Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136362e302f32342d3234203d3e203438393235.roa
File: 3138352e32392e3136362e302f32342d3234203d3e203438393235.roa (raw, json)
Hash identifier: GHu+3j2Ide90pyH4miTUsTfysRGyBlG9uWQCan5FQoM=
Subject key identifier: 33:B4:0F:CA:A5:9E:39:8D:BF:13:4D:AA:2C:CE:31:1E:06:4F:0C:AA
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 5F04624A35E89C9F7FBF8D2849BEC9E61DE08CBD
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136362e302f32342d3234203d3e203438393235.roa
Signing time: Sat 26 Oct 2024 14:43:25 +0000
ROA not before: Sat 26 Oct 2024 14:38:25 +0000
ROA not after: Sat 25 Oct 2025 14:43:25 +0000
asID: 48925
IP address blocks: 185.29.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:04:62:4a:35:e8:9c:9f:7f:bf:8d:28:49:be:c9:e6:1d:e0:8c:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Oct 26 14:38:25 2024 GMT
Not After : Oct 25 14:43:25 2025 GMT
Subject: CN=33B40FCAA59E398DBF134DAA2CCE311E064F0CAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a2:1e:4c:7f:bd:82:33:d8:5c:11:ec:4a:8d:
27:17:29:3b:0f:8e:4d:4e:5d:64:05:da:37:e3:d3:
9d:e6:cd:c3:82:58:42:4e:6d:e2:92:c4:d8:2c:9b:
7c:3a:15:e3:78:f1:b9:81:48:06:63:08:a3:eb:d1:
67:1a:8a:78:8c:96:4b:74:21:4d:d1:19:9d:72:3a:
2a:b8:15:87:88:3f:7f:34:4a:46:07:5d:e3:58:6d:
6e:e1:24:32:97:47:4f:01:15:9d:60:e1:21:14:5c:
65:c2:18:99:d1:a3:73:7c:48:fd:a0:ee:75:d4:36:
d9:ac:63:bc:14:9e:43:ce:25:d5:8f:a6:ae:98:8c:
95:a0:5b:0e:65:3b:5d:60:b3:87:4c:82:6b:18:c5:
3f:42:2c:e4:22:fb:4f:13:2c:19:4f:3e:2c:03:d6:
f9:76:27:d6:83:1c:f4:29:3d:a7:75:8a:d5:b8:4f:
40:db:8c:b1:69:3e:fd:df:a7:70:2e:83:f2:59:14:
ee:d5:f7:38:9f:f5:f2:69:04:86:f4:4d:97:01:95:
d1:46:4e:81:bb:5a:51:c3:81:ff:2e:c9:f2:b4:92:
e0:85:96:36:5e:e6:09:98:0f:27:72:62:37:41:87:
37:8a:cf:d8:98:11:22:ce:26:4c:16:91:02:72:88:
e1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B4:0F:CA:A5:9E:39:8D:BF:13:4D:AA:2C:CE:31:1E:06:4F:0C:AA
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136362e302f32342d3234203d3e203438393235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.29.166.0/24
Signature Algorithm: sha256WithRSAEncryption
91:ce:da:22:59:ff:7a:28:57:cb:3d:30:2f:c7:9d:cc:7b:5a:
d3:2a:ae:e3:96:ab:6f:b7:b3:51:3c:06:5c:53:5e:92:70:55:
56:b5:91:9f:46:ee:e2:9d:3b:6f:6c:20:4f:30:d4:79:e1:8c:
78:d6:cd:a6:32:ba:a2:47:a7:6c:13:4c:d8:e9:14:a5:f2:af:
02:3c:c6:2c:b5:43:4b:55:a1:91:9c:8b:b1:cd:ef:fe:83:96:
44:4d:e1:f3:88:b0:80:17:84:0c:6f:10:a6:d4:5f:8a:05:8a:
3a:41:2d:20:f5:0d:21:b0:7d:03:7b:bf:5c:24:8e:4f:b0:4d:
21:c1:13:9d:cc:c5:39:70:b2:f8:99:f4:06:7b:01:1a:4a:85:
d8:ca:e3:98:98:72:ba:25:1a:1a:e3:a2:f1:78:53:12:79:68:
9d:59:1d:7c:7f:17:d3:c5:e3:b6:09:24:5b:73:b9:5c:ff:fe:
63:7f:95:d4:39:44:5f:be:8b:ec:09:fc:b4:aa:4f:5f:2b:07:
c5:ef:53:ce:47:3d:7f:8f:cd:86:59:59:e8:bb:0a:33:13:f9:
1f:4e:0e:09:df:f3:64:f4:70:d1:86:c8:d0:05:28:1e:9c:90:
6f:a5:be:7b:7c:59:0d:48:e0:f4:4a:93:15:4e:b9:69:74:a8:
7a:fe:a0:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:13 2024 by rpki-client on console-fra.rpki-client.org