Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135362e302f32342d3234203d3e203136323736.roa
File: 3138382e3136342e3135362e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: Q4YHPDIhYPIY/1UN6QqeLf3GVQ98ckFfdnKoTiuEe98=
Subject key identifier: EF:70:78:38:A0:18:DB:45:14:46:E8:2A:E4:57:C1:FC:71:7F:74:99
Certificate issuer: /CN=8b9ba9adde9635777bf586fd493e14cd30f7c4ca
Certificate serial: 78FEE1A73CF27A4190470B2E9829724E61B5B209
Authority key identifier: 8B:9B:A9:AD:DE:96:35:77:7B:F5:86:FD:49:3E:14:CD:30:F7:C4:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135362e302f32342d3234203d3e203136323736.roa
Signing time: Thu 03 Oct 2024 09:22:58 +0000
ROA not before: Thu 03 Oct 2024 09:17:58 +0000
ROA not after: Thu 02 Oct 2025 09:22:58 +0000
asID: 16276
IP address blocks: 188.164.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.crl
rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.mft
rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:fe:e1:a7:3c:f2:7a:41:90:47:0b:2e:98:29:72:4e:61:b5:b2:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b9ba9adde9635777bf586fd493e14cd30f7c4ca
Validity
Not Before: Oct 3 09:17:58 2024 GMT
Not After : Oct 2 09:22:58 2025 GMT
Subject: CN=EF707838A018DB451446E82AE457C1FC717F7499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e0:34:05:bf:de:dd:d7:64:3e:ec:58:f5:b0:
34:20:fd:dd:40:2f:b3:ca:dd:eb:33:d7:3a:d4:be:
94:63:f1:18:a6:69:2d:0f:aa:f3:ac:b9:5a:5c:db:
93:3f:fd:65:e8:d2:29:55:cf:54:d0:52:11:b7:b3:
56:b7:64:ae:8b:75:9c:13:c9:16:aa:c9:a2:39:22:
bb:80:96:97:0e:cc:ae:c6:fe:e7:70:40:4e:a7:b0:
74:38:60:31:23:7e:72:54:dc:bd:44:ae:54:0f:d2:
44:4f:c3:3d:d7:98:bb:f7:0f:f8:2e:7f:7a:77:36:
b7:e8:31:96:11:1e:fe:ff:93:7c:b2:45:ae:7b:61:
03:6b:d9:5f:5a:fb:0f:b4:a4:75:c6:6e:f1:65:7b:
c3:1c:c1:f6:2e:da:64:80:b6:0b:76:fe:53:06:ae:
3a:f6:0a:a3:fc:f0:b1:da:17:c6:98:21:f3:c2:4a:
ea:0c:77:24:23:05:ee:43:32:36:92:95:ab:5d:3b:
73:60:e3:30:0b:9c:1d:a8:ac:e4:57:14:4c:ca:6b:
79:4d:64:01:90:dd:11:ce:80:0f:c4:e6:1d:2c:98:
2d:10:f4:69:d9:8c:77:65:2a:d4:95:08:24:05:c7:
9b:d0:53:7b:43:ab:43:bd:7c:30:45:b9:ff:1e:aa:
8c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:70:78:38:A0:18:DB:45:14:46:E8:2A:E4:57:C1:FC:71:7F:74:99
X509v3 Authority Key Identifier:
keyid:8B:9B:A9:AD:DE:96:35:77:7B:F5:86:FD:49:3E:14:CD:30:F7:C4:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135362e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.164.156.0/24
Signature Algorithm: sha256WithRSAEncryption
87:6a:08:47:92:0d:fe:d3:89:3b:0a:c1:b6:87:ef:16:83:63:
48:ab:e0:b0:b4:10:cd:da:51:85:6a:8d:6b:7a:3d:79:08:61:
de:af:07:0d:43:c4:eb:89:e4:43:13:84:2c:df:be:9b:b3:fb:
d7:5d:d4:a9:fc:f1:50:ba:ef:5c:a5:b1:a6:59:96:9c:af:ff:
c0:70:8d:89:8b:3a:87:74:bc:a7:58:1e:47:d1:2c:ab:39:32:
72:aa:64:0d:97:cb:83:18:59:79:4d:b6:4f:ac:ab:23:52:45:
a1:41:66:08:97:94:e8:6d:2f:08:4a:cc:e2:61:2d:de:db:be:
d4:ff:73:d8:b6:d4:0e:c6:ec:56:e7:74:85:a5:35:40:9e:d8:
f2:f8:f4:b0:cb:88:98:da:98:6d:e1:55:f0:c1:1d:47:b6:bf:
99:0f:96:c6:cd:b7:85:72:87:66:81:b8:f9:65:ac:ba:21:cb:
ab:cb:a9:c8:34:03:71:09:8c:30:e4:d9:df:f2:de:a8:70:f2:
a7:6c:e3:78:6e:f3:c4:4a:65:3e:6f:22:a7:81:5c:7e:13:b4:
3a:30:60:76:46:aa:37:6c:a5:92:ff:f9:27:cb:58:68:25:19:
1b:28:99:70:88:a9:b5:1a:20:2f:72:48:c3:ec:04:1a:fb:e3:
31:6d:1d:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org