Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231332e38332e302f32342d3234203d3e20313437303439.roa
File: 3138352e3231332e38332e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: gEbsxuoxyfMvN9HzbSCn2k6dOgPwDG7+GF7iHPVOgxU=
Subject key identifier: 56:DB:E2:6A:53:3A:76:5F:08:A7:17:F6:76:04:B0:5E:3D:26:12:92
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 4B5CE6384A8B2CDD2D5E3E0E992FBB5C71618417
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231332e38332e302f32342d3234203d3e20313437303439.roa
Signing time: Fri 20 Sep 2024 14:04:57 +0000
ROA not before: Fri 20 Sep 2024 13:59:57 +0000
ROA not after: Fri 19 Sep 2025 14:04:57 +0000
asID: 147049
IP address blocks: 185.213.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:5c:e6:38:4a:8b:2c:dd:2d:5e:3e:0e:99:2f:bb:5c:71:61:84:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 20 13:59:57 2024 GMT
Not After : Sep 19 14:04:57 2025 GMT
Subject: CN=56DBE26A533A765F08A717F67604B05E3D261292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:bb:78:96:05:5a:83:37:10:35:ef:2e:73:38:
e0:3a:b1:0b:0a:8a:f2:e3:39:ca:ea:8a:94:d3:e5:
82:f7:68:7e:ef:66:9a:56:5d:45:04:f4:00:a3:04:
f8:ff:3c:e4:f8:6f:62:d0:16:50:24:a4:11:42:42:
b2:6b:06:7e:be:37:eb:e3:11:ed:1e:c6:83:28:b2:
ef:9a:69:e9:b3:ca:12:b8:bc:8d:5d:bb:bd:71:00:
2a:b1:42:05:dc:03:d7:a2:92:c6:c5:23:4d:67:56:
62:ae:94:65:40:37:0f:f6:00:fe:bf:d6:30:b0:0b:
1f:69:d5:b6:eb:a1:94:36:f2:78:51:ff:fd:a9:53:
e4:b0:24:76:89:dd:f4:1c:a4:d9:ae:fe:f1:36:41:
a1:40:d0:60:87:3c:22:f5:ad:5d:a3:a0:5d:19:af:
cb:4e:04:6b:89:7e:bf:50:88:43:07:ff:d3:81:99:
37:ab:19:cf:f1:ed:6f:53:3a:9a:1a:4d:76:4b:b7:
15:79:b6:71:4e:d3:fa:ff:5b:58:9a:e5:04:dc:1b:
05:4f:31:d1:85:29:fd:29:6b:9d:e2:fc:e6:d7:da:
9d:93:b7:e8:e9:20:a5:8a:5d:bb:c2:72:43:1e:94:
36:d7:17:2c:13:18:b0:10:ec:cd:77:f0:ad:00:0b:
b8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:DB:E2:6A:53:3A:76:5F:08:A7:17:F6:76:04:B0:5E:3D:26:12:92
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231332e38332e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.83.0/24
Signature Algorithm: sha256WithRSAEncryption
40:58:5a:ca:b5:f2:56:b1:4b:08:93:3e:77:5c:32:58:02:3b:
51:cd:92:ea:1d:c0:d5:19:50:a7:46:10:b7:25:49:af:3d:05:
d9:17:79:d7:af:32:61:45:4a:54:6a:7f:32:e3:09:82:5a:7e:
04:1f:03:04:3f:dc:76:88:39:6f:e7:50:66:e3:be:15:05:e9:
74:4a:81:8d:95:d4:15:f8:7b:40:06:30:0b:ed:f4:d7:7e:78:
72:3b:44:82:c2:80:17:01:89:5b:5c:ab:bb:ea:17:01:26:14:
fd:f8:e8:24:2a:bf:7a:d3:42:4c:79:95:d6:8e:98:b0:13:ac:
f2:3d:4e:ec:5e:76:85:9e:96:f7:ee:0d:c7:e9:05:2a:79:2f:
de:ce:5d:43:67:0c:a0:85:f7:13:0f:48:19:97:35:53:44:b9:
0e:8e:57:bc:af:c4:09:36:f1:e1:f2:ed:5b:09:ae:93:20:1d:
7e:1b:66:6a:53:aa:54:d5:b2:0d:07:93:96:19:2c:f7:08:77:
15:85:e2:eb:cf:57:a8:3c:2f:de:e8:f5:49:18:a9:62:81:22:
f6:28:df:ae:50:d1:44:3b:27:f1:40:b7:80:2f:8a:61:d5:89:
42:e5:39:38:e5:21:a6:dd:a8:b6:c1:ea:31:94:7a:4c:14:c1:
dd:a5:0b:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:03 2024 by rpki-client on console-fra.rpki-client.org