Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3138332e3138312e302f32342d3234203d3e20323033333830.roa
File: 3138352e3138332e3138312e302f32342d3234203d3e20323033333830.roa (raw, json)
Hash identifier: YPYRe9m/bn0qqw/nWFgIH//DwSNep8mqpOtJjs0ooV8=
Subject key identifier: A6:22:E4:59:20:9F:A6:97:64:B0:12:3E:96:54:DE:46:23:48:18:26
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 4BA7ADA086CCE919FE7ACC6D60721298018395A3
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3138332e3138312e302f32342d3234203d3e20323033333830.roa
Signing time: Fri 26 Jan 2024 09:27:50 +0000
ROA not before: Fri 26 Jan 2024 09:22:50 +0000
ROA not after: Fri 24 Jan 2025 09:27:50 +0000
asID: 203380
IP address blocks: 185.183.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:a7:ad:a0:86:cc:e9:19:fe:7a:cc:6d:60:72:12:98:01:83:95:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Jan 26 09:22:50 2024 GMT
Not After : Jan 24 09:27:50 2025 GMT
Subject: CN=A622E459209FA69764B0123E9654DE4623481826
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5f:ed:c2:cc:b1:94:c4:88:55:20:e6:00:19:
8e:63:ca:19:7b:09:12:dc:b2:df:e2:7c:56:f4:78:
7b:13:d1:c6:1e:5f:4d:85:8e:15:c2:f0:3e:a5:d7:
14:e7:80:60:51:34:2b:e3:aa:13:7d:14:39:e6:de:
84:2a:4e:9b:fd:d9:25:82:58:f7:ce:fc:34:c7:e7:
73:58:3e:de:a6:b6:ab:fa:c5:ae:23:86:78:a8:14:
4e:87:9e:79:67:17:dc:7c:aa:c8:86:30:d2:61:3f:
5b:de:59:3a:82:9c:1a:68:aa:14:20:33:f0:85:64:
9f:cb:ca:49:b3:ea:56:5b:60:19:e9:f3:92:f3:41:
44:48:99:c1:df:7d:a4:5e:96:f6:33:4a:d4:d5:a8:
5d:8a:26:45:8c:f1:9e:e5:a4:c1:d0:e4:04:32:d3:
2e:48:77:f3:5b:d2:ef:4e:40:3d:45:be:8a:03:2d:
8c:55:cc:dc:8b:35:51:57:2d:22:62:e8:02:5a:3c:
95:71:2e:d1:2b:ea:1f:b1:d7:ac:d5:f7:45:13:47:
af:11:20:99:a0:9c:d1:2a:36:f2:cc:ad:13:60:bd:
ab:c6:ad:7d:d5:da:1e:c2:d5:ae:82:b4:b3:dc:9c:
31:57:f1:86:21:29:81:9a:9e:e2:90:d8:7f:49:a6:
8e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:22:E4:59:20:9F:A6:97:64:B0:12:3E:96:54:DE:46:23:48:18:26
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3138332e3138312e302f32342d3234203d3e20323033333830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.183.181.0/24
Signature Algorithm: sha256WithRSAEncryption
20:17:de:eb:d9:6e:44:74:ba:3d:df:ad:d5:bf:0d:2e:50:6e:
39:73:dc:33:c3:00:a4:d4:52:c1:ff:36:f7:44:9d:90:a9:70:
84:6e:fe:b5:45:27:c5:63:d8:e2:5e:ae:8f:e4:5e:51:eb:f3:
c0:15:87:92:5c:a5:3b:fe:e5:6f:c0:b1:59:e2:7f:fe:ee:ce:
6f:6e:12:8a:1a:32:39:d8:97:3a:36:0a:0c:9c:fb:c4:79:a9:
75:d0:78:40:aa:d7:71:be:ba:12:23:06:bc:7b:5e:e2:dc:61:
5d:e5:98:4e:29:90:a0:e8:15:d4:45:16:2e:94:89:2e:c7:ad:
51:5e:3c:55:ae:2e:77:ba:9d:e2:2c:be:24:47:75:3a:c0:73:
1b:e0:c8:bd:ca:ed:4c:5f:08:eb:ef:c0:92:17:f2:37:0e:a8:
d4:bf:69:a1:77:cf:b8:73:5f:3b:f7:47:6d:0d:36:4f:de:5c:
b0:f2:80:77:ac:98:cd:1b:f9:2e:eb:90:5f:ae:d5:47:12:95:
54:46:0b:51:2d:86:0c:7f:a0:3d:c4:ae:41:1d:c3:ad:61:24:
1c:78:e1:0c:f1:26:1b:e2:5c:46:69:b5:37:95:0c:84:65:88:
96:f1:5b:fe:62:bd:f0:0a:1a:51:9f:80:90:db:fa:44:55:fb:
a0:6b:19:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 10:22:31 2024 by rpki-client on console-ams.rpki-client.org