Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/3138352e33372e3231382e302f32332d3234203d3e20323132323338.roa
File: 3138352e33372e3231382e302f32332d3234203d3e20323132323338.roa (raw, json)
Hash identifier: iy/PuTZq2PlLpxAHU9NAZ+l2NTzGrJU7RR9j/EEkM8A=
Subject key identifier: A6:BB:00:40:7B:20:77:02:B0:AD:09:ED:5F:26:09:73:35:3B:09:C2
Certificate issuer: /CN=edb9f3e6d8e4b57c49301aa621ef1f90389e057a
Certificate serial: 35E54164F650BC70B92D6CC8E1B7E0EB04824865
Authority key identifier: ED:B9:F3:E6:D8:E4:B5:7C:49:30:1A:A6:21:EF:1F:90:38:9E:05:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bnz5tjktXxJMBqmIe8fkDieBXo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/3138352e33372e3231382e302f32332d3234203d3e20323132323338.roa
Signing time: Thu 21 Sep 2023 14:09:55 +0000
ROA not before: Thu 21 Sep 2023 14:04:55 +0000
ROA not after: Thu 19 Sep 2024 14:09:55 +0000
asID: 212238
IP address blocks: 185.37.218.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/EDB9F3E6D8E4B57C49301AA621EF1F90389E057A.crl
rsync://rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/EDB9F3E6D8E4B57C49301AA621EF1F90389E057A.mft
rsync://rpki.ripe.net/repository/DEFAULT/7bnz5tjktXxJMBqmIe8fkDieBXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Apr 2024 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:e5:41:64:f6:50:bc:70:b9:2d:6c:c8:e1:b7:e0:eb:04:82:48:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb9f3e6d8e4b57c49301aa621ef1f90389e057a
Validity
Not Before: Sep 21 14:04:55 2023 GMT
Not After : Sep 19 14:09:55 2024 GMT
Subject: CN=A6BB00407B207702B0AD09ED5F260973353B09C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:f1:e6:9b:e8:b3:a8:76:fc:19:fb:63:7d:01:
ea:d7:a7:0b:94:0e:da:5d:30:1f:69:68:55:ec:d9:
1c:78:e8:22:28:15:af:87:ec:a8:86:ee:51:ef:f7:
e0:f8:a2:ef:40:09:d0:50:6f:d2:98:d2:d8:ec:85:
f4:bc:41:03:76:96:21:04:45:54:42:35:5b:13:07:
c7:4f:56:f7:3e:65:0f:1c:52:3a:d9:f6:ca:9c:b1:
8c:be:8e:46:9c:9c:d8:da:cd:44:32:70:6b:c5:01:
77:55:f2:00:a1:66:39:cb:97:40:58:0e:cb:f4:04:
65:0a:c1:68:55:bd:c1:42:6e:65:77:d9:e6:48:d4:
92:57:0e:ad:a3:ee:5a:13:a0:7a:da:47:78:07:2f:
42:1e:e0:0c:4e:43:07:4e:22:d3:04:97:85:7d:5e:
06:62:e1:02:4e:9e:d9:8c:8d:30:99:01:bf:4d:be:
77:a6:09:b6:e1:2f:aa:a9:f0:1f:eb:03:b4:f9:55:
c9:57:21:23:0e:da:7a:d6:72:9f:67:a1:88:05:a9:
65:e7:28:73:d2:1e:09:1f:0c:a2:25:e8:b7:37:8b:
7d:b5:ab:4d:6c:b9:d2:6e:a5:5c:ae:a8:38:32:08:
7a:65:3e:4c:6d:d5:bc:f3:f0:1f:02:f9:f0:c9:9f:
6f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:BB:00:40:7B:20:77:02:B0:AD:09:ED:5F:26:09:73:35:3B:09:C2
X509v3 Authority Key Identifier:
keyid:ED:B9:F3:E6:D8:E4:B5:7C:49:30:1A:A6:21:EF:1F:90:38:9E:05:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/EDB9F3E6D8E4B57C49301AA621EF1F90389E057A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bnz5tjktXxJMBqmIe8fkDieBXo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/3138352e33372e3231382e302f32332d3234203d3e20323132323338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.218.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:a6:e4:fa:55:41:78:cb:78:d2:bb:bc:71:43:46:42:20:c6:
4f:b0:42:44:a8:d4:da:7f:4f:04:47:f7:24:cd:7e:de:86:47:
73:31:b0:4c:49:e5:2d:c9:e9:61:c6:88:c8:4d:d0:46:74:8d:
0e:d7:8a:ea:c6:dd:fa:3e:40:58:7a:c2:96:f0:b3:3c:b4:c6:
0a:04:81:15:40:e7:f9:9b:8c:9f:bb:a7:31:f9:ff:04:4b:a3:
7b:e0:8b:52:0e:7c:2c:84:76:e8:aa:6b:89:b7:b2:48:56:06:
c0:86:26:95:36:ad:5c:d1:c2:f2:8b:2e:f8:6a:0a:d2:b5:7e:
63:e0:6b:88:7b:9d:74:89:e9:c5:fa:2d:95:b8:2a:be:03:50:
74:d3:ca:af:1a:53:45:98:9f:69:42:ba:6a:98:f2:f7:18:1e:
48:e0:56:f5:2f:5b:44:c8:a8:06:58:97:72:01:7f:64:34:2b:
db:94:47:3e:d6:89:0d:4c:18:98:88:02:55:3c:63:21:c3:e1:
7a:86:93:bb:bc:45:43:ec:93:ab:cc:23:eb:4e:8c:f3:fe:21:
f9:99:fc:a1:72:7a:88:f8:b7:70:e7:6c:8c:17:d5:15:8b:25:
bc:a6:29:93:8e:51:f8:38:6f:6b:52:e8:e7:c2:ff:37:9e:c4:
58:3c:d9:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 11:23:47 2024 by rpki-client on console-ams.rpki-client.org