Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136362e302f32342d3234203d3e203438393235.roa
File: 3138352e32392e3136362e302f32342d3234203d3e203438393235.roa (raw, json)
Hash identifier: 0wuyVobuwW33TizDqZnemMvO2Hz0mDQpp+zJiNvk7KM=
Subject key identifier: 59:09:9B:C9:2B:07:D4:1D:E4:38:CD:75:D0:23:24:16:2C:2C:7F:E8
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 07E1CA9A77799C3B64551286C58B801A4CE6F32F
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136362e302f32342d3234203d3e203438393235.roa
Signing time: Sat 25 Nov 2023 14:35:09 +0000
ROA not before: Sat 25 Nov 2023 14:30:09 +0000
ROA not after: Sat 23 Nov 2024 14:35:09 +0000
asID: 48925
IP address blocks: 185.29.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:e1:ca:9a:77:79:9c:3b:64:55:12:86:c5:8b:80:1a:4c:e6:f3:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Nov 25 14:30:09 2023 GMT
Not After : Nov 23 14:35:09 2024 GMT
Subject: CN=59099BC92B07D41DE438CD75D02324162C2C7FE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:af:4e:e1:c5:ce:3f:5d:4c:e9:ab:b1:df:d3:
5e:a9:3e:3b:e4:0c:56:2f:a0:48:8f:98:15:9a:5b:
df:30:53:5a:45:e8:61:8a:49:2d:b5:9d:50:8d:90:
f6:af:db:10:78:9f:c8:66:47:7d:ca:c0:02:67:be:
79:ed:48:66:6c:50:46:24:15:8a:b7:16:6b:e5:c8:
1d:eb:fb:c1:f5:6b:63:9b:b2:45:66:93:2a:51:0f:
c0:60:83:8f:83:15:cd:7e:12:b4:d8:75:04:f3:b4:
9c:18:b5:db:38:e4:96:22:fe:d4:d3:00:b5:a8:bd:
2d:41:2c:c8:68:83:4f:58:c8:bd:df:81:ca:21:50:
d7:28:1d:c1:bb:58:33:c3:3a:55:6b:bd:cb:ea:e9:
e7:44:26:71:89:5a:7f:ac:14:1f:12:b7:1f:ec:00:
a9:44:4c:16:89:ff:99:b6:59:99:68:56:9d:b2:9a:
b9:6e:4d:61:a4:44:18:74:ca:7b:f2:72:e2:e4:bb:
59:7c:35:80:a3:85:df:71:2f:44:93:81:c8:53:b7:
83:9a:7d:f2:16:76:2d:a6:2e:53:4d:eb:65:95:95:
b8:02:ac:90:ed:96:65:50:3b:24:ef:c0:3c:3d:7b:
66:9f:91:51:ad:b2:8c:5e:01:29:2c:d2:8f:3c:49:
5b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:09:9B:C9:2B:07:D4:1D:E4:38:CD:75:D0:23:24:16:2C:2C:7F:E8
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136362e302f32342d3234203d3e203438393235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.29.166.0/24
Signature Algorithm: sha256WithRSAEncryption
29:25:86:4b:04:95:fa:18:d5:38:fc:f6:e6:57:0c:65:19:e3:
86:be:cc:cb:53:43:30:a0:21:07:fc:42:89:75:8e:fd:a5:2f:
43:62:f8:8c:28:21:0e:d9:e2:76:5c:a9:15:a0:81:7a:ce:fd:
8d:c4:fa:bd:24:32:3c:02:24:50:b0:cf:0e:4e:0c:ee:20:79:
a5:11:31:49:ae:31:f8:1e:03:bc:a4:6a:8f:ed:cf:9f:13:a8:
04:f1:fd:9e:20:91:db:39:84:73:42:bf:b8:1c:10:c5:40:79:
d3:d7:2d:1a:d7:61:65:0c:6a:e9:7d:0e:5a:06:4f:37:4e:23:
47:7c:34:86:13:d8:91:68:a0:f0:13:60:84:83:fd:df:cc:ac:
1f:b1:bb:c7:ae:02:8c:20:d6:1d:53:b7:62:cf:45:2a:e0:4d:
57:96:91:f3:5d:d7:65:d1:d7:e4:b2:b5:5c:c7:59:dc:43:09:
40:f5:12:a0:93:05:ce:07:52:78:0f:6e:5a:ea:d5:63:de:3d:
11:80:87:c3:f7:d4:e8:e0:3b:92:8f:a0:6a:e6:5a:b6:62:45:
3d:7c:87:d8:f1:1f:2d:a0:c5:4c:02:ac:d3:67:7b:54:1c:34:
cf:c6:d8:b1:2c:af:51:34:e2:68:00:6d:d4:52:b6:30:9e:89:
af:23:35:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 00:49:43 2024 by rpki-client on console-ams.rpki-client.org