Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/3138352e3138362e32372e302f32342d3234203d3e203631333137.roa
File: 3138352e3138362e32372e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: 2F3f2M3iftyv7EiTkHvKpwsHqihrOdk50XbB4vq7cXc=
Subject key identifier: 81:CE:37:78:02:F2:47:D0:F7:9B:0D:29:DA:42:DA:86:31:96:D0:6C
Certificate issuer: /CN=b3d0280f500695a43204251c9830454ca8a2e7ac
Certificate serial: 4AA411FB43626FDE58457EED992536DF04A9FF14
Authority key identifier: B3:D0:28:0F:50:06:95:A4:32:04:25:1C:98:30:45:4C:A8:A2:E7:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/3138352e3138362e32372e302f32342d3234203d3e203631333137.roa
Signing time: Tue 14 May 2024 09:36:04 +0000
ROA not before: Tue 14 May 2024 09:31:04 +0000
ROA not after: Tue 13 May 2025 09:36:04 +0000
asID: 61317
IP address blocks: 185.186.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.crl
rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.mft
rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 13:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:a4:11:fb:43:62:6f:de:58:45:7e:ed:99:25:36:df:04:a9:ff:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3d0280f500695a43204251c9830454ca8a2e7ac
Validity
Not Before: May 14 09:31:04 2024 GMT
Not After : May 13 09:36:04 2025 GMT
Subject: CN=81CE377802F247D0F79B0D29DA42DA863196D06C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0f:49:aa:ca:37:90:f2:32:12:cb:cb:c5:5d:
11:06:6b:a6:66:bd:6d:9e:1b:de:7c:02:19:e0:ee:
98:5f:7e:8e:41:a7:a5:ff:00:ae:69:30:2a:b4:9e:
73:4e:1f:05:6b:d6:5f:a2:7a:7f:7c:c5:e5:06:61:
33:65:53:a4:f1:54:eb:46:3b:54:fe:56:92:98:00:
56:99:fa:99:5a:be:21:4d:18:05:5e:f1:99:79:5b:
ce:97:ed:2a:65:89:8a:e3:ca:ae:51:ef:f5:09:40:
e7:4b:be:6b:ce:83:a8:aa:3c:7c:36:75:27:1f:3c:
d5:aa:b7:0a:1d:50:da:44:d3:4b:80:fe:37:8f:eb:
d2:29:ee:2c:d1:b4:b4:70:31:b1:fb:c2:30:15:d7:
90:3e:bc:bb:39:f0:9e:cb:8c:13:fa:07:78:d3:8a:
56:30:0f:d0:57:2d:4e:35:c3:10:23:ab:2d:4f:41:
a2:9b:52:23:a9:52:e9:fb:90:64:fd:ae:5f:b1:4a:
3b:ca:87:47:a0:94:a8:08:b2:17:cd:97:72:41:c1:
80:5d:40:d3:fc:8f:36:fe:f0:8f:5d:ea:20:ad:78:
a9:1b:ea:39:ea:1a:93:29:dc:aa:0d:c1:d9:43:a9:
46:a5:92:4b:5c:1e:bc:84:a5:f2:dd:56:e5:7e:ac:
3d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:CE:37:78:02:F2:47:D0:F7:9B:0D:29:DA:42:DA:86:31:96:D0:6C
X509v3 Authority Key Identifier:
keyid:B3:D0:28:0F:50:06:95:A4:32:04:25:1C:98:30:45:4C:A8:A2:E7:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/3138352e3138362e32372e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.27.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:44:2e:48:2d:02:9b:35:fe:f3:84:a7:d9:14:2e:fc:e0:99:
45:b7:44:e6:ef:64:8a:70:54:0d:1d:19:40:9a:21:c4:75:f8:
e0:1b:83:fb:46:9b:df:86:1e:68:3f:1a:07:9d:ce:fa:7b:77:
96:e9:68:c5:11:0c:dd:76:5a:5e:c3:15:11:f6:1e:67:7c:7e:
64:bc:78:5f:fc:ec:6b:18:22:f9:0d:9f:44:57:3d:01:8b:f3:
ff:ab:97:85:1c:1f:02:76:a1:a6:92:80:4f:d6:26:2d:d3:80:
73:60:ef:ab:62:fe:ed:ee:88:fc:fc:b8:60:41:1c:40:87:fc:
1f:3a:05:fd:e9:7b:b0:1b:3d:5e:2f:0e:5a:c1:a8:0a:3a:96:
f5:c9:b6:54:13:af:53:7f:09:cb:5a:7e:7c:5e:c0:ca:f2:49:
f3:46:5e:53:8a:98:0e:46:e0:16:7b:a7:c1:f1:76:fc:d5:d3:
b7:2e:2a:8e:2d:5f:4e:d7:79:b0:c7:73:f2:bd:b5:39:7f:1f:
3f:39:46:18:d1:05:08:86:74:9c:7c:f2:9e:46:0e:1d:a2:cf:
74:68:e2:14:c7:58:90:e0:70:ba:d8:3a:2d:9e:cb:ea:94:fe:
17:03:7a:03:e7:42:73:b1:f1:a1:af:1a:db:dc:3a:91:55:26:
f1:4e:80:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 20:49:33 2024 by rpki-client on console-fra.rpki-client.org