Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/3138352e3235302e34312e302f32342d3234203d3e203536393133.roa
File: 3138352e3235302e34312e302f32342d3234203d3e203536393133.roa (raw, json)
Hash identifier: GvBFiY+gVuHFdOFBSYuhvvCCYLVGwKsBLj3xL5HG9as=
Subject key identifier: B9:5B:5B:A2:61:3F:DF:22:EB:BF:14:0F:06:CB:D5:94:2F:5F:EE:78
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 46F3A564E281246236411C7A9BA6F2FF13C66A27
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/3138352e3235302e34312e302f32342d3234203d3e203536393133.roa
Signing time: Tue 09 Apr 2024 04:33:13 +0000
ROA not before: Tue 09 Apr 2024 04:28:13 +0000
ROA not after: Tue 08 Apr 2025 04:33:13 +0000
asID: 56913
IP address blocks: 185.250.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:f3:a5:64:e2:81:24:62:36:41:1c:7a:9b:a6:f2:ff:13:c6:6a:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Apr 9 04:28:13 2024 GMT
Not After : Apr 8 04:33:13 2025 GMT
Subject: CN=B95B5BA2613FDF22EBBF140F06CBD5942F5FEE78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f4:4a:b0:da:74:93:f4:0a:05:1b:ee:c9:eb:
c4:ab:9a:5a:0e:e8:34:c9:53:48:29:3c:0f:3c:3a:
05:4c:cf:32:21:89:02:b8:47:58:ac:eb:8f:e9:e0:
42:9f:ba:b4:30:10:79:2f:06:c3:af:4d:bc:8a:68:
19:89:96:96:45:a6:0b:de:3e:64:b4:ed:c6:34:1a:
cd:b7:41:2c:e3:c4:45:1e:d5:79:f1:16:27:38:97:
34:87:f9:03:72:41:7f:3e:92:68:d6:ab:41:df:f4:
3d:8b:b4:70:5c:f4:30:36:9e:bf:8c:cb:6c:ac:94:
a8:65:ed:90:fd:b3:5b:f0:85:3a:b5:b2:be:9d:fc:
68:c5:be:27:4f:26:ca:f3:4c:86:a5:95:5d:2a:71:
da:5c:e3:73:a0:3e:45:ca:7e:13:19:4d:da:cb:fa:
90:4c:31:15:e4:45:10:62:75:75:d2:84:72:0b:eb:
d6:d2:73:4c:55:eb:e0:b6:e3:ce:bd:29:5e:a1:0d:
e4:65:fc:9f:9a:ac:c3:80:56:4d:b1:95:c7:30:01:
88:96:7f:5d:b5:f3:f0:ab:05:2e:77:ab:fd:30:f3:
a2:47:e7:6f:35:b3:e0:0e:60:80:99:32:8c:c8:c3:
4c:8f:98:cb:6c:85:1c:b8:7f:72:e2:b7:11:05:96:
71:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:5B:5B:A2:61:3F:DF:22:EB:BF:14:0F:06:CB:D5:94:2F:5F:EE:78
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/3138352e3235302e34312e302f32342d3234203d3e203536393133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.41.0/24
Signature Algorithm: sha256WithRSAEncryption
17:04:71:2e:16:61:ad:f7:14:5f:ac:9d:51:79:f7:00:83:9f:
5d:ce:2c:b7:fe:2b:bd:26:a8:a2:7a:53:bc:82:21:b4:52:36:
16:bc:66:bb:32:c8:db:bd:7e:97:f9:75:57:b6:1d:f0:96:8f:
ba:1b:45:db:57:60:7a:42:3f:10:b3:d1:ad:93:2b:a5:87:19:
92:94:52:76:17:7a:58:fe:b9:88:98:ac:f2:b3:09:0f:16:e4:
e5:4a:66:80:0e:b6:1e:9f:3c:99:e3:1e:24:ec:d3:0a:f2:ad:
5f:3e:4f:fe:f3:5b:2c:02:af:a3:11:18:64:17:2d:53:f1:2c:
a2:f7:09:4c:0a:8e:11:33:c5:9d:a7:ee:7a:ae:98:72:af:6c:
84:69:13:32:08:b0:4a:7e:a5:fe:f7:6c:99:7f:ff:16:18:ba:
82:dd:34:64:05:97:9d:fb:ab:04:d8:50:ad:08:ff:e7:24:eb:
d4:81:ec:6a:07:d4:1b:78:a5:d8:58:85:0e:e9:a2:ec:bc:b1:
8e:47:33:3e:6f:28:23:af:0b:4d:f3:b4:d6:8d:9b:ff:41:cb:
7f:26:88:3b:1a:7e:7b:4a:b0:01:8a:d1:cc:0a:41:f8:6e:8e:
a3:db:18:69:40:55:0f:3b:7b:27:6e:13:61:56:be:c8:79:00:
d1:5d:6d:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 13:55:59 2024 by rpki-client on console-fra.rpki-client.org