Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139332e36352e302f32342d3234203d3e203630353438.roa
File: 3138352e3139332e36352e302f32342d3234203d3e203630353438.roa (raw, json)
Hash identifier: ufVo4SR7MoBHEXXNX4mZQ9wlzSYOK7lHCuPXAHR4Yjs=
Subject key identifier: EF:D5:A1:F8:7B:3D:E5:66:9D:40:41:91:0F:C3:87:9B:B9:D2:B7:6D
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6B8E1B77E357FEAC13D76236DF2AB10C67F151E4
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139332e36352e302f32342d3234203d3e203630353438.roa
Signing time: Fri 20 Sep 2024 14:05:00 +0000
ROA not before: Fri 20 Sep 2024 14:00:00 +0000
ROA not after: Fri 19 Sep 2025 14:05:00 +0000
asID: 60548
IP address blocks: 185.193.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:8e:1b:77:e3:57:fe:ac:13:d7:62:36:df:2a:b1:0c:67:f1:51:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 20 14:00:00 2024 GMT
Not After : Sep 19 14:05:00 2025 GMT
Subject: CN=EFD5A1F87B3DE5669D4041910FC3879BB9D2B76D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:51:3f:12:6f:2b:2a:0e:85:c8:18:f2:03:d5:
59:02:bc:6c:62:53:24:2d:5a:96:b2:61:9e:36:71:
b9:df:c4:77:ea:5e:8f:42:b5:ad:66:af:b3:a5:ca:
c6:db:ab:d4:dc:d5:30:83:00:33:f9:4e:e0:a8:c6:
a0:c9:ee:d0:54:b4:a2:16:1d:7b:44:82:c0:e6:cc:
e5:48:db:3c:69:a2:3c:ba:1a:98:74:18:fd:a4:49:
26:68:cc:9f:83:56:20:3f:b5:5a:43:0b:c3:90:6f:
ce:2c:6f:8a:2a:95:50:34:c7:93:3a:d1:c1:c3:08:
f4:ca:60:86:ad:88:b5:58:76:11:f9:b4:4b:8a:2a:
cd:d2:61:94:aa:b5:cc:51:5e:a4:ac:bf:a7:0c:b2:
54:1a:3d:d1:a2:e8:24:98:71:66:ad:13:1b:4b:b4:
07:fa:82:49:39:c2:d7:1f:f1:58:24:e4:b1:2d:69:
09:d2:f0:44:ff:f6:99:cb:a1:ac:0c:87:32:6c:5a:
f7:a1:fa:77:31:a6:07:1f:2d:c4:69:13:d4:94:b5:
5c:a4:20:04:20:9e:13:ad:b6:f1:ea:bc:d9:fa:ab:
90:8f:5a:16:a6:c2:47:bc:f4:83:b0:4b:a0:d5:be:
5e:0e:2d:f7:4e:fc:8d:dc:64:2c:ef:12:24:6d:ec:
03:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:D5:A1:F8:7B:3D:E5:66:9D:40:41:91:0F:C3:87:9B:B9:D2:B7:6D
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139332e36352e302f32342d3234203d3e203630353438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.65.0/24
Signature Algorithm: sha256WithRSAEncryption
41:85:ac:38:29:90:11:be:ba:f1:e9:93:90:7f:be:18:86:bb:
1e:9a:43:a3:bf:ef:09:46:c9:ba:6a:83:2f:0a:0a:63:86:75:
08:b7:a3:1a:d7:f5:cf:e6:7a:f8:8d:01:8f:58:f9:6c:73:17:
64:aa:2d:5e:6f:a2:4d:8a:b2:c5:a2:b9:0b:50:7e:23:00:7a:
43:00:ce:64:cd:16:57:49:0a:36:23:57:f6:5c:29:ac:2c:3f:
42:79:fd:45:2a:46:29:ab:50:ad:ce:a3:68:eb:69:da:6a:a1:
c9:7d:45:32:d8:61:89:f4:c1:5b:65:04:a0:c5:78:7c:cc:1e:
3e:e7:54:0c:d4:5b:57:ec:02:b2:fa:6f:b7:87:32:d3:74:69:
5f:87:84:3f:b8:a4:e6:18:87:8d:61:f9:d8:27:aa:eb:70:03:
3e:d3:63:6b:e1:c5:3a:50:25:54:f2:fc:8a:26:72:f1:1c:2c:
31:16:01:60:1b:d2:26:47:92:c3:97:2f:01:34:1b:94:65:7e:
38:24:e5:db:a7:70:ef:42:99:0e:e1:0b:51:ce:b4:26:6b:5d:
8d:6f:e7:67:24:85:84:ba:91:41:8c:6d:03:c6:33:82:ec:c6:
40:6e:b5:f0:2f:35:86:84:66:7f:26:bb:04:37:7e:62:76:0e:
93:76:2e:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:42:56 2024 by rpki-client on console-fra.rpki-client.org