Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231372e3132362e302f32332d3332203d3e203531313637.roa
File: 3138352e3231372e3132362e302f32332d3332203d3e203531313637.roa (raw, json)
Hash identifier: 1ZAZmEkp/Shvw5AAefHdmEZwCd2h7DLr+GAOENp3h2s=
Subject key identifier: 1C:D1:79:11:5B:DA:E2:C3:F4:8B:ED:62:0D:A1:CD:06:F7:88:0D:09
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 21B166C241D6E048CF6FDC18CCCA9E3EA5EB1F26
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231372e3132362e302f32332d3332203d3e203531313637.roa
Signing time: Fri 20 Oct 2023 13:41:44 +0000
ROA not before: Fri 20 Oct 2023 13:36:44 +0000
ROA not after: Fri 18 Oct 2024 13:41:44 +0000
asID: 51167
IP address blocks: 185.217.126.0/23 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 14:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:b1:66:c2:41:d6:e0:48:cf:6f:dc:18:cc:ca:9e:3e:a5:eb:1f:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:44 2023 GMT
Not After : Oct 18 13:41:44 2024 GMT
Subject: CN=1CD179115BDAE2C3F48BED620DA1CD06F7880D09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7a:39:aa:f7:51:e4:58:0b:59:9a:c3:a7:53:
38:ed:aa:c6:25:ba:65:84:6f:02:50:3a:f9:54:21:
64:89:f3:7e:e7:12:15:96:2d:b7:38:79:14:b2:ea:
bb:75:b2:91:04:b0:f8:30:ca:cd:f4:b6:b9:ed:0f:
1a:85:f0:2d:9f:f9:ce:0d:83:e7:da:63:56:fe:a5:
56:21:26:ac:e4:c5:94:87:6f:62:36:6a:da:8e:a5:
e1:41:29:be:a5:40:89:eb:b0:0c:a4:61:8f:15:0a:
fb:22:72:63:b8:19:fd:1b:81:db:c6:c5:05:cb:26:
de:90:c5:28:56:e4:69:86:d8:fa:69:0b:e6:56:71:
96:6a:70:9e:15:84:3e:05:eb:5a:49:38:62:25:c5:
ba:b5:57:48:59:0e:f1:d8:9a:58:a1:a3:97:68:0d:
d9:a0:81:d7:c4:ca:3f:c6:08:53:d3:0c:50:eb:07:
44:3e:35:1a:60:39:a6:df:e1:e5:ab:e2:47:8a:48:
d6:32:61:d7:e7:56:f4:4f:05:62:d2:27:db:97:85:
e6:08:97:a4:9f:39:26:9d:cc:e8:b4:c6:63:e8:f9:
4c:9d:da:37:df:92:68:15:e7:c3:83:b2:fb:12:af:
7a:9c:ab:37:c1:db:4e:4c:3f:69:ba:a2:dd:53:21:
c3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D1:79:11:5B:DA:E2:C3:F4:8B:ED:62:0D:A1:CD:06:F7:88:0D:09
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231372e3132362e302f32332d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.126.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:96:33:0b:29:64:4c:05:aa:75:c7:53:5d:ec:4f:a0:1b:2c:
9f:da:98:dc:b9:e8:2b:92:48:97:fd:a8:54:8b:6e:17:da:b1:
56:a2:65:c5:7d:f9:9a:e2:44:9e:98:f9:44:5c:84:95:68:5f:
4b:d8:bb:ef:cb:7a:79:ed:12:3c:fc:6b:71:31:27:a9:8f:3d:
f4:ec:fa:ac:e5:2f:81:86:8e:d3:5b:46:e1:4f:8c:73:9b:20:
c8:06:c9:18:8c:01:28:d1:c4:9c:fc:5f:cd:c6:3c:29:ce:c8:
c8:68:e1:6c:b7:ac:87:11:10:86:dc:58:03:1b:00:78:7f:d1:
fe:ce:de:33:aa:92:b9:91:58:d2:f7:50:7f:25:b7:d0:ae:0c:
46:93:ac:ba:ea:f6:54:2e:cf:49:00:57:e7:19:66:ee:17:3b:
22:69:55:4e:4d:f5:e7:50:52:36:17:35:63:b9:89:70:96:55:
2d:ce:e5:79:e6:30:d7:3b:d7:85:f0:f4:8a:91:1b:d4:0f:ec:
13:e0:15:f8:2b:61:4f:21:c8:66:48:33:10:56:70:58:44:26:
b5:2a:87:36:28:4e:8d:8c:9c:f6:0e:b3:33:03:9d:7c:f5:8c:
5b:f9:a2:4c:56:73:37:e9:f7:f0:36:72:96:34:47:7d:7a:09:
e3:01:23:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 21:12:36 2024 by rpki-client on console-fra.rpki-client.org