Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138322e302f32342d3234203d3e203230343733.roa
File: 3137382e3230382e3138322e302f32342d3234203d3e203230343733.roa (raw, json)
Hash identifier: NCRbLKtwN0xYXhFHmL8a5PBMuzl502YJd5VADZuXR3w=
Subject key identifier: 68:CF:E4:DA:D1:5E:15:9D:12:B3:A8:20:5F:8E:25:E9:2F:DD:60:5B
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 6410373D66059CB019D15ABCDEEABFFBE0E7D271
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138322e302f32342d3234203d3e203230343733.roa
Signing time: Thu 14 Nov 2024 18:00:40 +0000
ROA not before: Thu 14 Nov 2024 17:55:40 +0000
ROA not after: Thu 13 Nov 2025 18:00:40 +0000
asID: 20473
IP address blocks: 178.208.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:10:37:3d:66:05:9c:b0:19:d1:5a:bc:de:ea:bf:fb:e0:e7:d2:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Nov 14 17:55:40 2024 GMT
Not After : Nov 13 18:00:40 2025 GMT
Subject: CN=68CFE4DAD15E159D12B3A8205F8E25E92FDD605B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1c:36:18:d9:7a:df:c8:de:c9:98:10:39:7d:
25:57:19:7e:bf:56:3b:69:73:fc:84:fd:b3:40:3c:
38:de:07:80:c5:66:ec:eb:20:ef:70:13:d7:85:90:
05:aa:ab:c9:2c:69:51:04:e2:8f:26:31:fb:47:db:
4d:ac:7b:c4:5f:81:4d:de:31:88:fe:6a:c6:44:aa:
e3:5b:20:48:7d:75:f1:57:9b:55:a8:97:2f:1d:d5:
e3:1a:45:75:32:81:44:37:37:2b:e4:7d:b4:ce:05:
99:91:b5:64:72:85:83:de:54:0c:4d:3e:bd:e9:f7:
6a:94:40:58:b4:01:c9:c3:96:90:28:69:99:11:45:
ed:3e:f8:11:54:d7:87:53:70:50:ff:f1:95:bd:0e:
98:c4:06:eb:ec:bd:8e:a5:10:37:15:23:70:be:ae:
05:1e:f5:42:63:60:82:15:c7:55:cb:d4:3d:3b:7d:
e6:b0:d9:f6:c7:ea:e7:82:53:18:cc:1b:94:80:1d:
6c:cf:98:7b:ba:18:17:ec:9d:35:43:2d:14:9f:ef:
57:73:5e:f8:50:e1:ad:1a:f0:32:71:cc:12:d3:5a:
9c:d9:ae:c5:2e:a9:98:8a:d6:c4:d3:e8:ae:04:a5:
14:26:74:32:6c:60:42:bc:7e:60:74:9a:3d:c8:20:
c5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:CF:E4:DA:D1:5E:15:9D:12:B3:A8:20:5F:8E:25:E9:2F:DD:60:5B
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138322e302f32342d3234203d3e203230343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.182.0/24
Signature Algorithm: sha256WithRSAEncryption
48:ec:12:6a:6d:b6:d4:df:93:fb:a4:a8:3b:83:42:82:12:1d:
86:2e:7a:a2:39:7b:48:4c:6e:94:8d:f3:fe:6f:ed:78:57:55:
ab:6b:e4:ae:a7:5e:a8:0d:d1:16:a5:78:82:62:6f:eb:39:cf:
2d:0c:b8:42:a1:01:01:ab:df:6b:37:db:79:81:a8:7f:75:6a:
f9:45:88:a5:f0:54:7c:11:ea:74:02:bd:f3:48:e3:dd:ad:9c:
54:28:d5:c5:7b:6e:21:d8:23:57:a2:24:9c:77:fe:32:be:25:
66:0f:3f:fe:e5:41:d5:be:6c:52:b8:4c:81:58:b8:f7:a1:83:
ba:d3:2b:31:41:fd:cc:af:b3:09:f6:1b:a3:5b:18:4c:6c:63:
e1:8e:7d:0e:f9:5b:a9:94:6b:4b:c6:2e:bb:82:5f:dc:bc:15:
a4:01:cd:58:2a:97:95:92:6a:0c:57:72:57:fa:80:b6:a1:1d:
8d:c2:35:42:fa:39:f1:ee:19:8b:60:46:d3:a5:08:6a:26:2a:
7c:b5:bd:f3:8f:78:80:b0:51:ba:69:5e:31:07:3f:04:cf:4f:
33:d6:28:f1:bc:a6:73:52:48:60:de:26:c8:fc:07:c5:d3:5d:
8e:50:c1:1a:22:9f:4f:3f:ea:29:b6:02:0d:08:93:e6:7c:3f:
db:5d:3e:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 17:13:49 2024 by rpki-client on console-ams.rpki-client.org