Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136342e302f32342d3234203d3e203232333633.roa
File: 3138352e32392e3136342e302f32342d3234203d3e203232333633.roa (raw, json)
Hash identifier: 97NutzuieNAKqo6aeUZ4SiLDXlUVAhgZaUeLwl/T3HY=
Subject key identifier: 81:E9:C2:7E:EA:B7:FA:14:F9:78:72:DE:14:B9:F7:52:C4:9B:17:53
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 64BE7559994C54779D87C012D2EA300AB1356EC0
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136342e302f32342d3234203d3e203232333633.roa
Signing time: Mon 02 Oct 2023 05:23:37 +0000
ROA not before: Mon 02 Oct 2023 05:18:37 +0000
ROA not after: Mon 30 Sep 2024 05:23:37 +0000
asID: 22363
IP address blocks: 185.29.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:be:75:59:99:4c:54:77:9d:87:c0:12:d2:ea:30:0a:b1:35:6e:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Oct 2 05:18:37 2023 GMT
Not After : Sep 30 05:23:37 2024 GMT
Subject: CN=81E9C27EEAB7FA14F97872DE14B9F752C49B1753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bd:cb:49:00:a3:ad:fb:b8:18:47:be:74:98:
4c:52:cc:c7:d6:16:bc:c5:b7:91:11:33:c5:01:a4:
05:08:42:b4:af:a3:ee:69:76:e7:0d:ce:1e:30:da:
98:a1:f2:c0:f9:7f:42:9e:a5:51:3a:9b:18:86:0d:
68:86:a8:72:fa:43:87:66:64:b8:df:68:e1:ac:ed:
de:68:9c:60:82:60:75:62:0b:f6:bd:52:a9:72:57:
1f:6f:c6:bd:e7:ae:5c:77:ff:02:6b:36:0b:c5:66:
a1:45:6f:e4:c6:36:95:cb:6d:e8:85:5b:67:8c:15:
59:07:d9:89:8f:e5:d8:11:e9:f9:6f:bd:a2:22:a6:
7e:af:f6:98:00:8b:81:10:c1:26:eb:6d:06:49:57:
20:bb:67:3d:42:48:fd:4d:15:1b:4a:ed:e9:3e:b3:
e8:8b:b9:7c:58:d1:be:bf:2b:61:60:e8:fb:57:61:
d6:ce:88:0e:29:51:58:c1:dd:61:03:b9:f7:70:a2:
6f:ab:f6:e3:41:26:40:3a:ca:35:d2:03:4a:08:65:
20:48:9b:be:1a:da:a8:ee:5d:39:d6:2d:dc:f2:cc:
3e:ae:e8:8a:3c:70:c8:75:31:9f:36:2c:f5:0c:3a:
76:14:08:33:ad:40:d4:86:c8:79:a6:88:1f:44:9c:
2d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E9:C2:7E:EA:B7:FA:14:F9:78:72:DE:14:B9:F7:52:C4:9B:17:53
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136342e302f32342d3234203d3e203232333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.29.164.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:95:29:39:13:e7:0b:12:a1:ac:d0:bf:43:96:28:9d:7a:4d:
c1:63:01:7e:b0:38:7b:80:3b:e4:76:46:89:e1:2d:49:65:2b:
94:3b:e9:95:a9:8c:04:6f:d5:c7:7e:8c:d3:d8:b7:be:d0:f0:
fb:8e:8e:d8:84:dd:7a:a4:83:cb:60:80:13:a4:20:d0:88:33:
0e:16:a5:fa:67:fc:61:c6:1c:58:0b:49:3c:19:10:8f:3d:b4:
bf:c1:ea:11:e0:47:80:73:3e:6f:8a:5b:cf:04:75:8b:88:fc:
a7:31:29:94:6e:26:c0:09:fc:e5:1e:a9:8a:8b:66:bb:f3:ef:
ab:a0:8f:c4:12:9c:9b:d9:58:a6:97:ff:25:81:de:fe:7b:d5:
f9:4a:5b:ef:5b:96:76:c0:ac:cb:b7:22:15:d5:45:98:57:54:
1d:03:14:1e:df:2e:78:65:b3:9e:ea:e1:28:e3:e1:a8:c8:f6:
7e:b9:06:80:34:61:02:a4:f8:f8:4f:b9:6f:fc:ad:c7:a1:71:
8a:3f:e5:ed:8c:53:0e:fa:ee:96:ca:f8:94:6d:bb:04:7a:7f:
13:e4:ff:2c:cc:73:f7:e1:ea:08:87:49:77:87:c2:01:e0:7a:
ba:57:37:0e:92:61:71:32:22:7a:ca:f6:23:e3:33:1c:a4:98:
45:96:a7:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 23:54:56 2024 by rpki-client on console-fra.rpki-client.org