Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36302e302f32342d3234203d3e20323039383234.roa
File: 3138352e3133302e36302e302f32342d3234203d3e20323039383234.roa (raw, json)
Hash identifier: b1kMN4sT+svDmOk+usC82pjhXmME98BRAQi+rNYK2zg=
Subject key identifier: 8D:A3:E4:25:DD:D8:0F:4C:F7:1D:07:4F:C8:95:51:78:6C:E1:E4:38
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 5EB777FA60EE3ABF6D1B69B965574F0A9C36327F
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36302e302f32342d3234203d3e20323039383234.roa
Signing time: Wed 23 Aug 2023 08:45:16 +0000
ROA not before: Wed 23 Aug 2023 08:40:16 +0000
ROA not after: Wed 21 Aug 2024 08:45:16 +0000
asID: 209824
IP address blocks: 185.130.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.mft
rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 11:16:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:b7:77:fa:60:ee:3a:bf:6d:1b:69:b9:65:57:4f:0a:9c:36:32:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: Aug 23 08:40:16 2023 GMT
Not After : Aug 21 08:45:16 2024 GMT
Subject: CN=8DA3E425DDD80F4CF71D074FC89551786CE1E438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:82:2e:45:95:58:86:21:a0:fb:ac:f1:0b:ce:
6b:82:3e:6e:9b:6b:62:57:3b:1c:16:6e:18:df:9f:
41:67:39:b8:3c:54:01:be:cd:a7:ff:d4:2b:a2:b8:
15:12:8d:e0:77:b4:47:d6:f2:2e:b7:98:9c:62:37:
c3:e9:51:97:d3:20:c3:4c:d2:c2:a3:a9:41:b2:4e:
ba:f8:00:c6:09:01:e4:2d:8b:c6:a2:54:5e:74:6b:
da:be:0e:a7:c9:4d:34:f1:71:bc:e7:93:b2:25:39:
3f:93:57:15:51:4d:c5:e1:29:ce:27:2b:d4:3c:a3:
33:a9:df:ee:1f:81:89:bd:a6:23:ee:d2:72:c5:00:
ca:5e:b7:62:d7:6e:aa:0d:a1:d1:ef:08:40:14:d8:
4f:77:4a:59:4f:77:46:65:c0:9b:03:ae:29:18:fd:
c9:e6:d7:b6:73:21:10:73:73:24:2f:25:ed:5f:6c:
27:84:7d:c4:4c:89:11:66:fe:a2:fb:84:03:28:c2:
aa:92:1f:49:c7:27:38:88:f2:4b:25:47:6b:f0:ed:
54:ac:d0:54:12:a9:7b:19:f0:9c:a7:24:d6:a2:e2:
30:46:dd:de:7b:2f:66:32:17:b5:65:78:6d:f2:b8:
c9:4f:ff:b0:dd:02:c7:7f:c3:e3:9d:f0:17:29:05:
68:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:A3:E4:25:DD:D8:0F:4C:F7:1D:07:4F:C8:95:51:78:6C:E1:E4:38
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36302e302f32342d3234203d3e20323039383234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.60.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:5b:a4:e9:b5:1f:13:4a:20:4a:ab:76:04:5a:6d:2e:01:2c:
80:bf:15:a2:05:a3:aa:54:81:6a:15:ec:4a:98:0b:99:99:9c:
cd:ba:6b:05:7b:1a:05:62:26:2f:c1:a2:a3:33:55:5a:a1:8e:
2e:56:b0:1e:63:d5:d8:3d:3d:cb:94:39:03:f3:56:ab:30:fa:
61:a8:ff:ec:dd:5a:31:8e:2e:b2:e8:12:ac:be:8c:63:cc:91:
7f:90:a2:2e:6d:3d:e1:14:00:99:65:00:d0:78:b2:2a:36:22:
a8:9a:78:83:1f:1b:ff:c4:6b:04:a4:50:01:08:46:6e:66:ee:
a3:de:5b:25:31:23:3e:ba:ab:98:c2:63:16:ec:b0:62:07:16:
6b:29:92:83:45:a7:d5:46:70:18:26:6a:ac:03:1a:ac:cf:b0:
db:a4:80:ed:9a:66:7c:5b:0f:5a:11:ab:05:c9:dd:8e:58:1a:
6c:96:52:b2:16:f9:00:8f:fb:58:a2:9e:20:5a:75:da:c0:b0:
5f:f6:b9:3b:dd:7d:f9:ba:e1:ca:5b:c7:02:91:e2:40:1d:f0:
a8:63:a0:3e:6e:7c:70:9d:98:70:83:12:3b:d8:f4:d3:e1:67:
ea:3d:00:dd:56:94:46:6c:5e:37:b9:52:6f:65:63:cb:0f:e6:
6c:73:05:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 18:19:30 2024 by rpki-client on console-fra.rpki-client.org