Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136372e302f32342d3234203d3e203232333633.roa
File: 3138352e32392e3136372e302f32342d3234203d3e203232333633.roa (raw, json)
Hash identifier: sAELgWX8Ie22DvCM3W1CHd3z0/PFeAAZAs5RBETJLOE=
Subject key identifier: CA:55:24:75:E4:C6:39:4E:1C:83:DA:7D:FE:F3:40:C8:BA:86:ED:56
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 4930FEBF305BA941249751DCCA5974B2B9A4A75C
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136372e302f32342d3234203d3e203232333633.roa
Signing time: Mon 02 Sep 2024 06:05:20 +0000
ROA not before: Mon 02 Sep 2024 06:00:20 +0000
ROA not after: Mon 01 Sep 2025 06:05:20 +0000
asID: 22363
IP address blocks: 185.29.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:30:fe:bf:30:5b:a9:41:24:97:51:dc:ca:59:74:b2:b9:a4:a7:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Sep 2 06:00:20 2024 GMT
Not After : Sep 1 06:05:20 2025 GMT
Subject: CN=CA552475E4C6394E1C83DA7DFEF340C8BA86ED56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c0:f1:ad:3d:25:50:73:de:0f:62:90:17:68:
31:9c:ec:cf:18:56:57:06:22:13:e4:56:55:2c:c6:
4f:25:6c:3a:c4:91:74:57:15:3c:2e:57:22:48:47:
52:13:7c:3f:dc:59:2b:76:ce:ec:a6:37:b0:84:b9:
a2:cd:17:23:97:c8:61:1d:11:c3:aa:1a:d7:08:b1:
44:e5:d7:e9:79:8b:99:f3:08:d5:27:aa:c1:30:6a:
ac:b3:d5:75:d1:70:ab:bf:f0:c5:c8:bb:b5:4f:85:
04:ea:ef:c5:db:c6:4f:a3:34:9b:87:64:1b:ea:73:
43:8c:b1:22:fe:ee:0c:56:68:ca:a7:8c:5c:7a:51:
5e:98:fb:bb:8f:b5:a2:02:d6:24:8c:96:9b:2e:41:
03:7a:0f:6f:f0:44:87:7b:a0:3e:d5:79:23:6a:3a:
35:48:6f:bc:69:17:f3:45:af:47:34:76:3c:1f:1a:
1d:e9:88:f1:f0:9a:72:48:85:ef:0f:25:73:62:2a:
4b:ec:35:66:1e:d0:6a:69:56:01:f1:13:39:30:38:
ad:4e:25:67:fc:53:93:65:a9:e8:61:30:47:ac:99:
65:f5:17:e8:4a:97:09:84:55:de:cb:bb:70:1c:d2:
fe:85:52:3c:7b:17:92:be:07:7a:29:be:fa:f9:3e:
05:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:55:24:75:E4:C6:39:4E:1C:83:DA:7D:FE:F3:40:C8:BA:86:ED:56
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136372e302f32342d3234203d3e203232333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.29.167.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:7f:54:e2:62:0e:be:63:fa:22:c2:54:dd:39:70:75:cd:a0:
36:b6:4f:89:94:3b:71:c7:7d:44:2e:dd:35:a6:47:4a:eb:c3:
cd:96:70:36:17:18:16:66:81:45:73:e5:f3:0f:b3:09:36:73:
a8:cc:e6:ee:b6:39:1e:3a:e1:72:6b:bf:f6:21:a5:b2:25:33:
cf:e9:d6:2b:a7:3e:6d:46:2f:b3:ca:20:04:58:35:8b:97:a1:
2f:15:0b:d1:aa:b7:ba:7d:ba:65:8a:92:e7:13:c2:f5:18:40:
23:2e:1c:8e:33:55:26:76:c5:ea:71:65:b4:66:d9:6b:44:b1:
dc:f9:11:ee:3d:3a:4c:cb:c5:58:21:14:2b:ad:d9:ea:0f:79:
0b:c0:ef:5f:dd:66:18:1d:24:44:83:d6:41:4f:9d:e3:73:f2:
85:af:6d:d8:74:ea:39:b7:48:15:76:f6:70:78:9a:3c:f8:04:
fd:93:2b:49:02:6c:52:d6:58:74:26:d2:c9:5a:c8:38:c8:3c:
29:f1:0f:c8:d3:b4:94:a0:1b:97:b7:1f:83:47:fd:64:11:db:
31:86:d7:e9:ba:c5:f9:d8:3a:34:10:2a:2f:17:f2:46:ed:4e:
c3:00:71:1f:2e:d4:1c:0a:8b:f4:0b:8b:0e:b2:59:60:dd:96:
2b:67:a9:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:52:26 2024 by rpki-client on console-ams.rpki-client.org