Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137342e302f32342d3234203d3e20383334.roa
File: 3138352e3137322e3137342e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: uFIIJ4S5SExRHW2/uGrNGaMlyyI0848UYlYHP/pZBMo=
Subject key identifier: 64:E7:BA:FF:24:47:B7:53:3C:D7:73:61:91:BF:E2:66:19:09:E7:ED
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 13C7DA2D4493BB3A3C419E0BBF583DC4D159FC8D
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137342e302f32342d3234203d3e20383334.roa
Signing time: Fri 31 May 2024 08:40:32 +0000
ROA not before: Fri 31 May 2024 08:35:32 +0000
ROA not after: Fri 30 May 2025 08:40:32 +0000
asID: 834
IP address blocks: 185.172.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.mft
rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 19 Jun 2024 15:18:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:c7:da:2d:44:93:bb:3a:3c:41:9e:0b:bf:58:3d:c4:d1:59:fc:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: May 31 08:35:32 2024 GMT
Not After : May 30 08:40:32 2025 GMT
Subject: CN=64E7BAFF2447B7533CD7736191BFE2661909E7ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:93:83:9f:8a:41:ba:dc:ae:97:6a:a3:1f:fb:
44:a5:79:b4:51:2c:ef:01:62:ee:01:a5:c7:a0:c8:
33:0e:87:0b:76:21:0c:54:9d:e4:4f:28:8a:85:e7:
db:82:12:16:5f:49:54:06:a2:ad:5d:c0:06:42:54:
df:dc:0f:e8:fb:94:6b:c0:81:5f:9e:b4:9f:6a:2d:
50:1f:5e:72:d5:db:03:1a:ee:d8:64:9b:dc:0a:3a:
c4:50:da:af:c1:f6:ae:d8:4f:48:e1:21:cc:a2:ac:
be:b4:7c:0f:34:26:9b:f6:83:82:df:bc:17:bf:b1:
29:b9:ce:6b:c5:ba:53:4c:4b:7e:d4:cf:cf:b7:24:
d6:79:aa:db:cb:3c:5d:b3:58:dc:b8:63:cf:35:54:
0e:fa:4f:cf:28:a0:a7:8a:13:db:6f:72:61:c3:6d:
70:9d:ca:b6:62:21:47:b6:3d:3e:1f:9a:2b:ca:1b:
c6:42:11:45:00:a2:7e:ae:78:11:50:a9:7a:07:aa:
9f:07:b0:6c:a1:2d:22:d4:36:ad:00:6d:70:c6:1e:
d3:4f:0b:d4:98:94:d1:24:bb:7c:5e:75:52:bc:b9:
6e:1d:7b:99:61:98:57:09:c7:2c:af:9d:f7:c8:95:
8d:72:f6:7e:03:bf:5a:3f:bc:af:dd:fd:d0:e9:50:
f5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:E7:BA:FF:24:47:B7:53:3C:D7:73:61:91:BF:E2:66:19:09:E7:ED
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137342e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.174.0/24
Signature Algorithm: sha256WithRSAEncryption
76:69:cc:21:f4:c7:16:24:95:2f:fa:11:e7:99:49:0c:fe:23:
4e:3d:62:04:b3:a2:ed:89:7d:49:bb:99:54:e2:4b:ae:d1:4c:
33:cc:00:8c:d3:17:37:51:0c:17:60:4a:33:f4:d6:f6:58:46:
69:a8:5e:91:b0:87:1e:dc:33:94:96:e3:4e:62:20:79:2c:87:
c2:55:c7:82:0f:60:16:ab:86:21:9f:f4:ff:ba:9b:a0:91:1d:
cb:d5:a2:6e:f1:51:9e:69:68:5e:14:db:3e:2c:82:27:73:59:
34:46:bd:50:75:e2:18:7b:2d:70:67:a8:07:67:ba:83:5b:5b:
fe:6f:9b:f2:d9:dd:5c:b2:4b:7c:a6:ab:a3:3f:9a:f7:03:ae:
98:a6:10:56:e0:5e:b5:dc:d7:ca:d4:20:a7:91:b8:de:c2:5d:
55:5b:04:61:87:7d:7b:05:c9:b5:6b:49:3a:84:7d:69:ed:c3:
dc:c9:49:3d:25:c8:9b:0e:2e:cc:e6:53:4e:83:b8:85:59:1a:
ee:0a:8d:dc:36:d1:6e:f8:47:17:dd:cf:41:58:f9:3c:51:54:
b2:ef:1e:de:7c:c4:c8:de:a8:4c:ad:c0:8c:ca:ed:a3:fc:bb:
f3:cc:50:e1:88:e2:78:90:38:1b:3e:03:73:d4:17:11:4c:cf:
99:26:91:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 19 00:46:55 2024 by rpki-client on console.sobornost.net