Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232312e302f32342d3234203d3e203631333137.roa
File: 3138352e3230352e3232312e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: g5PiGmzg77dK0yC4y6nwgHNNVM6bLZE4+wrrcIp9pl0=
Subject key identifier: DB:E8:59:4E:DA:EF:9F:77:A6:C7:06:9C:10:C5:AE:C6:3F:D1:4F:74
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 1185DF8AAB09B1788CE50D8F91166BA5B59761FC
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232312e302f32342d3234203d3e203631333137.roa
Signing time: Tue 06 Feb 2024 09:19:16 +0000
ROA not before: Tue 06 Feb 2024 09:14:16 +0000
ROA not after: Tue 04 Feb 2025 09:19:16 +0000
asID: 61317
IP address blocks: 185.205.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:85:df:8a:ab:09:b1:78:8c:e5:0d:8f:91:16:6b:a5:b5:97:61:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Feb 6 09:14:16 2024 GMT
Not After : Feb 4 09:19:16 2025 GMT
Subject: CN=DBE8594EDAEF9F77A6C7069C10C5AEC63FD14F74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:7a:50:94:77:77:40:0d:85:11:d9:ad:f8:7c:
70:23:00:ce:d0:8e:73:f9:4a:a8:85:2b:32:72:cf:
f4:13:d3:d2:ec:d8:d1:9e:cb:15:4d:d0:fc:28:a7:
dc:d7:3a:3a:5f:57:55:2b:de:7c:20:4f:2e:83:52:
0b:c6:84:d7:f3:33:97:46:67:0f:de:17:1f:f9:a8:
15:07:a0:f8:28:fa:0d:53:38:0d:6a:cf:d2:10:61:
db:cb:7f:f4:e7:86:32:68:df:d8:80:95:c0:1f:7f:
c9:66:00:c2:7b:d2:dc:8a:27:d3:48:bf:ce:c5:0e:
1b:db:86:bd:8e:b9:be:06:8b:5f:35:34:bd:00:11:
38:34:c3:23:18:f0:cb:fb:a9:12:92:b6:4b:f5:f9:
51:ad:d4:35:b0:0e:7e:68:5f:5e:2a:05:0d:2a:c9:
8b:4c:a8:4b:0b:a0:88:9a:c7:b6:53:b3:07:5c:98:
e3:45:75:f9:5f:be:d7:f2:07:d2:66:27:1c:c8:1c:
9b:45:30:0f:8d:f3:ca:ab:45:fa:4c:69:7f:85:53:
56:dd:c8:14:0c:98:a1:bd:4b:fc:1d:97:bb:68:47:
dc:85:6d:b0:d7:df:29:19:9f:db:66:00:20:0f:75:
c9:dd:9d:6d:b5:8a:22:bb:27:f3:02:37:5a:3f:6c:
53:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:E8:59:4E:DA:EF:9F:77:A6:C7:06:9C:10:C5:AE:C6:3F:D1:4F:74
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232312e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.221.0/24
Signature Algorithm: sha256WithRSAEncryption
38:0f:f1:de:9c:58:30:e0:45:64:8f:7e:bb:dc:30:60:22:8a:
38:78:7d:c6:39:7a:56:0a:05:a8:75:4a:53:aa:4f:e5:31:29:
9e:21:a3:46:17:22:8f:ea:8f:e3:51:db:92:a6:9a:60:fc:b7:
ef:dd:1b:0d:83:b0:13:62:fb:3e:06:7b:ea:63:d5:46:48:52:
f7:3c:d8:4c:f2:f9:ba:24:26:8f:af:06:61:c2:d1:21:95:34:
0a:51:ac:49:30:78:62:09:55:f1:9c:05:f2:f2:88:94:d2:3a:
a1:c0:20:73:e1:88:d0:a9:8f:f8:db:50:77:a4:c3:d5:42:97:
aa:09:32:16:96:3f:80:7e:49:dd:76:6c:ca:5c:79:3a:73:83:
1c:30:ce:a3:36:01:7e:6b:b4:29:cf:e1:08:32:49:35:6a:fb:
36:90:6a:2d:a1:3b:80:87:02:f7:d5:75:85:84:68:b7:39:e1:
bc:88:a7:12:ac:da:ce:21:3c:5c:a8:ab:7d:03:3d:a6:88:e9:
be:52:bf:f1:ce:5f:14:41:79:58:04:6f:dd:c9:2c:fb:37:4d:
ca:7f:9f:8f:c4:be:58:2d:4e:0b:c8:c9:fa:b7:03:b6:d8:98:
28:2a:5e:5b:1a:42:1c:33:fe:0f:32:54:7c:4e:5b:4a:f2:a9:
f4:50:0f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 21:05:40 2024 by rpki-client on console-fra.rpki-client.org