Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/3138352e3138362e32342e302f32342d3234203d3e20323135383338.roa
File: 3138352e3138362e32342e302f32342d3234203d3e20323135383338.roa (raw, json)
Hash identifier: sYBJGQEADZAQ/LhDv39fbswhI7nUsQH8ZMB5xh3hosI=
Subject key identifier: 31:13:6A:1F:F5:16:37:78:64:E0:DA:13:58:36:35:2C:62:15:E8:23
Certificate issuer: /CN=b3d0280f500695a43204251c9830454ca8a2e7ac
Certificate serial: 0CCCFC7A97DF9BFFC10FA42DE833D8B5E8ED61BF
Authority key identifier: B3:D0:28:0F:50:06:95:A4:32:04:25:1C:98:30:45:4C:A8:A2:E7:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/3138352e3138362e32342e302f32342d3234203d3e20323135383338.roa
Signing time: Tue 14 May 2024 09:36:04 +0000
ROA not before: Tue 14 May 2024 09:31:04 +0000
ROA not after: Tue 13 May 2025 09:36:04 +0000
asID: 215838
IP address blocks: 185.186.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.crl
rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.mft
rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:cc:fc:7a:97:df:9b:ff:c1:0f:a4:2d:e8:33:d8:b5:e8:ed:61:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3d0280f500695a43204251c9830454ca8a2e7ac
Validity
Not Before: May 14 09:31:04 2024 GMT
Not After : May 13 09:36:04 2025 GMT
Subject: CN=31136A1FF516377864E0DA135836352C6215E823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ca:a0:9e:62:af:17:14:97:7a:7c:f4:c2:74:
fc:5c:ff:70:83:6d:f4:4d:45:b1:1a:15:be:1a:f9:
25:cc:09:96:ee:f5:2c:ad:08:2b:cf:49:cd:51:10:
1f:32:11:45:2f:5f:b8:56:25:e1:dc:d4:62:59:d0:
4b:b6:fc:16:f9:0a:a4:4d:d7:74:d0:0e:64:dc:03:
65:df:a8:da:f0:a0:ec:a8:52:86:62:f8:3f:2a:bc:
a9:ad:c3:92:71:2b:5f:2f:8f:f4:f8:9a:35:fe:12:
c5:1c:76:61:42:09:f0:f3:c7:12:2a:57:06:4e:eb:
08:0d:1b:0d:82:4e:1b:f6:6c:75:2f:b0:7a:60:ef:
39:f7:82:78:70:28:1f:ba:02:68:cd:87:84:95:03:
19:ee:9e:c0:3b:44:cd:e8:b2:eb:32:08:cb:16:36:
7a:e0:b9:2f:78:da:60:d6:2a:eb:71:51:01:c9:c3:
52:bc:63:bc:64:92:35:b7:59:6d:b7:53:1d:d5:bf:
75:0f:40:3b:25:bc:cf:9d:66:e3:1f:ca:b7:51:14:
47:0c:85:eb:13:fe:17:e0:7e:ee:35:fe:e6:af:2a:
3b:60:ad:3a:0a:58:41:30:17:b6:f1:05:15:a6:8c:
00:ba:e5:09:c7:e1:43:93:2a:66:10:d4:bd:9d:15:
bf:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:13:6A:1F:F5:16:37:78:64:E0:DA:13:58:36:35:2C:62:15:E8:23
X509v3 Authority Key Identifier:
keyid:B3:D0:28:0F:50:06:95:A4:32:04:25:1C:98:30:45:4C:A8:A2:E7:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/3138352e3138362e32342e302f32342d3234203d3e20323135383338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.24.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:89:46:d4:3f:3c:c4:a5:e7:c8:38:c3:ab:1e:9b:a4:71:5b:
31:ad:7a:c4:51:28:ae:e3:4e:d6:34:fc:77:dd:47:65:ef:2e:
45:6e:53:07:1f:d4:55:4b:57:8c:ff:f5:2a:5a:6c:2e:27:a1:
1a:18:b1:3d:11:a9:7e:5d:f3:41:e2:3b:32:76:5d:34:97:0a:
ee:75:a9:bb:fa:88:dd:08:e3:e0:16:78:d4:04:0b:2c:36:9d:
8a:96:51:00:93:88:4f:07:9e:9d:96:44:ef:c5:56:af:e7:47:
d0:f3:c6:3f:77:e5:9f:af:2b:48:66:4a:a9:72:36:69:0b:7a:
a3:11:6a:cb:0d:c7:4a:37:7d:d4:04:bd:72:23:dd:69:14:5d:
9d:fa:99:88:87:62:54:31:e0:a3:ef:a6:b6:c9:f8:fe:3d:b2:
ea:fb:42:11:01:f7:46:12:0f:73:f8:d3:bf:06:75:50:22:2e:
a6:a4:35:a1:fd:6d:ed:82:1d:37:b5:b2:74:54:65:9b:2e:93:
4e:28:77:09:70:37:79:6d:bd:05:79:92:36:68:e9:f8:7f:42:
d1:b0:12:90:2d:b4:ba:38:15:10:4c:44:a4:63:d7:75:4e:63:
cf:70:fb:44:50:e6:c0:d7:dd:29:9e:e1:f5:2e:36:da:0e:15:
a9:65:fe:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 07:52:36 2024 by rpki-client on console-fra.rpki-client.org