:D5:3D:D7:4A:0B
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 77C701877653EDE17F2BB9044275C77AF49F569A
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139332e36352e302f32342d3234203d3e203630353438.roa
Signing time: Fri 20 Oct 2023 13:41:52 +0000
ROA not before: Fri 20 Oct 2023 13:36:52 +0000
ROA not after: Fri 18 Oct 2024 13:41:52 +0000
asID: 60548
IP address blocks: 185.193.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:c7:01:87:76:53:ed:e1:7f:2b:b9:04:42:75:c7:7a:f4:9f:56:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:52 2023 GMT
Not After : Oct 18 13:41:52 2024 GMT
Subject: CN=379D7F4A397D8689E13226532F5CCDD53DD74A0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3f:9b:fe:92:2c:6f:fa:fe:13:7e:01:28:86:
d2:93:ae:95:86:8c:72:fa:72:80:4c:73:a7:ba:bb:
fc:25:bf:aa:f5:7b:df:14:07:0f:ee:5d:95:69:69:
c9:c6:77:58:e5:25:28:34:cf:4a:da:1b:41:07:12:
11:c3:dc:4c:0a:e3:a9:18:92:07:9d:88:d3:8b:fc:
31:9c:b3:35:b1:55:8c:5b:e6:9d:b3:7b:06:d2:70:
43:b1:8a:08:d8:40:cc:4c:57:59:82:d8:c4:7d:54:
87:f5:de:7b:10:4b:d3:18:87:01:e4:54:8d:79:1c:
55:5f:c0:d4:e8:d5:6f:f3:25:ea:31:62:dd:9d:d1:
d0:0e:06:b7:ec:13:38:10:b9:aa:56:67:5f:58:93:
2d:ba:f1:ed:16:d4:2f:8a:22:f9:3a:4e:04:84:f9:
a3:72:9e:d2:20:d2:61:5c:37:d0:5b:99:28:de:d8:
ce:d8:d0:fc:01:3b:a8:f9:f7:68:f9:0d:5c:98:d1:
ac:55:65:57:f4:80:9d:d3:00:89:26:66:3e:d0:ec:
bb:31:42:84:ba:24:da:0d:8e:da:ac:ab:e7:09:e5:
95:a2:32:a8:cb:de:e4:e3:fa:67:c3:36:55:8c:69:
21:76:a0:77:a3:59:ba:4e:ca:ef:41:c7:19:f1:df:
e2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:9D:7F:4A:39:7D:86:89:E1:32:26:53:2F:5C:CD:D5:3D:D7:4A:0B
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139332e36352e302f32342d3234203d3e203630353438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.65.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:26:80:e6:58:55:5d:63:d5:5e:fc:48:7d:67:1a:bd:09:6a:
2b:0b:37:3c:fe:d3:61:ea:d8:d0:d1:75:5b:66:56:4a:5b:b0:
71:c8:26:5f:f3:93:44:1e:ed:8f:01:87:cc:c7:aa:5f:2a:61:
2a:99:d1:8e:21:02:5d:cc:da:b5:57:64:85:cb:d6:93:73:31:
cb:5d:e0:64:27:eb:ec:83:22:22:b0:eb:17:30:94:df:c7:e6:
43:19:a9:0d:21:69:08:d2:4f:97:87:ad:7a:5c:09:9f:c2:2e:
5d:31:09:f6:19:f6:e7:28:81:91:2c:54:ef:6b:e9:72:ce:2f:
ff:33:00:c6:70:0d:92:c8:00:63:f7:8b:e9:1f:8a:c4:60:1e:
ef:f5:0d:39:1c:39:e6:e5:41:c5:7b:a5:a6:d6:1e:47:bd:49:
4a:cd:12:e9:2b:8e:5c:9a:c2:65:5f:6b:d9:3c:31:41:2b:e6:
a0:01:94:3c:91:5a:31:40:dd:4c:ee:3a:de:fe:25:3d:12:1d:
8e:73:44:ae:42:9e:c9:ca:c7:d6:04:ef:89:f3:da:0f:22:10:
70:b3:a4:43:be:b0:81:66:0e:6c:8d:51:46:9f:84:6b:85:90:
a6:f9:00:83:df:95:10:52:14:8d:37:e1:4e:ad:90:cc:54:d4:
6a:28:1d:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 09:23:49 2024 by rpki-client on console-ams.rpki-client.org