Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/3138352e31332e3232352e302f32342d3234203d3e203631333137.roa
File: 3138352e31332e3232352e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: AmLj9ehcBc0k5awtVc6jG/A57LgG96edpBJjom+IPSs=
Subject key identifier: 0A:44:33:D4:1F:E7:5B:9F:2F:35:51:C9:D5:6B:0B:F9:07:7E:67:79
Certificate issuer: /CN=4c189e42f35c944d463d9ea6501f093eb62ba785
Certificate serial: 74CA79FEF7D064C75BABFB242CC901BB10F66B55
Authority key identifier: 4C:18:9E:42:F3:5C:94:4D:46:3D:9E:A6:50:1F:09:3E:B6:2B:A7:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TBieQvNclE1GPZ6mUB8JPrYrp4U.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/3138352e31332e3232352e302f32342d3234203d3e203631333137.roa
Signing time: Tue 23 Jan 2024 06:20:28 +0000
ROA not before: Tue 23 Jan 2024 06:15:28 +0000
ROA not after: Tue 21 Jan 2025 06:20:28 +0000
asID: 61317
IP address blocks: 185.13.225.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/4C189E42F35C944D463D9EA6501F093EB62BA785.crl
rsync://rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/4C189E42F35C944D463D9EA6501F093EB62BA785.mft
rsync://rpki.ripe.net/repository/DEFAULT/TBieQvNclE1GPZ6mUB8JPrYrp4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:ca:79:fe:f7:d0:64:c7:5b:ab:fb:24:2c:c9:01:bb:10:f6:6b:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c189e42f35c944d463d9ea6501f093eb62ba785
Validity
Not Before: Jan 23 06:15:28 2024 GMT
Not After : Jan 21 06:20:28 2025 GMT
Subject: CN=0A4433D41FE75B9F2F3551C9D56B0BF9077E6779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:54:91:82:4f:55:2c:c8:6a:a9:dd:a1:84:17:
7b:6d:89:2a:8e:b3:14:c1:ae:3d:6d:67:9c:c5:3c:
a1:3e:ff:20:f2:59:93:f7:54:c9:a3:54:78:f0:bf:
c4:eb:82:5c:e7:c3:4b:a2:c1:1a:4e:f7:ee:b8:c7:
27:d2:0e:bc:c4:20:53:30:0b:a0:3d:87:2f:9b:31:
f4:72:2a:ff:d4:19:37:1a:82:c2:95:c3:eb:2e:11:
fb:b5:7e:19:68:fc:61:90:6a:3a:59:b3:f9:5e:07:
22:59:4d:c2:89:08:5e:ef:d7:16:51:6a:85:26:65:
6b:0b:74:ea:93:fe:be:c0:3e:27:90:45:f6:6d:ff:
cc:5f:24:3a:62:c9:01:cc:37:e6:be:42:3d:3e:52:
fb:4b:b4:33:b6:34:07:7a:bc:ef:0c:40:d0:48:65:
f6:09:af:37:b6:7b:11:00:6c:b5:b7:80:03:60:f0:
6a:02:da:c5:15:25:a3:83:9f:e1:2f:e3:f5:83:05:
4a:d8:a2:e1:04:68:d6:e6:63:3e:b8:82:09:c8:da:
65:87:6d:08:a1:47:fc:09:aa:df:5e:f1:77:60:42:
33:af:8a:30:62:3e:1f:33:cc:7e:b8:dc:0c:63:e0:
92:75:30:01:9d:bd:b8:35:23:70:80:bf:a2:c5:ec:
d1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:44:33:D4:1F:E7:5B:9F:2F:35:51:C9:D5:6B:0B:F9:07:7E:67:79
X509v3 Authority Key Identifier:
keyid:4C:18:9E:42:F3:5C:94:4D:46:3D:9E:A6:50:1F:09:3E:B6:2B:A7:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/4C189E42F35C944D463D9EA6501F093EB62BA785.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TBieQvNclE1GPZ6mUB8JPrYrp4U.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/3138352e31332e3232352e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.225.0/24
Signature Algorithm: sha256WithRSAEncryption
84:c8:97:33:23:d3:1c:fe:26:d8:3e:de:80:3b:11:76:e1:27:
1f:dd:cc:e1:de:13:96:e9:93:ea:ad:39:94:79:6b:4b:0e:cf:
28:9a:88:9a:42:c0:71:e7:25:e8:1d:eb:b3:8f:3a:6d:df:9c:
cf:0d:41:7a:04:ee:72:b0:16:32:03:56:20:94:f0:12:be:a8:
7b:7a:9f:da:73:1b:a0:89:1b:9f:00:2b:a3:7a:ec:18:21:a7:
1f:5b:bb:0b:6d:55:b5:16:f8:36:0b:a4:0a:33:31:19:56:47:
19:17:32:39:c5:0b:54:55:6c:3a:79:b0:14:27:b2:80:42:ab:
80:5d:fe:ce:7b:e4:f4:b7:6c:67:c4:6b:76:ab:17:be:a0:be:
35:06:7f:58:4f:60:48:ce:70:07:0a:71:3b:2f:ce:21:4d:ab:
7d:f5:e7:e1:24:75:64:49:a5:fe:20:56:68:f7:5e:44:bc:39:
52:ee:5d:8a:7b:d3:8e:01:0d:b8:9f:14:0f:05:96:dc:98:d9:
97:d6:f0:b8:0e:54:79:c4:46:7f:2e:98:41:32:9d:96:3e:60:
c2:1b:5d:cc:ab:7b:11:ec:81:8c:f1:1c:95:c2:25:c9:b7:99:
63:78:00:e9:f4:7b:c2:80:3f:90:b4:e3:28:df:d3:a9:a1:8d:
5b:74:8c:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 16:41:14 2024 by rpki-client on console-fra.rpki-client.org