Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3130302e3231342e302f32342d3234203d3e203136323736.roa
File: 3138352e3130302e3231342e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: /jyMEBFyh3AG0rW7XKYt4/4mzFHe0oxgnbG4U/pd+p8=
Subject key identifier: 65:30:A0:D8:5F:59:10:BD:A8:B3:01:4D:59:CC:07:90:D6:95:23:B3
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 382345737998C0629A5B8218531A44BF7FF2BCA0
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3130302e3231342e302f32342d3234203d3e203136323736.roa
Signing time: Thu 03 Oct 2024 09:22:54 +0000
ROA not before: Thu 03 Oct 2024 09:17:54 +0000
ROA not after: Thu 02 Oct 2025 09:22:54 +0000
asID: 16276
IP address blocks: 185.100.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:23:45:73:79:98:c0:62:9a:5b:82:18:53:1a:44:bf:7f:f2:bc:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Oct 3 09:17:54 2024 GMT
Not After : Oct 2 09:22:54 2025 GMT
Subject: CN=6530A0D85F5910BDA8B3014D59CC0790D69523B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:46:ea:0f:0b:07:85:fe:30:34:bf:14:ac:fe:
46:76:25:db:14:8b:af:bf:96:a9:6c:b7:e4:c8:b9:
fa:a7:7f:0c:b3:33:20:4c:bf:d3:f1:b7:70:70:c0:
b4:ce:64:c3:4e:02:af:49:f5:fe:42:3a:cf:54:42:
70:46:28:48:91:b7:3e:1b:6d:30:db:4d:1c:9b:4c:
06:3c:83:e1:55:ec:76:dd:16:b8:e0:da:db:a3:a9:
1a:62:a9:86:92:ab:5a:04:11:0c:c4:f2:c6:75:26:
62:5e:6e:90:28:de:4b:77:73:b7:6d:7d:a5:cd:ab:
18:bc:df:52:45:39:b8:00:2d:a1:02:48:74:aa:90:
e9:3b:1f:70:f8:6f:16:b0:aa:5e:36:6c:83:13:c6:
0a:5b:d5:28:59:0a:f2:a3:5a:56:07:7f:dc:dd:a3:
a7:ac:14:d4:74:09:1d:c0:3f:c4:f4:ea:40:43:c8:
b8:5e:b2:a1:96:a1:74:c9:30:d1:50:72:44:2e:2f:
39:1c:7f:97:9f:90:e2:e0:85:90:6d:9c:f2:b5:0c:
61:af:92:02:df:85:09:fe:ba:0f:cb:ff:9e:7e:de:
d7:97:80:40:80:d8:74:e0:7c:8d:bb:75:02:cf:6a:
f6:2b:e3:16:85:4c:4e:b6:d3:7d:ab:71:4a:de:ca:
4b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:30:A0:D8:5F:59:10:BD:A8:B3:01:4D:59:CC:07:90:D6:95:23:B3
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3130302e3231342e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.214.0/24
Signature Algorithm: sha256WithRSAEncryption
65:ff:dd:e4:d8:3e:a4:d4:e2:ea:ae:59:7b:cd:df:47:aa:e8:
85:38:8e:65:c9:66:16:5c:5b:08:35:4d:f6:3d:ec:c2:e4:f4:
34:71:c4:c5:1f:c6:24:98:17:6b:88:b8:36:8b:2c:13:cf:07:
32:d0:71:82:4f:20:0e:2b:fe:18:76:1d:3d:65:8a:b4:45:00:
f6:f9:83:da:a0:04:97:e1:4b:dc:dc:63:69:b0:75:5c:27:84:
c8:e2:9e:32:9d:35:4e:d6:a1:0f:8e:9c:06:e0:35:99:f0:f1:
76:1d:39:38:b2:22:96:c4:67:7f:09:89:72:dd:64:d5:ea:cc:
40:68:eb:0e:3f:1b:a5:18:04:1c:42:e5:1c:f8:83:6e:91:90:
9a:bd:dc:7e:70:91:ca:9d:30:be:45:87:dc:ad:92:ef:e2:d1:
f2:7f:00:1e:9a:b5:41:f9:d3:cf:b9:5d:81:46:aa:c9:1e:48:
ec:72:a4:1a:96:bc:c1:92:05:23:70:94:43:20:a2:83:7b:36:
44:50:fc:f7:b3:05:7e:34:43:a5:e5:d1:d0:a7:4f:90:66:29:
ba:4d:7b:4e:7c:01:62:16:1b:e8:9a:63:36:91:83:4f:19:35:
41:35:69:68:69:e1:a5:b8:08:65:12:49:c1:37:3f:66:27:18:
43:18:db:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 07:03:44 2024 by rpki-client on console-fra.rpki-client.org