Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230372e3235312e302f32342d3332203d3e203531313637.roa
File: 3138352e3230372e3235312e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: yGdihEcpYszVahkEJabmS+7yS2cJC1m3jXfBwxxyyiQ=
Subject key identifier: D9:4D:66:2D:FF:E8:D5:BC:2A:4F:F6:A4:F7:BB:0F:96:FD:ED:BC:5F
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 771E0DA531DAEFB3D2F500DFA1D3BDA8E42425F8
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230372e3235312e302f32342d3332203d3e203531313637.roa
Signing time: Fri 20 Sep 2024 14:04:50 +0000
ROA not before: Fri 20 Sep 2024 13:59:50 +0000
ROA not after: Fri 19 Sep 2025 14:04:50 +0000
asID: 51167
IP address blocks: 185.207.251.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:1e:0d:a5:31:da:ef:b3:d2:f5:00:df:a1:d3:bd:a8:e4:24:25:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 20 13:59:50 2024 GMT
Not After : Sep 19 14:04:50 2025 GMT
Subject: CN=D94D662DFFE8D5BC2A4FF6A4F7BB0F96FDEDBC5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8b:9f:4b:14:16:94:11:bf:ee:1e:8e:39:95:
03:4f:b6:7d:83:34:61:f4:67:39:b0:02:be:0c:ce:
70:46:32:b2:c5:d0:d9:1c:f4:8a:58:6d:75:13:f4:
20:e9:d0:05:4b:f5:8e:78:da:8c:f1:0f:ed:c3:0d:
47:e8:f0:89:7b:ea:7b:96:56:d5:58:16:c2:9c:52:
24:4d:12:93:1e:5d:d8:74:9e:e7:25:be:75:28:b9:
e7:08:4a:fe:62:e0:b7:4b:ba:ff:3d:b0:53:c8:83:
42:7c:ed:f3:ed:93:e7:3e:34:bd:d2:b4:01:fd:5f:
28:00:90:eb:9b:27:75:c3:65:0b:54:4e:8c:7a:77:
e4:37:5d:03:cc:3d:27:9e:ad:f2:fc:4d:d3:7f:c4:
bc:5b:86:e0:6e:fc:e2:dd:f1:6d:f7:20:cb:d6:34:
0d:b5:eb:37:35:46:80:74:ed:7a:e0:aa:00:e7:6a:
1a:62:86:ef:f9:24:4e:dc:70:6a:67:7f:b8:37:68:
96:d5:b9:b7:44:f1:4b:55:6c:47:43:bb:38:39:33:
b8:da:3d:64:f9:6f:03:12:8d:b9:31:07:d7:de:94:
9a:5a:28:a4:99:ee:ae:51:d3:e5:19:b3:ae:cd:ad:
43:03:bc:a3:2e:81:2d:c4:99:ed:a2:2c:4d:2e:40:
6a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:4D:66:2D:FF:E8:D5:BC:2A:4F:F6:A4:F7:BB:0F:96:FD:ED:BC:5F
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230372e3235312e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.251.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:f5:0b:f5:fb:68:43:71:67:eb:90:1a:29:8f:bf:d9:89:32:
69:61:c2:69:4f:c1:23:df:6b:4c:02:13:3b:c6:a5:aa:ff:1d:
53:83:8a:92:b7:d7:8a:a0:07:87:3c:2a:c6:65:2e:0d:6e:a3:
d2:d9:12:68:49:29:7a:c3:c9:a2:a0:7e:0e:3e:f6:f7:85:81:
7a:42:5d:22:b5:08:24:e7:63:2b:48:9a:b4:58:9f:3e:00:e2:
86:63:eb:b9:85:52:cd:81:fa:7c:17:a2:40:3e:e1:9a:ca:58:
df:01:93:0e:28:77:c7:3c:61:16:9c:a8:08:c7:49:1d:65:4a:
fc:06:6a:a4:96:06:30:29:c2:27:b2:57:0a:74:57:34:b9:27:
34:b2:48:38:42:07:ad:b2:f9:64:b8:6d:6d:4a:08:62:a7:5b:
9a:bd:c3:d8:4a:ac:00:a4:f2:5c:90:04:cc:15:c9:d6:5f:14:
f7:58:de:0a:b2:0d:ad:2a:65:18:8b:e1:09:34:d0:ee:5c:53:
f5:6c:a3:d0:67:9a:df:2c:f5:9d:65:88:af:43:27:5a:e2:26:
ab:0f:51:81:23:79:9e:ca:d9:d3:e8:28:39:6d:f3:6e:2f:06:
75:c4:90:4f:ef:fd:f9:d8:3f:3b:15:8b:0f:0d:57:56:aa:33:
ae:85:a8:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:03 2024 by rpki-client on console-fra.rpki-client.org