Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/3138352e3235302e34322e302f32332d3233203d3e203338313935.roa
File: 3138352e3235302e34322e302f32332d3233203d3e203338313935.roa (raw, json)
Hash identifier: j7KQ1jRl+b2zWBCscj5VAuhfgmA4IoWIw8q8V/vmDKc=
Subject key identifier: 18:7B:3E:1C:3A:B0:E6:14:EE:03:54:56:5D:4E:5D:07:F2:05:6C:A3
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 5F5A2DABAA477C3F034E1535B866F1B8D15EB60B
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/3138352e3235302e34322e302f32332d3233203d3e203338313935.roa
Signing time: Tue 20 Aug 2024 16:17:40 +0000
ROA not before: Tue 20 Aug 2024 16:12:40 +0000
ROA not after: Tue 19 Aug 2025 16:17:40 +0000
asID: 38195
IP address blocks: 185.250.42.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:5a:2d:ab:aa:47:7c:3f:03:4e:15:35:b8:66:f1:b8:d1:5e:b6:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Aug 20 16:12:40 2024 GMT
Not After : Aug 19 16:17:40 2025 GMT
Subject: CN=187B3E1C3AB0E614EE0354565D4E5D07F2056CA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8c:63:09:d1:b9:d5:5f:9a:28:9e:e5:3e:d2:
5c:eb:fc:bf:79:f1:dd:98:4f:6e:88:ca:db:66:c4:
aa:70:48:9c:df:ab:2f:01:3d:92:e0:4d:2c:67:81:
fd:b5:d2:5d:f6:d8:a9:f5:9e:c3:d5:79:4e:10:b2:
4c:05:18:11:b0:33:f8:2f:3a:0a:bf:a3:4d:db:ab:
93:cd:49:a5:b8:b7:ac:67:07:49:7e:cc:ab:c1:53:
78:af:0d:04:2a:94:10:a7:1f:ab:df:7d:08:20:4c:
af:bf:d4:98:12:ef:34:c8:00:37:2e:75:22:28:1b:
87:7b:c9:87:45:6e:96:ad:d2:54:d0:f2:ec:d2:4a:
31:1b:b6:b1:f4:d1:6f:c3:5c:a3:2f:01:e9:87:b6:
5a:97:55:62:b0:04:18:5d:d8:09:8c:65:2b:04:08:
d0:29:a0:62:a3:10:a3:ca:92:e8:e7:5e:3b:f1:b8:
64:bf:97:f0:0a:bb:5e:b4:30:7e:b0:d9:fa:dc:83:
0a:b1:0f:58:d9:7d:d3:74:50:9f:b7:74:58:0d:a2:
e7:5f:33:52:6c:5b:04:36:d6:f5:80:8c:78:d8:4e:
04:03:8c:06:5e:c9:10:75:8c:d4:87:df:38:80:ee:
c8:37:12:4c:84:80:fe:32:f1:5b:91:c8:d9:5f:d1:
51:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:7B:3E:1C:3A:B0:E6:14:EE:03:54:56:5D:4E:5D:07:F2:05:6C:A3
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/3138352e3235302e34322e302f32332d3233203d3e203338313935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.42.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:36:b9:c2:00:43:b8:03:a7:53:fa:d0:45:a4:d5:11:31:e0:
c7:79:29:83:c9:98:60:b9:bd:5d:cd:6c:97:d8:8b:f6:8a:f3:
c8:b5:8d:e9:49:01:a9:0a:fe:8f:2b:da:ad:cf:5c:f9:0f:76:
69:cf:e4:56:51:3d:4b:62:c8:45:a9:e3:ca:97:32:d9:ae:86:
e5:db:1a:4a:1e:43:00:cb:2a:0b:f7:73:c5:1f:f4:5e:95:a0:
e9:a2:cf:73:55:21:18:2e:79:81:07:5d:15:82:f3:c5:f3:7d:
27:c0:74:38:e9:e3:06:2e:71:1e:2d:e3:19:ef:22:e5:25:7c:
22:00:fc:43:9e:db:c2:d9:00:2e:ef:85:d5:12:a5:e4:d2:2a:
ac:37:db:8d:2e:41:94:c8:9d:80:53:25:b2:39:12:16:85:bb:
73:ed:e1:9d:33:19:29:5e:b2:d7:5e:cf:90:37:5a:7a:19:a9:
6c:61:50:b7:18:94:cd:3a:34:c4:44:3b:82:cb:7a:47:c0:27:
4b:5a:5c:e8:7a:e1:cf:e2:c8:10:45:ff:06:37:c0:09:17:ea:
e3:e5:7f:d8:b5:3e:67:49:c3:3a:ed:ce:a1:6b:2f:ce:d0:e3:
55:5f:19:20:55:00:eb:0d:1c:60:9d:7d:3f:6b:1a:45:8f:23:
12:39:be:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org