Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/3138352e3138362e32362e302f32342d3234203d3e20323135313434.roa
File: 3138352e3138362e32362e302f32342d3234203d3e20323135313434.roa (raw, json)
Hash identifier: FGw0uQkf/MUJnZ7pOVEyfqDiaQUqk5EZIWLuflhMios=
Subject key identifier: D1:86:87:02:91:5D:5E:7D:12:BD:1F:C0:3F:DF:35:0D:31:E3:83:A9
Certificate issuer: /CN=b3d0280f500695a43204251c9830454ca8a2e7ac
Certificate serial: 20998593D37801FEF8C8E0D52F86C841F5A17E7B
Authority key identifier: B3:D0:28:0F:50:06:95:A4:32:04:25:1C:98:30:45:4C:A8:A2:E7:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/3138352e3138362e32362e302f32342d3234203d3e20323135313434.roa
Signing time: Wed 14 Aug 2024 11:51:33 +0000
ROA not before: Wed 14 Aug 2024 11:46:33 +0000
ROA not after: Wed 13 Aug 2025 11:51:33 +0000
asID: 215144
IP address blocks: 185.186.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.crl
rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.mft
rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:99:85:93:d3:78:01:fe:f8:c8:e0:d5:2f:86:c8:41:f5:a1:7e:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3d0280f500695a43204251c9830454ca8a2e7ac
Validity
Not Before: Aug 14 11:46:33 2024 GMT
Not After : Aug 13 11:51:33 2025 GMT
Subject: CN=D1868702915D5E7D12BD1FC03FDF350D31E383A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:3d:39:b4:05:80:91:96:b2:a8:19:20:f3:d3:
50:c9:8a:da:52:1b:91:d0:25:a0:c9:78:49:0e:d0:
5e:cd:b5:8e:c2:e0:ef:03:e0:a1:c7:12:ea:38:c7:
2d:5f:82:05:ac:45:39:2b:6a:5d:42:66:6b:ad:0b:
63:bf:e6:b9:45:90:b0:ee:48:4b:cf:88:e5:63:3f:
d4:b0:3c:20:66:2b:cd:1e:3b:3b:3c:ff:a4:d0:ad:
32:1b:cc:67:e5:ce:37:58:36:8c:94:79:92:4f:79:
12:fd:84:ce:30:10:30:26:14:a7:9e:a7:4b:9e:07:
f6:25:31:10:bc:51:60:0b:98:ac:7a:fb:9c:2a:9e:
0e:07:ff:9c:4a:5b:4a:45:5b:a2:5b:e8:a5:5b:e0:
b8:29:6f:ad:1f:95:42:c8:65:7f:43:34:3f:4d:3d:
c4:18:a4:0f:04:11:1f:b2:16:97:21:cf:52:f4:e2:
eb:9d:07:f3:4e:6f:7e:2d:37:a4:75:04:34:b5:5d:
93:39:43:a7:30:96:fe:4b:32:ed:4c:88:7b:70:15:
d4:f5:e8:13:3b:f5:95:af:32:a5:d5:61:ae:7d:a5:
5a:3c:17:80:d9:05:60:80:f9:da:dc:20:50:39:af:
29:e8:a6:aa:90:b9:15:36:65:71:08:00:b7:0f:8c:
ae:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:86:87:02:91:5D:5E:7D:12:BD:1F:C0:3F:DF:35:0D:31:E3:83:A9
X509v3 Authority Key Identifier:
keyid:B3:D0:28:0F:50:06:95:A4:32:04:25:1C:98:30:45:4C:A8:A2:E7:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/3138352e3138362e32362e302f32342d3234203d3e20323135313434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.26.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:e8:9e:81:56:d4:eb:af:94:b8:41:29:5e:dd:79:16:25:6a:
f5:b1:f0:7f:8d:7e:25:d2:76:b7:3d:9d:e4:92:6d:34:9f:8a:
f6:49:3f:8d:8f:e2:70:2c:8b:86:81:6a:b1:8e:3c:a9:9a:9c:
6e:eb:a4:e6:18:62:29:d4:d3:8f:d3:ba:e2:f4:02:b7:9c:81:
a8:9d:9b:71:cf:52:ed:5d:7e:62:89:30:6b:17:b8:6c:fe:7d:
61:00:d0:69:a0:96:25:39:38:6a:b4:86:10:95:74:83:e8:84:
f1:7c:52:3e:13:12:bf:f3:ad:c0:7e:63:a2:5a:72:ae:02:3f:
5c:e1:6e:df:46:18:66:a5:e3:14:1b:67:5f:28:b2:50:e3:e1:
60:2f:1a:e7:99:f0:4a:b5:aa:b7:06:59:10:bd:c9:fa:fc:54:
07:c0:8a:ee:16:6b:cb:a2:81:20:ad:92:f5:c8:31:ce:59:1a:
4c:d8:49:e3:bd:97:51:85:44:d4:22:f6:45:8f:4d:c1:e9:09:
94:6e:25:61:05:04:b0:a8:40:46:7c:f2:8d:eb:18:99:db:a8:
a3:bb:58:7f:b5:c2:69:61:d7:27:25:72:24:8f:06:ef:99:3a:
35:77:3e:0b:f8:d0:bd:88:bc:31:31:b2:7d:51:dd:af:2a:3d:
63:8a:ce:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:43 2024 by rpki-client on console-ams.rpki-client.org