Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/3138352e3230362e3235332e302f32342d3234203d3e2037303138.roa
File: 3138352e3230362e3235332e302f32342d3234203d3e2037303138.roa (raw, json)
Hash identifier: bP99dxf4XdMPcy2k/Gk7NBLUdy+UFXgEhC+bhGmTJew=
Subject key identifier: A9:DA:EE:3C:01:9F:E7:6D:EB:78:9F:69:91:F7:2D:E6:0F:CC:BA:92
Certificate issuer: /CN=68d097afd88aef3f10282f3218fc13f01a0de486
Certificate serial: 26B238EECE2F942F6C09769B1809341E977A3BF1
Authority key identifier: 68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/3138352e3230362e3235332e302f32342d3234203d3e2037303138.roa
Signing time: Thu 18 Jan 2024 13:33:01 +0000
ROA not before: Thu 18 Jan 2024 13:28:01 +0000
ROA not after: Thu 16 Jan 2025 13:33:01 +0000
asID: 7018
IP address blocks: 185.206.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:b2:38:ee:ce:2f:94:2f:6c:09:76:9b:18:09:34:1e:97:7a:3b:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d097afd88aef3f10282f3218fc13f01a0de486
Validity
Not Before: Jan 18 13:28:01 2024 GMT
Not After : Jan 16 13:33:01 2025 GMT
Subject: CN=A9DAEE3C019FE76DEB789F6991F72DE60FCCBA92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:0b:a6:22:fc:bf:5a:fc:71:16:49:16:28:13:
c7:8d:0c:3a:56:21:82:b7:11:b9:80:3d:ca:4d:59:
9f:d5:8f:3a:b3:24:05:6c:3f:0a:7c:37:d3:e7:49:
0c:a0:37:d8:cf:1c:c3:09:ef:f5:66:d6:fe:7e:ff:
7e:a1:4d:80:50:24:2d:75:b3:45:85:cf:e4:64:0f:
58:6d:c5:25:51:71:b2:a0:31:48:95:af:bc:30:c1:
80:78:13:fa:c1:b5:b1:e0:9e:8f:c1:27:ca:02:79:
14:47:d7:45:1b:07:d2:a7:e1:a7:a7:c7:6d:05:92:
ff:d5:da:7f:d4:0f:b6:8b:11:57:72:9e:d2:e7:1f:
4f:f3:67:c3:ec:49:e4:25:b8:08:4d:1b:2c:56:02:
62:66:9c:f6:5b:4a:95:0d:8f:70:85:97:66:7b:59:
3c:94:6f:b6:f9:67:aa:ad:7f:f3:fd:f5:2d:9f:e4:
19:e8:2d:5e:aa:68:f7:b4:7d:b5:03:10:73:dc:1e:
6a:f1:48:3b:1a:6c:79:6b:eb:68:77:15:1d:3a:11:
a6:18:3a:65:31:87:ba:5a:5e:90:d5:88:85:34:cb:
28:84:53:2e:53:65:c1:fc:c2:63:f0:98:6f:06:a4:
36:b9:7b:a3:97:ed:9e:24:d0:8a:39:35:19:b8:3b:
4d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:DA:EE:3C:01:9F:E7:6D:EB:78:9F:69:91:F7:2D:E6:0F:CC:BA:92
X509v3 Authority Key Identifier:
keyid:68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/3138352e3230362e3235332e302f32342d3234203d3e2037303138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.253.0/24
Signature Algorithm: sha256WithRSAEncryption
28:4f:27:49:c0:3b:c0:1e:0e:5c:78:25:50:6a:05:f8:9d:17:
de:29:e4:fa:38:5d:4b:f6:d1:1b:48:a6:05:26:b6:3b:74:dc:
d3:5e:b6:4e:0f:b8:e2:15:cd:33:fd:18:cc:d3:02:64:2b:9a:
16:67:e4:2f:1d:e0:1f:6b:db:9a:21:a9:e7:23:22:9d:af:da:
c9:42:01:d2:6a:59:26:57:3b:45:1f:b4:4e:43:8a:a6:33:24:
ee:66:5d:fb:59:5f:98:8e:e4:7d:bc:91:7a:a0:d4:41:f5:48:
fb:27:27:08:91:d8:7a:8d:67:b6:f8:14:15:fb:e6:d2:24:5b:
72:b9:6e:46:9b:04:af:15:e6:72:47:e2:19:c9:3d:d0:ce:84:
af:56:f9:ac:0d:92:67:a4:11:3c:7e:f2:46:82:67:d4:c5:ad:
70:1b:d9:2e:99:b3:9b:45:84:29:86:26:15:ff:cb:89:23:7e:
bf:3d:07:4f:15:79:51:26:46:2f:24:47:d2:26:6d:17:9e:a9:
bf:bc:f2:af:7d:55:c8:4e:27:0c:a7:42:53:5b:b1:91:b6:a3:
5d:e9:57:f6:44:90:78:61:7c:e9:a9:f4:58:a6:fc:e2:f3:84:
b9:38:84:75:54:d9:9b:3f:59:fb:5b:81:e9:04:05:5b:cb:af:
4e:37:a3:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 03:15:28 2024 by rpki-client on console-fra.rpki-client.org