Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/3138352e322e3230352e302f32342d3234203d3e203531303539.roa
File: 3138352e322e3230352e302f32342d3234203d3e203531303539.roa (raw, json)
Hash identifier: FjYvYO8OhRhy5xMwWCOsQCSTt4t7VD1f49kiToXw4CE=
Subject key identifier: E0:69:81:DC:2C:F0:19:5B:1C:DD:DC:83:97:63:ED:00:8B:37:BA:B4
Certificate issuer: /CN=4502e63ce01cad239ac397bc2bb5e6c347dceeea
Certificate serial: 41D5EC8304E56244AC31B5804A0745862FDADBC4
Authority key identifier: 45:02:E6:3C:E0:1C:AD:23:9A:C3:97:BC:2B:B5:E6:C3:47:DC:EE:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/3138352e322e3230352e302f32342d3234203d3e203531303539.roa
Signing time: Tue 07 Nov 2023 09:47:03 +0000
ROA not before: Tue 07 Nov 2023 09:42:03 +0000
ROA not after: Tue 05 Nov 2024 09:47:03 +0000
asID: 51059
IP address blocks: 185.2.205.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl
rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:d5:ec:83:04:e5:62:44:ac:31:b5:80:4a:07:45:86:2f:da:db:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4502e63ce01cad239ac397bc2bb5e6c347dceeea
Validity
Not Before: Nov 7 09:42:03 2023 GMT
Not After : Nov 5 09:47:03 2024 GMT
Subject: CN=E06981DC2CF0195B1CDDDC839763ED008B37BAB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:49:d9:7a:33:fe:51:73:04:6d:f9:66:49:4a:
d6:98:f2:b8:15:c5:02:a1:54:84:1f:0d:d2:a5:4c:
ec:d4:75:05:72:3c:2e:17:b3:6b:5e:82:b4:64:63:
80:de:29:b4:8f:0f:0d:25:90:23:a7:00:10:78:5f:
56:28:5c:75:57:a3:cb:16:5c:f4:04:a8:f8:76:43:
8d:b5:f0:74:d4:54:a8:8e:c8:7d:d3:18:72:39:b1:
11:85:85:e5:35:34:3c:0d:aa:67:bb:09:74:b0:f1:
b2:61:1c:ac:01:a9:d9:70:0a:1f:aa:b2:31:61:ea:
ff:1b:a1:00:7f:a0:57:96:aa:f6:ac:ff:13:ab:55:
4d:58:d9:26:40:e3:79:c5:4f:9a:15:d1:bd:07:11:
09:44:c8:4d:95:bb:5e:dc:d5:e3:0c:1b:b2:b9:81:
0f:75:90:4c:fa:af:d4:2b:15:b3:0f:29:19:4b:1f:
44:4a:7c:95:51:33:e3:ff:88:48:a6:ed:d5:e7:c8:
c6:70:2c:f6:fa:ea:fd:68:83:5f:0b:ea:7e:b2:3b:
21:66:24:22:91:70:7b:05:42:3d:1e:1c:36:66:8f:
bc:98:f4:13:88:f6:f1:38:95:ca:ed:37:7a:81:45:
b5:c1:d9:f3:85:49:2e:0e:70:be:7a:ca:b3:2a:d5:
21:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:69:81:DC:2C:F0:19:5B:1C:DD:DC:83:97:63:ED:00:8B:37:BA:B4
X509v3 Authority Key Identifier:
keyid:45:02:E6:3C:E0:1C:AD:23:9A:C3:97:BC:2B:B5:E6:C3:47:DC:EE:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/3138352e322e3230352e302f32342d3234203d3e203531303539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.2.205.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:dc:5f:14:fd:d5:d0:13:3c:ff:5f:22:fc:f8:4f:55:ec:59:
f2:80:5c:6b:9e:ca:cf:36:a0:86:d9:d1:3e:3a:c0:63:89:2b:
42:81:4b:3f:23:e2:7f:5e:c5:f1:25:7e:95:83:c0:b5:e4:52:
e2:1b:3a:7d:9f:b6:58:b0:8c:4a:9c:a2:22:a4:4e:e1:ef:fa:
44:0b:be:25:f0:c5:3b:7e:6a:e5:8e:d0:29:c1:2b:a3:22:67:
e4:d2:88:aa:eb:b9:1b:36:ec:ad:55:45:5c:ba:0b:83:be:d2:
fb:37:eb:5c:d3:68:47:d9:f9:5b:70:56:e8:f4:69:d7:f0:b9:
c0:a1:c4:e9:f7:5b:05:43:82:f0:7d:68:8a:88:f6:60:dd:b7:
d2:58:79:94:5a:97:91:98:59:06:bb:e7:d5:55:b5:55:01:a3:
03:92:89:a8:c2:df:76:5a:f9:7e:79:14:1c:91:53:0d:fe:b0:
1b:eb:6e:e8:25:54:0a:46:48:95:c3:d9:07:4b:c7:ab:1a:2e:
cb:9b:8d:d0:ca:36:6e:0a:f1:e9:ce:a3:33:72:68:11:d8:9c:
14:dc:d2:fb:ac:d4:62:e8:e6:ae:56:42:35:86:30:4d:91:1b:
50:8a:80:c4:bd:51:67:81:80:4f:12:3f:37:6c:1f:67:6b:e0:
c1:29:96:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 23:16:06 2024 by rpki-client on console-ams.rpki-client.org