Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230372e3234382e302f32342d3332203d3e20313336373837.roa
File: 3138352e3230372e3234382e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: p/xWs+F6s7Sg9qLDxuiyik5N3JJ3jK2LfS5D2IHexm4=
Subject key identifier: 0E:AC:0A:2A:BF:D9:70:69:62:5C:2E:75:34:72:5F:9D:DC:C9:7A:DC
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 275331B149FF0D98A9DB5A305F07C8BC5F3B27EF
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230372e3234382e302f32342d3332203d3e20313336373837.roa
Signing time: Fri 20 Oct 2023 13:41:50 +0000
ROA not before: Fri 20 Oct 2023 13:36:50 +0000
ROA not after: Fri 18 Oct 2024 13:41:50 +0000
asID: 136787
IP address blocks: 185.207.248.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:53:31:b1:49:ff:0d:98:a9:db:5a:30:5f:07:c8:bc:5f:3b:27:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:50 2023 GMT
Not After : Oct 18 13:41:50 2024 GMT
Subject: CN=0EAC0A2ABFD97069625C2E7534725F9DDCC97ADC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:73:8d:b4:ea:ed:a7:74:17:9e:49:3b:27:58:
02:6b:ff:87:1e:6c:b9:28:76:22:93:ed:9e:65:9e:
09:9c:b6:49:07:ce:94:67:c1:11:46:fc:8d:51:6f:
00:a6:f7:0a:8a:79:a3:16:9d:ca:04:86:6e:de:ff:
ef:05:28:5c:5c:c0:d7:77:4b:c8:69:c9:81:aa:48:
2c:69:6b:4b:2c:07:4e:cd:13:42:39:23:16:02:47:
78:c0:d3:5b:44:77:9d:e5:e3:11:85:b0:ee:89:de:
b9:87:c0:e5:70:2e:ab:d7:d6:4e:14:3f:1b:75:c0:
36:d0:d3:d9:87:b8:85:c5:86:5b:b2:b9:2e:53:ec:
5e:73:e2:2b:ff:f8:d8:39:50:80:1b:d4:47:98:26:
be:7e:8c:64:03:21:a7:89:b0:a8:12:32:f1:7d:6a:
15:21:54:91:2e:9a:23:16:50:c9:23:35:42:de:06:
1f:2e:14:4c:63:27:68:76:68:6e:4e:51:3a:e6:2c:
1d:58:3f:e1:90:03:48:ee:13:a3:16:6d:08:b1:17:
42:61:c0:5a:3e:dc:f5:d0:a3:db:eb:cd:1f:87:c4:
6a:23:f0:ad:81:17:0b:f3:e7:b5:8c:a2:ce:65:22:
77:9b:da:84:ff:1e:0b:30:d0:f1:1a:b6:fc:62:37:
19:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:AC:0A:2A:BF:D9:70:69:62:5C:2E:75:34:72:5F:9D:DC:C9:7A:DC
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230372e3234382e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.248.0/24
Signature Algorithm: sha256WithRSAEncryption
34:8b:57:68:5c:8d:1b:28:0c:e0:57:c4:1b:12:f5:1f:fa:9f:
46:d1:6f:37:5c:e6:78:62:b5:05:b7:06:65:5f:46:50:21:b1:
39:f7:84:d1:94:57:ae:8b:3f:16:df:0d:ac:2f:d6:c5:54:8a:
76:07:2b:7f:28:e4:42:d8:62:da:01:d5:3a:f5:0d:0e:68:df:
ce:7b:fd:7e:8d:ac:96:5c:1c:bd:36:0b:0c:aa:cf:ba:ad:5b:
07:3f:84:cb:6e:0b:3f:46:f9:66:b4:73:d4:33:6f:7b:79:7d:
06:8b:bc:49:42:eb:c7:13:2d:a7:ee:8c:ff:a7:cf:ed:7b:a7:
e1:ee:42:a1:f1:13:44:e8:0f:25:24:ae:22:5b:18:48:48:89:
1c:b7:c2:2f:68:0e:b6:21:4f:39:c3:73:39:10:29:b8:c7:d2:
3a:d6:97:45:ef:b9:3f:b4:21:a4:ae:86:46:d7:c9:75:0d:25:
53:65:15:1b:93:9b:44:c7:02:ad:0f:d1:05:76:5d:f7:45:90:
f2:1f:f5:0a:94:49:92:74:25:48:26:fc:27:55:4f:02:7c:0f:
49:79:52:8e:44:7b:86:7b:ce:54:38:b5:70:c6:0a:00:53:80:
60:0e:a2:2e:b3:76:d6:9b:21:d0:e4:69:57:e6:5f:27:be:f6:
e6:1e:4f:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:54:23 2024 by rpki-client on console-fra.rpki-client.org