Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3139382e32372e302f32342d3332203d3e203531313637.roa
File: 3138352e3139382e32372e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: sxDCTznZktEACIN4wv1DDbhy67yBVZcrE6yJOVUdAEw=
Subject key identifier: F5:E6:B3:AD:D4:CD:22:7E:50:87:0C:C8:65:0B:79:EF:C8:66:9B:28
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 3B640FDD9A21349D0093D31F413EDAA9A110303F
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3139382e32372e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:53:37 +0000
ROA not before: Mon 26 Feb 2024 08:48:37 +0000
ROA not after: Mon 24 Feb 2025 08:53:37 +0000
asID: 51167
IP address blocks: 185.198.27.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 19:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:64:0f:dd:9a:21:34:9d:00:93:d3:1f:41:3e:da:a9:a1:10:30:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Feb 26 08:48:37 2024 GMT
Not After : Feb 24 08:53:37 2025 GMT
Subject: CN=F5E6B3ADD4CD227E50870CC8650B79EFC8669B28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3e:dc:31:ae:ef:c8:8c:b7:68:c2:9c:09:61:
19:6e:6b:52:9d:e7:69:70:b7:bd:6e:83:f3:6c:d3:
dd:3c:0c:88:ea:c1:1e:5b:2e:cc:11:a6:2a:08:03:
42:53:9c:f1:08:fb:66:65:f4:b6:04:6a:2b:c5:f4:
d1:db:1e:12:42:9f:e8:90:ef:ef:c3:f7:96:18:5f:
16:0a:f4:e1:ee:31:c2:1c:26:a8:cd:07:01:f2:71:
51:5c:23:17:e9:1b:ac:d8:9a:14:0c:07:bb:9a:96:
a8:3c:69:db:85:d8:34:a7:50:34:c5:63:20:bf:3f:
12:3a:e2:cf:6c:3a:ba:28:db:19:2e:56:8e:79:10:
f3:00:44:f1:8e:c7:dd:3a:39:b7:8c:8e:57:ed:76:
5b:f5:c5:62:17:f9:62:6b:c9:58:1d:55:a7:a5:44:
66:6b:a7:76:8f:57:d1:d3:e1:c7:7f:52:cd:e2:a9:
3f:2d:d5:59:09:fe:62:98:9d:c2:fe:b8:bd:8d:38:
b9:af:7b:8b:da:94:af:1b:19:3e:ce:d1:c0:52:54:
1f:b6:e6:83:39:86:65:aa:ea:41:ea:bb:27:96:3b:
37:18:5e:ab:47:f6:c2:6b:2d:e7:e7:da:2e:c6:ff:
98:ed:1f:b2:9e:38:62:3b:2d:92:40:43:de:7e:2e:
22:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E6:B3:AD:D4:CD:22:7E:50:87:0C:C8:65:0B:79:EF:C8:66:9B:28
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3139382e32372e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.27.0/24
Signature Algorithm: sha256WithRSAEncryption
77:7a:79:95:2b:66:77:8f:4d:58:8a:6d:45:a0:b3:fd:fc:3c:
9c:6f:6d:58:f4:e7:b9:d1:27:fc:f8:0e:9b:79:f5:fa:4e:e9:
e6:8e:4c:be:3e:0f:84:89:8c:63:32:4b:35:71:75:93:99:4f:
1a:3a:8a:88:9d:c1:63:9e:63:eb:69:4b:bc:75:0f:54:f3:fc:
0e:55:0e:f9:ad:59:53:70:31:39:ed:0b:07:d1:1b:d6:19:db:
8d:03:52:2e:b7:af:fe:00:af:03:a0:df:18:84:11:d3:9b:40:
96:02:c1:d1:f9:5f:47:b8:d9:e5:af:55:f5:c9:5b:6a:1e:8f:
01:5b:66:9c:49:bd:30:29:04:2e:14:ad:50:3e:37:2a:7c:f7:
dd:06:16:ba:81:9a:cb:12:8d:b3:5d:9a:3a:2d:64:bf:28:61:
70:0b:6c:0a:22:7a:1f:c2:9c:60:27:44:00:da:90:99:27:e3:
b1:d7:4b:22:9f:38:ef:56:be:b5:9f:48:1e:04:8c:9e:94:8c:
95:78:13:e5:6a:e5:79:ee:d3:c5:44:ef:0f:ee:89:46:23:76:
72:bf:30:a2:14:6d:c5:a5:7e:e0:7b:a6:4d:ea:26:4a:73:e9:
19:12:7e:93:38:c7:52:0e:d4:21:78:32:44:ba:23:23:84:1d:
9b:d9:a7:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 00:22:50 2024 by rpki-client on console-fra.rpki-client.org