Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3138352e3234302e3130372e302f32342d3234203d3e20383334.roa
File: 3138352e3234302e3130372e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: d+zg4jV72ChVu5mEM3Ob4bB26yhmOMo6J0N98yB12XA=
Subject key identifier: 14:48:C9:6A:0C:62:75:30:F3:CB:26:4A:70:D5:F8:2E:66:CE:F0:27
Certificate issuer: /CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Certificate serial: 1F97E1A109120EE858DC4748CB3A85928AFFC0BA
Authority key identifier: 8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3138352e3234302e3130372e302f32342d3234203d3e20383334.roa
Signing time: Tue 03 Sep 2024 10:07:43 +0000
ROA not before: Tue 03 Sep 2024 10:02:43 +0000
ROA not after: Tue 02 Sep 2025 10:07:43 +0000
asID: 834
IP address blocks: 185.240.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl
rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft
rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 13:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:97:e1:a1:09:12:0e:e8:58:dc:47:48:cb:3a:85:92:8a:ff:c0:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Validity
Not Before: Sep 3 10:02:43 2024 GMT
Not After : Sep 2 10:07:43 2025 GMT
Subject: CN=1448C96A0C627530F3CB264A70D5F82E66CEF027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:75:ae:07:15:2f:3c:4d:d3:0f:b0:4c:94:44:
6d:35:12:bd:11:98:61:08:5c:f2:db:e7:dd:43:f9:
c1:c4:2a:8b:c9:81:4c:1d:aa:54:22:09:f0:8e:f7:
32:bc:4c:e2:13:2d:e6:53:11:79:41:87:91:bb:17:
c4:5e:c4:a2:34:20:f2:00:c4:b0:85:d7:86:40:1b:
92:23:27:41:cd:ba:60:ac:61:27:d3:b9:01:00:a7:
a8:6d:a7:f7:e0:9e:a5:b5:f8:7f:55:11:6f:4b:e1:
8b:bc:69:b2:f3:29:1d:b3:bf:49:bb:a0:f2:37:63:
89:f9:7d:cc:e6:04:33:7d:c7:2e:d4:a2:97:bb:22:
24:83:28:62:4c:41:56:26:c3:34:28:7e:d5:fd:88:
cf:1f:4e:6e:eb:b2:8d:4a:41:0d:e3:58:a8:af:02:
e9:28:59:e0:eb:9e:78:cf:78:7b:eb:04:fd:37:ba:
85:b5:35:8f:a0:1a:93:22:ff:82:1c:e3:2f:21:e1:
f8:61:25:dc:e4:4a:c3:0b:6d:05:c9:06:ed:1b:88:
08:74:2a:f3:d8:21:80:5c:78:65:83:09:7b:5c:de:
b1:06:f3:23:09:fb:52:64:87:ad:1b:e7:db:03:77:
8f:e7:30:df:82:a2:14:fd:b2:00:cd:00:7f:ae:3b:
42:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:48:C9:6A:0C:62:75:30:F3:CB:26:4A:70:D5:F8:2E:66:CE:F0:27
X509v3 Authority Key Identifier:
keyid:8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3138352e3234302e3130372e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.107.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:56:f0:74:2d:36:b2:cf:b1:4a:b6:eb:4a:27:ed:d6:d7:86:
63:31:73:3d:4a:78:63:79:0e:b5:de:19:a5:c9:8c:c6:90:c6:
17:1a:9b:32:9b:a2:7a:55:ac:73:be:76:83:23:1c:d9:c0:9e:
5b:db:8c:da:b9:0a:bb:1b:06:e4:57:7c:6a:48:f8:47:e8:08:
17:d3:7a:56:26:73:50:8c:28:11:6e:1d:6f:8c:63:6b:36:bf:
8f:9a:98:55:06:9a:14:ca:7a:88:f6:c1:7a:f3:2c:04:e0:16:
b8:44:a1:62:61:f0:d7:6f:75:97:7f:7a:df:f8:a4:0a:a5:3f:
f6:78:ce:51:8c:2b:a4:99:3a:6b:78:d8:97:2b:99:1e:c1:c6:
b2:dc:49:8a:60:d3:82:aa:70:d8:92:eb:df:30:fa:65:f6:da:
d0:88:0d:2c:2f:02:5a:16:72:26:d6:c2:54:f4:1b:ff:60:42:
e7:8f:cc:1e:a7:67:bb:00:b4:69:b2:e6:01:72:08:77:92:c0:
0e:65:df:45:44:eb:e9:ad:98:85:2b:76:69:22:35:35:9c:e8:
39:ac:6f:ea:0a:f7:fe:b8:9c:1f:57:d9:da:22:05:e5:01:10:
02:16:08:2f:ec:9e:9b:49:1b:71:7a:b0:67:23:a3:d2:49:f0:
d4:93:4e:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 21:44:43 2024 by rpki-client on console-ams.rpki-client.org