Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138332e302f32342d3234203d3e20323134363737.roa
File: 3137382e3230382e3138332e302f32342d3234203d3e20323134363737.roa (raw, json)
Hash identifier: k3aTNTYuzg7Xr2pe9WDaFdCJbkQuqCfV8xNGjXhZzpA=
Subject key identifier: 11:C1:FF:62:2E:5C:AD:4D:68:74:B4:7B:1C:67:83:14:B5:0B:BB:14
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 0EFA1E79E87A32CBE2B826E9974BFFE32CBB8ED7
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138332e302f32342d3234203d3e20323134363737.roa
Signing time: Thu 14 Nov 2024 19:52:59 +0000
ROA not before: Thu 14 Nov 2024 19:47:59 +0000
ROA not after: Thu 13 Nov 2025 19:52:59 +0000
asID: 214677
IP address blocks: 178.208.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:fa:1e:79:e8:7a:32:cb:e2:b8:26:e9:97:4b:ff:e3:2c:bb:8e:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Nov 14 19:47:59 2024 GMT
Not After : Nov 13 19:52:59 2025 GMT
Subject: CN=11C1FF622E5CAD4D6874B47B1C678314B50BBB14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:90:cb:1c:cc:0a:d3:09:b0:0c:5f:ff:01:0b:
8a:31:5a:5c:10:99:7f:ed:f3:91:46:e0:b1:eb:1a:
81:a4:93:75:2b:58:25:ce:df:f7:1e:b5:83:e9:19:
66:30:69:bf:f9:d5:df:61:14:e6:84:89:27:e1:56:
fe:c7:8a:f1:f7:56:de:02:6f:9c:18:42:84:83:e9:
1e:6c:17:bf:ad:60:94:72:39:8c:a2:b3:51:be:76:
77:62:09:8b:1e:55:f4:4c:20:6e:9e:ed:99:a0:41:
61:d3:98:2a:43:4a:f2:54:37:d4:62:95:1b:02:71:
87:f4:f8:3f:a8:38:1d:d4:ae:1e:ee:34:26:7d:b2:
3c:0b:b4:43:af:2f:83:67:d4:65:c5:4c:a6:45:c8:
81:e0:0d:a1:e6:cd:7b:bc:91:5b:2d:29:f4:a5:30:
fd:5c:77:d4:18:e9:36:6e:59:8d:93:dc:e0:22:01:
1b:5e:0a:d4:c5:cf:94:4e:6f:7e:b1:85:ab:93:a9:
80:df:e0:6e:62:08:af:5a:b9:08:d8:7d:a8:56:91:
0d:1c:68:29:c0:3a:df:16:1a:66:c0:81:c0:42:4e:
ee:72:f8:c4:4a:04:05:da:6a:54:ce:c5:f3:b5:f0:
8f:15:d2:47:e3:bb:57:4a:6b:dc:d0:2c:09:db:10:
21:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:C1:FF:62:2E:5C:AD:4D:68:74:B4:7B:1C:67:83:14:B5:0B:BB:14
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138332e302f32342d3234203d3e20323134363737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.183.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:b3:b3:89:f6:6d:36:42:e6:4b:f8:75:de:06:15:29:26:0d:
76:d3:1b:e7:02:93:84:fb:d4:5f:57:d1:71:60:9e:b9:57:b3:
ac:0e:ba:b3:dd:e1:13:d7:14:4b:02:b1:ef:0f:34:1d:d0:75:
9b:4b:c4:9e:cb:fd:fe:43:1a:cb:1b:e7:2c:ce:11:03:15:38:
bc:51:a5:d9:a8:cd:a5:4e:e1:0f:00:17:21:b1:4a:c7:31:47:
2a:6c:02:87:96:da:6a:69:9c:09:ad:a9:e7:22:d6:dc:9f:99:
9a:2d:cd:34:85:9c:74:91:80:19:b3:98:62:1c:ec:25:7d:d2:
40:4c:d7:b4:67:20:c6:9d:f3:65:a8:df:d5:ca:90:36:57:07:
b8:8f:25:fb:67:76:17:95:fb:87:ae:bb:ca:fd:1d:bc:97:e9:
7c:7a:07:4e:6f:f3:32:01:8b:5e:06:1b:f0:17:ce:af:de:5f:
9c:32:51:c9:cf:b6:24:a5:5d:6b:94:dd:77:39:58:67:a8:dd:
d3:05:82:ec:6a:2a:5c:38:56:a1:ac:fe:f4:ed:05:e7:c9:65:
bb:21:d7:42:2b:ff:36:17:51:5b:cd:5b:b1:23:d2:48:7c:21:
77:cc:9d:36:2b:21:f7:36:e0:7d:1b:2c:87:cc:60:d0:ac:cd:
57:f9:87:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:13 2024 by rpki-client on console-fra.rpki-client.org