Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230322e3233362e302f32342d3332203d3e203531313637.roa
File: 3138352e3230322e3233362e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: 1BOpt8C97YkcMx6cy4xt/QqI8K2lEjq4xegSqCu7M0Y=
Subject key identifier: 46:95:61:A7:3D:9A:11:62:F2:4F:84:DB:32:62:5D:59:A4:C1:F3:0F
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1CED5E8465D50B38505E267A214BD075E4A48250
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230322e3233362e302f32342d3332203d3e203531313637.roa
Signing time: Fri 20 Oct 2023 13:41:43 +0000
ROA not before: Fri 20 Oct 2023 13:36:43 +0000
ROA not after: Fri 18 Oct 2024 13:41:43 +0000
asID: 51167
IP address blocks: 185.202.236.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 14:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:ed:5e:84:65:d5:0b:38:50:5e:26:7a:21:4b:d0:75:e4:a4:82:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:43 2023 GMT
Not After : Oct 18 13:41:43 2024 GMT
Subject: CN=469561A73D9A1162F24F84DB32625D59A4C1F30F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:cd:c6:cd:fd:38:84:a2:0c:c0:f3:63:ca:af:
7f:c6:2b:64:c4:3d:82:43:47:d2:37:a3:ad:04:7c:
67:51:56:8f:f0:e9:1d:8e:a3:5d:c0:1b:9a:21:77:
1c:35:36:ee:fd:77:81:e4:ea:e3:6a:77:71:36:6b:
3b:12:25:be:57:3e:4b:4d:76:18:66:0a:ae:3e:f7:
cb:1d:fc:ac:cd:f2:bb:03:79:51:54:da:61:a3:2f:
b7:a4:ea:21:69:e6:9c:4e:89:b2:be:53:50:de:07:
a2:93:56:6b:b3:be:11:76:21:fc:17:74:33:6f:4d:
26:5d:f5:e4:42:97:89:59:9d:ac:47:7d:f4:8d:3b:
be:60:95:e5:ad:62:f0:92:cb:61:55:5a:7b:52:bf:
82:6a:8c:33:2f:9d:5c:9c:6a:cc:a8:6f:e7:14:fb:
7a:b1:ec:bc:4e:26:f9:f7:ef:d2:03:64:43:99:e3:
f1:8a:2f:6b:61:5a:89:bd:0e:fa:9b:74:ac:06:6d:
34:1a:82:8b:ed:dc:e9:af:ac:20:c6:d3:18:42:48:
37:4f:c0:3f:2b:f9:f2:96:76:df:7e:07:cc:d1:3d:
46:56:c6:bf:52:47:33:96:8c:65:ea:7a:9d:44:47:
b2:9c:24:53:1b:d8:6b:af:a4:9e:a3:98:ca:04:42:
46:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:95:61:A7:3D:9A:11:62:F2:4F:84:DB:32:62:5D:59:A4:C1:F3:0F
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230322e3233362e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.236.0/24
Signature Algorithm: sha256WithRSAEncryption
92:0d:de:e4:bf:c3:e6:35:d8:60:1d:7e:d2:df:6f:bf:88:52:
96:27:2f:db:b0:da:56:cc:4c:1d:5c:ce:84:a2:78:e9:69:f2:
5f:28:6e:ff:02:2b:30:c2:db:91:ee:79:bf:6c:1d:8d:2c:3b:
8c:26:64:9a:01:29:76:ec:6a:35:8c:63:46:62:e3:92:18:05:
19:64:77:c7:74:d7:07:c8:71:8c:58:c3:f7:57:09:7a:15:ff:
d1:05:07:45:fd:ba:9f:34:d4:fa:5c:12:d7:ca:a3:b6:16:d4:
65:7e:60:99:5b:26:21:be:f6:07:9c:79:b6:be:9d:e0:c4:aa:
9f:ef:f0:00:8f:3b:22:cd:f3:e1:28:c9:b2:20:cb:51:91:77:
d7:f0:e8:df:15:7c:d2:b3:d2:51:52:ac:5d:42:ce:a6:a6:6f:
5a:94:0e:89:5a:c2:92:35:aa:05:6a:af:4d:f7:7a:56:c1:9b:
64:49:9d:d4:07:88:ce:c4:82:23:8b:31:fa:fe:51:9a:b0:4b:
7b:ca:7d:93:05:2d:95:8c:36:8a:96:47:ea:67:f3:04:48:5c:
76:7f:16:3b:22:16:b0:e3:49:db:dd:94:2f:8e:6f:91:66:47:
a8:9d:f5:34:72:ac:6b:f6:db:a2:fb:3b:d1:2e:42:72:ec:a6:
28:fa:e1:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 21:12:36 2024 by rpki-client on console-fra.rpki-client.org