Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135352e302f32342d3234203d3e203631333137.roa
File: 3138382e3136342e3135352e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: Zqg95JNQ7Tjc8CMis4303+CnonKl6jZjeNtUp3/4jl4=
Subject key identifier: 24:78:3C:CE:B8:D8:60:81:77:DE:7E:29:D7:B5:09:00:93:64:13:85
Certificate issuer: /CN=8b9ba9adde9635777bf586fd493e14cd30f7c4ca
Certificate serial: 1F937D1E574C0F7E4979354CDC0421F7EDB3BA3B
Authority key identifier: 8B:9B:A9:AD:DE:96:35:77:7B:F5:86:FD:49:3E:14:CD:30:F7:C4:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135352e302f32342d3234203d3e203631333137.roa
Signing time: Tue 02 Jul 2024 14:05:18 +0000
ROA not before: Tue 02 Jul 2024 14:00:18 +0000
ROA not after: Tue 01 Jul 2025 14:05:18 +0000
asID: 61317
IP address blocks: 188.164.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.crl
rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.mft
rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 17:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:93:7d:1e:57:4c:0f:7e:49:79:35:4c:dc:04:21:f7:ed:b3:ba:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b9ba9adde9635777bf586fd493e14cd30f7c4ca
Validity
Not Before: Jul 2 14:00:18 2024 GMT
Not After : Jul 1 14:05:18 2025 GMT
Subject: CN=24783CCEB8D8608177DE7E29D7B5090093641385
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:44:c0:95:e3:60:b9:0c:7c:49:cf:c9:db:ed:
45:6b:2f:4f:94:5b:bc:72:93:d3:93:82:28:a2:de:
ab:4d:75:b6:3b:e4:3d:b5:07:fa:01:bd:87:dc:f0:
fa:c3:d7:c6:c1:08:30:a1:02:e3:03:39:fc:7e:fb:
7b:f2:cb:4d:9e:db:3e:fb:b9:d0:62:08:53:bc:a2:
84:7c:73:b5:2a:c5:a5:27:22:f0:38:98:36:45:2c:
e1:2e:0a:2c:1e:47:3f:e4:3d:b4:46:3d:c0:de:3b:
89:64:27:d3:b7:d2:f8:81:ee:1d:66:54:40:bc:8d:
57:3f:3f:eb:23:8e:a4:12:0d:13:03:0b:f4:bd:a8:
dd:6e:09:0f:3b:94:4f:92:bc:f1:84:de:9d:77:d1:
4e:73:8e:b2:62:a3:e6:88:82:73:a3:bb:a1:a9:27:
f3:82:4c:37:95:f0:17:2c:b7:67:fc:02:d7:80:ae:
f4:73:8a:d7:fc:f5:95:e4:a5:48:00:0c:66:b9:bb:
21:61:92:4d:5a:ed:c5:89:9a:23:2d:1f:dd:fc:47:
59:e0:fe:f8:5c:94:6f:62:72:ed:92:0e:0a:60:ce:
64:dc:09:ae:48:41:8d:3d:1e:f8:c6:f4:48:88:66:
4b:6e:72:21:ce:a7:24:75:24:64:12:1e:be:a7:49:
e4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:78:3C:CE:B8:D8:60:81:77:DE:7E:29:D7:B5:09:00:93:64:13:85
X509v3 Authority Key Identifier:
keyid:8B:9B:A9:AD:DE:96:35:77:7B:F5:86:FD:49:3E:14:CD:30:F7:C4:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135352e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.164.155.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:1e:74:88:41:1c:c8:dd:6c:fd:5e:f4:4c:99:f0:0d:98:da:
1c:3e:28:f1:7a:2b:b6:25:78:7a:c5:a3:bc:e9:3d:f2:c8:28:
74:8f:91:9f:c9:2a:20:28:34:42:1c:f8:b7:39:8a:33:2b:6f:
d1:4e:8a:64:63:c8:12:5e:75:47:b9:21:fe:de:47:43:bb:2a:
0c:b5:2e:ad:27:d0:b9:ba:73:c4:b4:69:48:b4:63:98:1a:06:
cb:9f:86:05:ed:dd:34:49:e2:92:95:5b:a9:57:27:1c:7b:11:
00:ec:dd:d2:8c:19:da:ea:c5:37:88:d1:dd:85:bb:bd:60:b7:
eb:78:4b:e6:e8:dc:1c:24:a3:80:3b:29:b5:72:35:c7:39:14:
5a:89:b1:fe:e6:68:83:eb:8b:82:42:e9:94:53:28:fa:93:27:
aa:81:a6:94:d5:5e:18:57:69:86:27:77:38:06:3d:37:d8:4e:
95:c2:1e:be:2e:65:82:5f:6c:be:c3:68:cf:49:17:38:8e:d8:
ba:36:0b:37:a6:06:7f:0f:78:70:fa:57:2a:c3:e8:bd:b8:df:
cc:7a:c0:74:db:21:fd:ce:f2:29:dd:c9:5a:92:41:dc:68:bd:
cb:94:c5:6d:7a:d1:d4:c7:a4:b0:6b:01:c9:2a:aa:a9:16:d5:
3c:69:08:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 05:35:12 2025 by rpki-client