Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138342e302f32342d3234203d3e203538303631.roa
File: 3137382e3230382e3138342e302f32342d3234203d3e203538303631.roa (raw, json)
Hash identifier: 0fEY0IAryQKVRKG9mtCtWAuoAneMc9QKYHJzYZghjeE=
Subject key identifier: B0:E6:BD:C1:FE:91:7E:41:BF:AA:52:92:46:41:73:97:B4:3D:6A:7C
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 508A148D36608CE5008E25377CBDAAFDA6808A27
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138342e302f32342d3234203d3e203538303631.roa
Signing time: Fri 24 Jan 2025 18:53:52 +0000
ROA not before: Fri 24 Jan 2025 18:48:52 +0000
ROA not after: Fri 23 Jan 2026 18:53:52 +0000
asID: 58061
IP address blocks: 178.208.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:8a:14:8d:36:60:8c:e5:00:8e:25:37:7c:bd:aa:fd:a6:80:8a:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Jan 24 18:48:52 2025 GMT
Not After : Jan 23 18:53:52 2026 GMT
Subject: CN=B0E6BDC1FE917E41BFAA529246417397B43D6A7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:09:31:be:0c:f3:89:98:29:40:6c:04:c4:26:
a0:93:a3:33:8d:b6:67:7c:7f:41:35:c5:54:cf:df:
59:2d:ad:c5:d1:68:d5:2c:d7:93:8f:64:86:c4:03:
0d:c0:96:9a:c7:db:e7:01:fd:1b:9a:53:ba:24:d0:
bb:f3:a8:8f:b8:be:7d:04:8f:19:80:fc:61:37:37:
15:d9:e7:5f:a3:ac:a9:03:fb:3f:43:c0:1f:90:37:
e2:1c:0f:b8:d8:a1:f8:b3:0f:66:90:67:18:81:b3:
90:3f:ab:6d:08:b1:b1:85:ea:70:a3:84:12:48:84:
da:34:1e:29:ab:94:c1:f3:01:db:fe:05:72:a4:6d:
5f:90:1a:6a:de:af:23:55:ed:93:55:29:dc:12:5c:
46:fe:2f:6e:58:ea:0c:77:6d:54:80:d5:3e:7e:c3:
b6:ea:31:2f:d0:f0:9e:86:4d:04:d8:a4:83:22:c2:
fe:07:90:75:d9:d1:98:01:60:33:d9:60:be:eb:88:
13:53:0a:e5:a1:61:52:3f:b5:ab:5e:31:41:49:20:
45:7d:ce:fd:b8:f5:36:b7:2f:a7:2b:fb:18:d1:ec:
a8:37:66:b5:f3:e2:00:ee:6c:62:5f:57:67:dd:eb:
3d:68:f0:51:ee:d3:4a:f0:26:b5:f0:84:8e:1d:dc:
a0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:E6:BD:C1:FE:91:7E:41:BF:AA:52:92:46:41:73:97:B4:3D:6A:7C
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138342e302f32342d3234203d3e203538303631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.184.0/24
Signature Algorithm: sha256WithRSAEncryption
89:f6:f4:26:b2:8d:32:1f:b9:40:44:54:f4:ad:12:38:15:93:
a9:a3:7f:2f:56:ee:65:86:cc:0f:94:88:92:92:18:b1:35:cb:
cc:49:44:6e:71:7e:e4:f3:32:05:88:ce:57:32:2e:27:6a:fe:
cf:48:0b:f9:bc:76:c8:b0:62:ee:59:22:c5:d9:2d:0d:94:18:
ae:e1:58:07:62:af:0a:a1:e8:20:59:76:f9:7c:c2:05:32:c2:
03:45:37:76:ad:2b:09:dc:cf:71:51:c6:a2:fe:10:b6:4c:20:
c4:6e:5d:a6:46:8e:ed:54:ea:22:bf:0f:92:a7:8b:fb:59:06:
50:f1:e8:40:81:ea:19:f1:35:48:0d:d8:9a:6f:c7:4c:e3:6e:
21:9b:9d:ff:75:59:f8:28:7b:b3:60:06:b5:94:19:1a:a9:fd:
9e:87:9c:b0:72:f7:ac:bc:4e:0c:81:ae:b7:94:1c:4f:46:8a:
b3:29:d0:ec:d5:33:c1:77:71:44:50:2c:6b:f3:f7:88:10:d0:
cf:e5:db:36:60:ca:f5:1e:bd:55:2d:39:49:c1:51:f0:78:1f:
8a:a6:62:cd:8a:39:70:42:dc:43:b7:52:fc:ca:2e:9b:86:76:
e1:a9:3e:da:15:7a:df:5d:86:17:50:fa:da:fc:1a:38:64:f5:
73:e6:1c:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:15:35 2025 by rpki-client