Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/3138352e322e3136322e302f32332d3234203d3e203631333137.roa
File: 3138352e322e3136322e302f32332d3234203d3e203631333137.roa (raw, json)
Hash identifier: xuGHb5eFyDpCiqjUnIbYBR/C7LQ6gO7xQmGZCCQydXc=
Subject key identifier: 85:A7:CD:6C:72:42:3D:18:E0:65:AD:14:13:4B:B3:00:6A:DA:59:70
Certificate issuer: /CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Certificate serial: 03A6B8F7F00613D8C26B66D635BF5D5DD4605677
Authority key identifier: 9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/3138352e322e3136322e302f32332d3234203d3e203631333137.roa
Signing time: Sat 03 Feb 2024 12:23:32 +0000
ROA not before: Sat 03 Feb 2024 12:18:32 +0000
ROA not after: Sat 01 Feb 2025 12:23:32 +0000
asID: 61317
IP address blocks: 185.2.162.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:a6:b8:f7:f0:06:13:d8:c2:6b:66:d6:35:bf:5d:5d:d4:60:56:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Validity
Not Before: Feb 3 12:18:32 2024 GMT
Not After : Feb 1 12:23:32 2025 GMT
Subject: CN=85A7CD6C72423D18E065AD14134BB3006ADA5970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5a:47:fd:d2:a2:66:93:41:21:2d:95:12:59:
ca:33:76:b5:15:a8:06:a8:b9:78:52:3a:a1:79:77:
1e:4f:f3:10:37:61:ff:10:64:86:a8:96:00:53:b1:
ef:39:fc:ab:e2:47:f1:d8:c1:af:bf:4f:a7:ae:40:
b6:11:b2:c7:a9:7d:59:c9:c7:3b:81:61:4b:88:a5:
1a:96:08:83:27:c7:aa:bb:25:e2:65:dd:36:0e:10:
ad:84:c0:66:36:6c:3f:52:9f:e9:37:9c:52:eb:ce:
83:35:dc:56:fc:19:cf:f1:a2:04:22:4e:30:87:d0:
1e:0d:24:f9:b5:b6:7f:ba:94:e4:ac:a2:90:90:f9:
29:3b:1d:f9:57:2f:4e:76:e6:50:d1:77:d4:e6:85:
af:64:97:d2:62:e7:9d:11:04:6c:4d:7f:ef:95:5a:
10:5e:ae:87:58:be:77:2d:bd:ae:8d:a9:58:ec:55:
3d:01:5f:a7:50:76:f5:19:54:9b:f9:5f:4d:cf:c9:
f5:92:f0:97:85:f6:57:57:85:6e:0e:23:08:f2:02:
e4:8d:b8:7e:b3:3d:36:84:22:eb:66:a4:df:59:68:
e1:67:c9:87:b8:27:9e:ca:0d:bc:13:46:a2:fc:0a:
09:cf:57:11:be:20:f2:e9:14:da:6e:03:4e:0b:9d:
de:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:A7:CD:6C:72:42:3D:18:E0:65:AD:14:13:4B:B3:00:6A:DA:59:70
X509v3 Authority Key Identifier:
keyid:9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/3138352e322e3136322e302f32332d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.2.162.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:de:87:28:bc:3d:57:f5:78:eb:4a:40:b9:69:b5:e7:11:08:
c8:47:10:d8:6e:ad:d1:04:e6:7d:cc:d8:64:c2:b0:1b:31:70:
56:7b:c5:46:c8:7c:f2:c3:be:6b:90:15:82:c4:ea:44:69:43:
9d:93:4c:32:9f:49:c3:f8:cf:0e:7b:08:1d:e1:34:ed:e1:13:
00:de:bc:e5:6e:be:0b:e9:85:c5:c2:12:96:c3:eb:b8:94:6c:
30:a5:b1:14:9e:94:1b:dd:2a:61:fe:ea:4c:67:7e:04:38:3a:
d7:eb:c2:3c:16:ab:e5:c4:12:14:f2:67:be:3c:c5:45:2d:f5:
81:5b:e5:ac:6e:09:61:7d:14:fd:75:36:6e:67:a0:93:ae:80:
0a:4b:44:f3:d6:77:48:90:c1:8f:51:8d:53:be:e7:46:68:97:
19:24:a5:e5:64:7a:a6:03:96:08:b3:89:bb:6c:b4:9a:ad:96:
48:6c:47:06:f6:b3:5d:18:9a:47:0a:96:d0:45:6b:a7:79:d3:
f7:65:51:b4:33:48:26:83:c2:8f:1a:aa:99:43:d3:89:26:f2:
ee:7f:83:ed:ef:eb:ec:1f:da:7b:6a:b0:21:b4:bf:fb:f0:91:
1b:2e:24:6b:7a:5f:ce:4f:af:53:db:df:e0:d6:d4:86:aa:19:
94:e5:ff:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 05:47:01 2024 by rpki-client on console-ams.rpki-client.org