Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3234342e39352e302f32342d3234203d3e203134363138.roa
File: 3138352e3234342e39352e302f32342d3234203d3e203134363138.roa (raw, json)
Hash identifier: OBAzX7jZUk7Za1E5MEVxtdjyAyWEmCtcqgWHValavGM=
Subject key identifier: AF:98:30:80:D7:8C:B2:BF:8A:92:5C:5D:B3:13:46:8B:F6:F1:D1:84
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 36804D1B9587621A089D037E7CB6B4DB163E644D
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3234342e39352e302f32342d3234203d3e203134363138.roa
Signing time: Fri 31 May 2024 03:39:20 +0000
ROA not before: Fri 31 May 2024 03:34:20 +0000
ROA not after: Fri 30 May 2025 03:39:20 +0000
asID: 14618
IP address blocks: 185.244.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.mft
rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 26 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:80:4d:1b:95:87:62:1a:08:9d:03:7e:7c:b6:b4:db:16:3e:64:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: May 31 03:34:20 2024 GMT
Not After : May 30 03:39:20 2025 GMT
Subject: CN=AF983080D78CB2BF8A925C5DB313468BF6F1D184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f4:37:50:eb:1a:7a:c6:f4:9b:fb:e8:ba:51:
83:95:88:c2:6f:24:d3:a5:a8:9b:89:6a:08:42:8a:
10:bd:65:34:83:65:44:3e:f5:e4:ff:d6:cd:a4:33:
4a:e0:fe:39:da:c1:fa:f1:9b:da:93:6d:12:f5:d6:
40:bc:bf:e0:b4:19:47:2a:65:3c:6e:5f:e4:44:49:
21:a5:83:1a:90:ea:a0:07:eb:5b:dc:6e:80:69:87:
a9:f5:34:1e:f2:15:1c:4e:77:49:f9:5f:f8:9c:fe:
22:2e:5e:71:0d:3a:9b:3d:62:38:c1:d1:67:08:ed:
ee:09:11:98:2d:3c:cd:3f:bc:c4:5c:d4:3b:c6:b0:
5a:47:6b:8d:b1:3f:76:fc:86:07:07:cb:d7:12:e6:
02:7c:f2:ae:b4:65:76:35:fa:e3:e1:12:eb:35:39:
82:78:83:d3:9f:98:f9:bb:1a:e4:53:8f:0a:7a:cb:
08:d7:b3:07:c2:99:51:22:7c:87:61:bc:07:5b:05:
b8:ea:bb:17:28:bf:74:ee:24:62:98:08:b7:a2:09:
e7:49:3a:de:a5:5b:6c:5b:73:39:42:ca:54:cf:c6:
07:dd:d7:02:c1:be:69:4c:f2:c0:93:b4:cb:fe:75:
83:87:61:1c:56:7b:a9:32:df:02:a3:0a:4f:1f:bc:
fe:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:98:30:80:D7:8C:B2:BF:8A:92:5C:5D:B3:13:46:8B:F6:F1:D1:84
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3234342e39352e302f32342d3234203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.95.0/24
Signature Algorithm: sha256WithRSAEncryption
06:23:7f:dd:0f:ec:b7:ed:ad:50:7c:e3:56:4b:36:a4:4a:58:
fa:fc:1f:31:f3:0a:a1:9b:01:72:83:43:80:6a:5d:05:4e:62:
d4:59:a3:c7:68:56:d7:72:f7:e2:38:85:a1:80:4f:e6:94:18:
dd:7c:a5:73:3c:44:d5:28:22:52:91:8e:54:16:b1:51:1a:fe:
40:f0:c4:ac:c7:56:c4:2d:56:c5:75:13:ea:82:f1:c7:2a:b9:
bc:2a:91:e6:32:79:9b:87:4b:8d:36:74:1c:10:93:9e:ca:05:
c8:8c:98:7e:bb:da:a3:05:65:3a:ee:12:2d:c5:7b:ac:14:25:
d8:63:1d:45:e9:be:3e:0d:de:52:7f:69:90:7e:15:a7:bb:cd:
32:d1:48:a4:21:4a:1a:32:8d:f8:5f:3f:02:62:c4:00:70:ea:
83:47:1a:58:2b:32:43:f0:6f:3c:ab:d6:40:be:45:c9:0f:93:
bb:83:3e:e3:c2:33:63:94:89:4f:50:78:f4:01:ee:85:b3:d1:
89:43:3b:fd:d8:95:0d:17:d3:f3:73:d0:ba:de:55:da:4f:cb:
58:e6:99:b4:09:3d:8e:4d:16:e0:93:6c:10:29:1d:c8:1f:34:
20:d0:49:ad:91:61:19:b0:1b:c7:6c:00:da:b5:bc:40:f2:dd:
07:3b:6f:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 08:28:50 2024 by rpki-client on console-fra.rpki-client.org