Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3232342e3133362e302f32322d3234203d3e203437353833.roa
File: 3138352e3232342e3133362e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: 2eW82SiRBBhmVwU58MRjL2nKZUjfH70+4w89RhaieAA=
Subject key identifier: 17:3E:A0:72:70:66:66:28:4D:2E:2F:F0:06:69:FE:B8:57:D4:23:42
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 31C939E612F18E040BF0715D503F6F2B59D299CE
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3232342e3133362e302f32322d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:53:00 +0000
ROA not before: Mon 26 Feb 2024 08:48:00 +0000
ROA not after: Mon 24 Feb 2025 08:53:00 +0000
asID: 47583
IP address blocks: 185.224.136.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:c9:39:e6:12:f1:8e:04:0b:f0:71:5d:50:3f:6f:2b:59:d2:99:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 26 08:48:00 2024 GMT
Not After : Feb 24 08:53:00 2025 GMT
Subject: CN=173EA072706666284D2E2FF00669FEB857D42342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:cd:a0:a7:b6:c2:08:eb:07:1d:ad:5d:2e:b8:
bd:17:38:e3:77:b2:ca:70:77:b0:73:63:a3:a3:b8:
6c:3a:3d:ad:07:d9:25:87:e7:8b:8f:39:50:17:58:
66:9e:eb:16:6d:07:56:84:64:94:53:23:e1:a4:05:
75:b0:7f:5d:fa:77:f1:ad:a8:2d:58:93:41:41:87:
6e:b1:6d:60:bd:b3:e1:d4:8c:29:68:ad:e5:08:78:
33:78:22:df:c5:0d:04:38:ee:ae:15:f9:be:af:75:
11:e3:78:cf:72:06:34:5f:1f:18:96:9e:78:7a:5f:
79:36:a0:96:0a:1a:f7:89:9e:29:c9:45:f1:93:f9:
53:f0:bd:6b:45:93:08:9d:96:ac:66:ff:ea:c5:37:
a3:33:81:73:ff:f2:47:f7:b3:e4:80:84:db:2c:2b:
87:5f:70:e3:57:15:28:99:86:d2:3d:ae:36:ce:38:
a6:29:2f:45:7e:e5:44:42:5d:48:a5:6f:b5:4f:12:
54:40:41:3a:3d:49:41:c7:58:fc:57:93:32:1d:94:
b8:cf:ed:9f:76:47:ab:97:e4:df:78:2e:af:fa:9c:
ec:dd:d8:77:58:1c:99:60:c3:9b:82:e7:bf:47:d7:
9d:0f:54:a0:c8:57:1f:8d:4a:6e:23:ff:c4:1e:af:
37:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:3E:A0:72:70:66:66:28:4D:2E:2F:F0:06:69:FE:B8:57:D4:23:42
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3232342e3133362e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.224.136.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:07:3f:7d:71:94:ec:92:f8:57:a2:4b:02:eb:06:ed:59:55:
03:3e:b1:02:00:93:05:c0:ce:cb:e5:bd:42:67:64:af:ce:4a:
64:8d:d9:e9:d6:a6:db:2b:96:ae:bd:56:8c:52:69:2a:4a:88:
6c:cb:ba:44:57:c2:23:ae:f5:38:eb:e0:be:aa:3b:c4:e5:01:
a7:8a:ec:01:39:d5:08:de:70:34:68:72:ed:a5:7d:57:e5:a7:
1a:64:64:f9:d5:71:bd:84:a8:90:4e:7e:04:04:70:82:7e:a3:
ca:1c:b8:f8:f5:92:b3:39:dd:28:9b:5a:28:24:28:ea:09:dd:
9a:4a:03:ac:89:27:cb:77:75:13:f3:c4:37:c9:93:4a:31:df:
70:fb:e0:ff:3a:90:b4:28:20:09:a2:46:14:e1:5b:6f:82:0b:
33:9c:d2:fa:16:1c:0b:b6:eb:43:d4:88:a1:62:4a:5d:91:bf:
8f:a2:b6:c0:3c:e3:1f:e1:d4:03:66:e6:db:d8:a1:3d:32:c6:
76:07:85:25:07:64:09:4a:e0:db:62:53:9e:2c:a9:54:8e:f4:
b0:4a:2e:29:56:39:0a:78:54:19:5d:06:3b:73:3b:2d:18:d6:
0a:02:18:7a:52:ee:37:63:08:d2:3a:40:cf:d0:57:2f:c6:5b:
5a:b3:c1:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 09:23:50 2024 by rpki-client on console-ams.rpki-client.org