Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135342e302f32342d3234203d3e2032393134.roa
File: 3138382e3136342e3135342e302f32342d3234203d3e2032393134.roa (raw, json)
Hash identifier: sik7T3z6CtJXASg4UB4hkyKLrLvhKn9C/3HZ4FJ9bfs=
Subject key identifier: C9:69:06:98:78:32:4D:76:46:0B:F6:31:41:14:5E:36:78:65:D2:39
Certificate issuer: /CN=8b9ba9adde9635777bf586fd493e14cd30f7c4ca
Certificate serial: 617D203DFFF12210958A12BB54505C39E9143178
Authority key identifier: 8B:9B:A9:AD:DE:96:35:77:7B:F5:86:FD:49:3E:14:CD:30:F7:C4:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135342e302f32342d3234203d3e2032393134.roa
Signing time: Wed 13 Mar 2024 12:11:45 +0000
ROA not before: Wed 13 Mar 2024 12:06:45 +0000
ROA not after: Wed 12 Mar 2025 12:11:45 +0000
asID: 2914
IP address blocks: 188.164.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.crl
rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.mft
rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:7d:20:3d:ff:f1:22:10:95:8a:12:bb:54:50:5c:39:e9:14:31:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b9ba9adde9635777bf586fd493e14cd30f7c4ca
Validity
Not Before: Mar 13 12:06:45 2024 GMT
Not After : Mar 12 12:11:45 2025 GMT
Subject: CN=C969069878324D76460BF63141145E367865D239
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e4:ab:aa:4e:33:d3:31:1f:72:08:7f:57:e3:
55:13:d0:e7:dc:a5:b5:d4:25:f3:3b:f3:cf:6b:2b:
00:6f:0d:b8:42:0b:25:50:ab:6a:1e:af:7a:8e:dd:
db:35:d5:30:a1:e8:8f:cb:f2:77:ce:7f:ef:91:ad:
97:0f:8d:6b:95:32:67:6b:62:48:a1:2d:5c:c7:17:
54:34:4b:48:6b:97:ab:7a:01:7a:71:02:af:cc:c9:
7a:ef:b7:1c:f0:04:bd:56:ac:b8:fc:ce:b3:13:c2:
55:07:04:d8:de:d4:e1:2a:25:14:b7:d2:09:49:d6:
3c:57:c1:a1:7e:cd:34:d1:43:6a:39:79:89:d7:a1:
58:2c:81:a0:1a:3e:99:ff:16:7b:fe:5e:a4:e6:5a:
3b:63:c2:69:3f:45:2f:fe:bf:1d:b6:b6:b5:9a:1f:
f4:00:1e:42:66:77:ff:cb:2b:3a:be:40:ac:83:1b:
1a:10:da:ff:b5:ac:67:3a:02:3f:d1:f8:83:53:15:
c4:3f:7e:8e:7e:b2:3d:8e:c5:b1:63:b6:6b:aa:ab:
f2:c2:f8:f8:0b:91:b4:71:aa:74:f7:e0:02:73:d3:
3f:85:39:4e:d2:b6:5c:93:3f:48:e0:25:12:6e:25:
25:5a:33:7f:42:2a:21:23:4c:16:5c:f4:68:f2:9f:
a4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:69:06:98:78:32:4D:76:46:0B:F6:31:41:14:5E:36:78:65:D2:39
X509v3 Authority Key Identifier:
keyid:8B:9B:A9:AD:DE:96:35:77:7B:F5:86:FD:49:3E:14:CD:30:F7:C4:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135342e302f32342d3234203d3e2032393134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.164.154.0/24
Signature Algorithm: sha256WithRSAEncryption
34:bf:ba:7d:f7:c9:b2:17:b6:91:39:70:7c:66:0b:3b:09:97:
e5:2d:b3:de:53:51:e7:6b:d4:0d:fc:75:23:21:ef:04:57:96:
7a:d4:63:c6:e0:49:f7:bc:6c:da:80:1d:e0:56:9b:9f:54:6e:
59:63:bc:9e:bd:31:87:10:f4:49:2e:f7:14:54:fd:20:5b:a0:
f0:0c:c5:e1:45:24:ae:d4:eb:4d:27:ac:52:7b:9d:75:4a:80:
da:47:18:5e:fd:0c:cd:4f:33:1e:2a:cd:29:59:0d:2c:92:fb:
87:73:6e:8b:6f:1c:c3:5d:79:9c:63:98:17:b4:64:e4:bb:d4:
3f:81:13:d9:ed:9b:5f:38:d2:f8:89:1a:39:e2:15:8a:45:61:
ad:63:b0:66:c0:82:ae:3d:62:44:bb:16:e1:8b:13:61:83:36:
32:e3:b1:83:d6:f7:9d:37:99:82:f0:4a:12:b5:48:15:19:53:
43:f8:18:3d:23:a9:03:73:7a:30:0f:ea:26:ba:11:cb:7a:74:
77:79:c3:9c:9f:ba:1f:ce:4d:dd:7c:f2:0b:5d:ec:26:a4:15:
33:5c:68:b6:dd:c8:4e:98:a3:76:d0:98:17:ef:30:b8:aa:6b:
51:1c:ca:63:12:56:fe:47:1b:f2:2e:5c:df:cf:86:4a:87:74:
61:c8:e0:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 21:26:31 2024 by rpki-client on console-fra.rpki-client.org