Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231362e37352e302f32342d3332203d3e203531313637.roa
File: 3138352e3231362e37352e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: uuOD1eMGtjJwnKyPmlD7NOgaHpxOVzxrD4NDrObpbF0=
Subject key identifier: B7:C3:2E:DA:69:97:BD:F3:DB:DD:3E:00:82:BE:F6:DB:7E:73:65:0F
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 7880D4BB74A4EF94A034BEBE4B2CA0CC9390D4E3
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231362e37352e302f32342d3332203d3e203531313637.roa
Signing time: Fri 20 Sep 2024 14:04:52 +0000
ROA not before: Fri 20 Sep 2024 13:59:52 +0000
ROA not after: Fri 19 Sep 2025 14:04:52 +0000
asID: 51167
IP address blocks: 185.216.75.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:80:d4:bb:74:a4:ef:94:a0:34:be:be:4b:2c:a0:cc:93:90:d4:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 20 13:59:52 2024 GMT
Not After : Sep 19 14:04:52 2025 GMT
Subject: CN=B7C32EDA6997BDF3DBDD3E0082BEF6DB7E73650F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fa:1a:69:93:61:a8:64:a6:70:a7:03:a3:fb:
27:d2:44:77:d5:0e:8c:21:e5:76:3e:6d:7e:84:30:
f8:82:e6:71:ed:7b:4b:2f:80:94:17:f8:75:10:1d:
95:d3:93:15:e5:af:d9:e6:81:55:9d:2b:24:d5:26:
1a:05:e7:72:4c:ba:42:4b:b2:71:3e:1b:e2:71:d0:
1c:2d:86:3d:87:52:28:7e:73:35:4a:d5:66:39:29:
02:9f:e2:6e:73:3e:99:6e:db:b7:0e:c1:90:c3:4e:
3d:dc:b5:4c:3c:33:bf:0f:a1:68:e5:fb:5e:82:0f:
ec:17:d0:78:32:d2:ea:e4:0f:99:e2:97:a4:1d:0e:
2b:12:39:c5:66:76:44:5b:c2:cd:95:fa:e6:2a:e0:
ca:8c:8e:97:a3:51:fa:6d:81:12:76:68:48:9e:ab:
fd:99:33:21:b5:07:5c:9a:66:10:68:1b:96:1f:14:
7b:99:80:7a:90:6f:a6:c6:f3:a9:41:5a:69:b2:51:
a6:fc:3c:cc:c3:ed:6c:30:50:b5:bc:98:62:8f:72:
d6:4b:2b:d7:66:07:03:f5:b4:11:17:6d:bd:46:2d:
de:ab:06:e7:78:81:00:57:59:73:de:18:38:c0:ee:
b8:2a:8a:9a:43:a5:49:56:ce:0e:9f:62:3d:1a:bf:
55:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:C3:2E:DA:69:97:BD:F3:DB:DD:3E:00:82:BE:F6:DB:7E:73:65:0F
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231362e37352e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.75.0/24
Signature Algorithm: sha256WithRSAEncryption
27:9d:17:dc:e1:86:20:65:a9:37:3b:b8:79:9e:6b:6f:f2:81:
eb:c6:6d:7b:c8:d6:a7:30:23:a5:4d:5e:48:b7:d3:e9:5d:01:
b1:5d:0d:32:52:40:2e:92:bb:0c:43:92:e7:d3:0b:ee:11:10:
aa:62:4b:30:5a:97:79:18:61:e0:dd:9e:ce:59:7a:a5:97:43:
31:65:32:d5:8e:17:06:d8:b3:df:75:22:ec:4b:5f:45:83:59:
61:3b:85:41:61:2f:41:84:41:81:cd:70:80:28:e0:90:68:13:
7d:c9:e4:50:bb:37:9a:72:b4:21:f6:ac:2a:b7:0a:bf:6d:70:
e7:76:b9:af:89:d0:9e:95:5d:06:9c:ee:b9:c2:c6:6d:33:2e:
8a:bb:8a:6a:92:43:fc:a1:93:17:83:c5:81:e2:25:ba:25:2c:
56:27:25:9b:55:03:18:16:fe:ca:8e:e0:d7:cd:f1:9b:4b:a2:
78:13:da:0b:0e:51:94:94:32:69:90:04:22:5d:60:61:ed:3b:
2c:85:33:f8:58:4c:6d:9a:10:db:8a:6b:ef:d2:25:b1:3b:fb:
93:eb:ae:b3:c6:c0:fb:3e:de:be:2e:0a:5e:50:72:29:27:02:
01:e2:ff:37:9e:b1:2e:8b:92:61:81:5a:72:17:e3:79:bf:71:
db:f4:9d:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:03 2024 by rpki-client on console-fra.rpki-client.org