Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/3138352e3230362e3235332e302f32342d3234203d3e203630373831.roa
File: 3138352e3230362e3235332e302f32342d3234203d3e203630373831.roa (raw, json)
Hash identifier: AMOOReO25pB/UyWle0jkXv+B6m1MTNWZ4+1w+73+7MY=
Subject key identifier: 8A:0B:18:61:10:D4:58:74:8D:8C:3A:51:A2:98:FD:78:E3:87:78:87
Certificate issuer: /CN=68d097afd88aef3f10282f3218fc13f01a0de486
Certificate serial: 4654430B2C795AF05A423827625C8D8AEF97349B
Authority key identifier: 68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/3138352e3230362e3235332e302f32342d3234203d3e203630373831.roa
Signing time: Fri 15 Nov 2024 12:38:10 +0000
ROA not before: Fri 15 Nov 2024 12:33:10 +0000
ROA not after: Fri 14 Nov 2025 12:38:10 +0000
asID: 60781
IP address blocks: 185.206.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:54:43:0b:2c:79:5a:f0:5a:42:38:27:62:5c:8d:8a:ef:97:34:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d097afd88aef3f10282f3218fc13f01a0de486
Validity
Not Before: Nov 15 12:33:10 2024 GMT
Not After : Nov 14 12:38:10 2025 GMT
Subject: CN=8A0B186110D458748D8C3A51A298FD78E3877887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:cf:ea:75:98:ec:4e:0f:70:76:f6:8c:20:90:
aa:ae:4b:61:f1:71:41:1a:ba:94:7a:5c:94:45:4e:
01:a6:39:2c:ac:d5:20:8e:ce:86:97:b3:37:3f:af:
b6:09:ad:6b:5d:70:31:0f:03:10:c3:da:e9:0b:35:
e3:a3:0d:b5:f3:65:1b:60:13:e6:02:bc:24:33:b3:
82:7d:95:66:dd:a1:12:51:5d:39:86:e9:80:ff:0f:
82:0a:3d:45:95:e4:d7:0a:a9:a5:48:7d:80:c7:fc:
6a:f3:e5:6e:7c:51:e5:a7:0e:18:dd:3a:bf:5b:99:
d7:4d:fa:2c:44:c1:96:10:98:e4:8c:57:42:0f:40:
53:c9:80:96:c8:87:74:8a:c2:9e:c1:ca:19:d1:52:
9b:d2:60:42:4e:d3:04:10:1a:53:a2:d4:40:31:ca:
86:ba:cd:6b:5c:5d:32:0d:a4:24:cd:bc:ed:db:55:
6a:11:10:30:30:88:38:7e:b2:12:aa:15:b3:48:cb:
a7:6f:bd:2f:1b:ab:53:c2:4e:fe:da:b8:a1:89:2c:
3e:bd:0e:b0:2b:a3:19:41:62:02:1a:53:54:ba:da:
17:b6:aa:ad:05:71:b3:2a:c3:cc:99:51:fa:32:3f:
b1:0f:35:7f:b9:62:76:78:11:7b:d7:8b:e0:47:a1:
fd:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:0B:18:61:10:D4:58:74:8D:8C:3A:51:A2:98:FD:78:E3:87:78:87
X509v3 Authority Key Identifier:
keyid:68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/3138352e3230362e3235332e302f32342d3234203d3e203630373831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.253.0/24
Signature Algorithm: sha256WithRSAEncryption
01:09:60:77:a8:16:65:36:c2:56:73:85:1d:40:1b:14:54:14:
20:3c:98:56:c3:13:26:23:1e:aa:bf:37:92:77:22:22:39:34:
fe:19:58:23:96:9a:63:32:d1:7d:d2:c5:d7:0a:39:9b:6d:ff:
f9:35:7f:3c:72:d4:73:a2:44:fe:77:3c:b9:ba:3f:a8:46:78:
4b:7f:18:03:a7:56:85:5c:95:e4:b2:66:55:e2:c2:5b:41:9f:
c5:b9:91:15:87:ee:f6:29:34:17:53:1a:ce:90:7d:16:6f:37:
4a:5a:d2:a8:a5:c2:0f:6a:7e:b9:07:b0:a6:bc:1e:35:37:a3:
72:f9:d7:6c:8d:7a:58:aa:f0:e0:16:08:5c:a3:ee:be:dc:00:
66:2b:91:1a:2b:be:d0:3e:06:18:10:57:4a:d6:c2:da:e0:9b:
95:e4:d3:48:02:f1:98:02:c3:dc:e4:e2:4d:d1:4f:5e:2e:e8:
5f:d9:8f:9b:50:c1:2d:1b:5a:46:8e:43:2a:b7:70:1c:6a:a3:
0b:7b:5f:d6:aa:ca:f9:32:ca:e0:f9:d2:f3:f1:c3:06:21:94:
73:b5:c2:fb:29:51:6f:c2:76:60:be:5d:2c:54:16:89:22:7f:
66:d3:95:0e:2a:76:52:3d:44:ee:38:cf:ad:97:77:31:57:0b:
9b:c5:1b:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 17:13:49 2024 by rpki-client on console-ams.rpki-client.org