Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231362e37352e302f32342d3332203d3e203531313637.roa
File: 3138352e3231362e37352e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: 7XcpEGqQUqXj8VZ2kxTP7DFNeOogdc8vlGW7nigeWmE=
Subject key identifier: B5:C8:73:92:4B:79:3F:9E:0D:1A:4F:C1:18:88:9E:DB:23:40:8C:DF
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 76D8DB3B88581FDCF769D528CBBAE55B969343E1
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231362e37352e302f32342d3332203d3e203531313637.roa
Signing time: Fri 20 Oct 2023 13:41:52 +0000
ROA not before: Fri 20 Oct 2023 13:36:52 +0000
ROA not after: Fri 18 Oct 2024 13:41:52 +0000
asID: 51167
IP address blocks: 185.216.75.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:d8:db:3b:88:58:1f:dc:f7:69:d5:28:cb:ba:e5:5b:96:93:43:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:52 2023 GMT
Not After : Oct 18 13:41:52 2024 GMT
Subject: CN=B5C873924B793F9E0D1A4FC118889EDB23408CDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:58:51:ad:67:76:6a:62:dd:ad:ff:14:49:c9:
8d:60:14:79:c0:28:b5:88:aa:c4:17:2b:f7:28:2a:
c8:f0:c2:ac:5d:fc:99:04:2c:7c:63:82:65:a0:8c:
bc:41:13:e8:25:0c:3e:6d:1d:f2:2f:bf:23:ef:ba:
e9:b8:60:cc:3a:24:83:a3:5b:20:68:7c:4e:78:f5:
ac:5d:c5:7c:00:cd:c0:48:20:3f:5f:39:ae:3c:23:
bd:5c:a4:5b:96:a4:f9:18:36:59:29:e8:9c:23:13:
f4:50:0c:5b:ce:93:39:8f:ee:3f:ce:41:03:1e:b0:
60:33:7a:4a:b6:17:a7:54:80:1d:fe:17:ef:57:89:
23:a9:14:1f:a3:ec:4c:54:ef:c9:3b:bf:1a:84:ec:
0f:d0:26:88:4d:1c:1f:b2:6e:84:87:e8:ab:b8:7f:
27:ac:c9:ad:04:5e:02:f5:e7:a8:5f:e8:64:82:df:
9f:ed:9d:71:f0:d4:a7:0e:4b:2d:22:47:0a:78:50:
bd:d3:ff:f8:d0:de:a2:90:e4:f2:fe:f1:bd:8e:5d:
a4:8e:b4:98:c3:f2:19:ce:e0:aa:28:90:1c:4b:56:
5e:40:c3:10:0c:f1:f0:0d:ea:b3:8a:72:bb:9a:6e:
84:dc:9a:12:f7:4b:ce:fe:3f:c2:d0:69:68:10:76:
e4:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:C8:73:92:4B:79:3F:9E:0D:1A:4F:C1:18:88:9E:DB:23:40:8C:DF
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231362e37352e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.75.0/24
Signature Algorithm: sha256WithRSAEncryption
27:fc:e2:85:12:0a:6e:7a:56:4b:a9:83:21:fe:48:98:50:12:
11:de:53:41:fb:66:bb:24:9e:6c:06:29:89:d0:be:e7:38:54:
57:9f:34:5f:d0:17:38:98:b4:86:4b:a2:93:7e:7d:17:3a:93:
ba:95:18:f2:ed:c6:1b:55:6d:83:85:63:e7:57:d0:f1:79:fd:
05:f6:b2:8b:dc:81:4c:57:ed:e0:fc:81:f5:1d:a3:e8:2e:e5:
41:e3:f8:e5:cc:0f:59:4f:64:6c:df:4d:5e:f9:36:38:75:63:
7a:32:59:e0:1a:a2:5b:fd:c4:3e:9a:d9:11:90:c5:cb:f4:06:
a9:cb:93:9e:4e:d5:60:7c:bf:bf:72:aa:3d:61:a7:ff:3e:94:
14:87:4b:cc:02:78:6b:15:cc:21:09:25:d1:a1:54:d5:48:6e:
cf:54:91:3d:7c:4c:3b:99:48:ff:0c:05:89:cd:2b:61:db:85:
ab:b8:ca:1d:9f:49:6a:22:cb:c4:b3:0f:20:41:84:6c:97:80:
13:0e:4c:8e:c6:47:cc:8d:58:43:af:ac:fe:6f:ed:af:e0:4f:
43:cb:b1:54:74:77:6a:1f:5b:a6:39:51:24:10:37:f3:fa:97:
30:04:6f:59:e2:90:db:3f:01:ee:84:56:cb:a9:f8:07:2d:f0:
8d:29:c5:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 09:23:49 2024 by rpki-client on console-ams.rpki-client.org