Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36302e302f32342d3234203d3e203437323633.roa
File: 3138352e3133302e36302e302f32342d3234203d3e203437323633.roa (raw, json)
Hash identifier: Mxm0Th4cvATiCDtJUDgGxPClmGBwI49A7J/53MEK4wc=
Subject key identifier: 77:93:3B:EA:22:73:ED:EA:5E:53:45:3F:7E:32:6D:F0:CA:9A:8D:09
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 2988E52F7DD40A5DB722754E1464CBEC1A73675A
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36302e302f32342d3234203d3e203437323633.roa
Signing time: Tue 18 Jun 2024 17:12:38 +0000
ROA not before: Tue 18 Jun 2024 17:07:38 +0000
ROA not after: Tue 17 Jun 2025 17:12:38 +0000
asID: 47263
IP address blocks: 185.130.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.mft
rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 14:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:88:e5:2f:7d:d4:0a:5d:b7:22:75:4e:14:64:cb:ec:1a:73:67:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: Jun 18 17:07:38 2024 GMT
Not After : Jun 17 17:12:38 2025 GMT
Subject: CN=77933BEA2273EDEA5E53453F7E326DF0CA9A8D09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8c:37:56:be:88:20:b2:ee:30:11:9c:08:25:
28:64:2e:e7:51:9b:89:34:97:2a:e8:cb:4d:51:54:
fb:fe:33:8f:25:c2:b3:28:a2:75:3e:bd:d4:82:ad:
7c:bb:b8:17:d0:2e:b4:84:cf:2f:5b:f6:51:36:6e:
10:bc:d0:f1:fb:c9:2f:6e:c6:84:ec:a3:a0:11:de:
13:d0:59:fe:ce:d4:e5:a7:5a:51:03:8b:2d:1c:47:
cc:4e:38:c4:e4:93:1a:31:97:8a:8e:e6:40:d1:de:
a1:15:ee:ce:90:c1:f9:84:20:4e:6e:2d:e9:f4:a2:
97:9f:28:81:e4:b9:2b:67:e5:c2:a8:0f:d9:5e:ff:
46:b7:dc:a2:c7:0b:65:6b:e4:68:a4:81:74:58:f8:
d1:6a:c2:11:72:34:a1:48:36:dc:6a:01:33:a7:2a:
7f:24:e8:c7:70:fc:42:4e:a5:db:18:3f:8c:5f:15:
a7:f0:77:ac:a2:55:e7:72:e3:62:e1:de:81:b7:ca:
71:94:4d:50:23:01:7f:55:0c:eb:a0:0c:5d:89:6c:
9b:b9:9a:4a:95:98:dc:de:e2:62:ac:4c:2b:7a:eb:
04:ea:40:bc:47:6e:c0:c4:f3:6c:b8:b1:0f:03:77:
32:a0:93:7e:00:b2:83:19:2d:f8:6e:73:99:e4:04:
ca:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:93:3B:EA:22:73:ED:EA:5E:53:45:3F:7E:32:6D:F0:CA:9A:8D:09
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36302e302f32342d3234203d3e203437323633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.60.0/24
Signature Algorithm: sha256WithRSAEncryption
68:aa:41:e9:fb:5e:0b:c1:fd:a5:55:ee:ee:e6:4f:77:4c:ab:
4b:b5:79:2c:19:0c:5e:ca:08:95:89:c3:d4:29:72:1b:44:c7:
ab:42:34:ff:44:02:74:5b:07:59:fd:bc:0f:38:2d:d5:86:e0:
04:af:10:ea:f8:af:c5:ef:17:6f:59:f5:f4:ae:8c:d2:2e:f7:
3f:92:fe:95:75:86:a6:3b:78:8d:82:96:8a:79:76:e2:57:6d:
1a:51:02:19:6f:fc:03:09:56:99:5a:1d:3b:bb:ef:2d:57:40:
c3:9d:35:d4:4b:e0:b3:30:fc:c3:a3:da:b8:0a:9b:d7:be:21:
fe:48:8e:9b:e0:b7:51:6d:3d:ff:bc:02:25:a7:21:d4:7c:43:
aa:0c:e6:85:8f:91:6b:e5:f9:94:60:4e:1e:59:27:36:40:63:
e6:b2:54:9e:97:f4:4c:fc:ba:a4:42:a3:4e:f2:27:e4:cc:dd:
0e:80:5f:54:1f:89:15:d7:20:a1:ed:16:de:cf:29:82:e1:1e:
ee:f9:9e:f3:82:f1:59:ba:58:9d:1b:93:2e:36:f5:43:62:40:
5f:40:97:62:80:65:b7:9a:d2:fe:20:24:0c:81:da:84:9d:9f:
9d:7f:54:5e:d4:34:c2:3a:29:6d:c8:fb:61:ab:fc:01:8f:8e:
76:b0:d2:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 19:26:21 2024 by rpki-client on console-ams.rpki-client.org