Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/3138352e322e3230372e302f32342d3234203d3e203531303539.roa
File: 3138352e322e3230372e302f32342d3234203d3e203531303539.roa (raw, json)
Hash identifier: pW3PjbwuJyzTpYpurPQsfzJlZPcGx8XPQjJFj0683mU=
Subject key identifier: 70:D5:29:AD:85:A6:9B:35:9E:3F:CB:E2:4F:A8:29:54:E5:51:3D:1F
Certificate issuer: /CN=4502e63ce01cad239ac397bc2bb5e6c347dceeea
Certificate serial: 33E2CF4C0A3AE712341D0C6EAF06D61B9780C895
Authority key identifier: 45:02:E6:3C:E0:1C:AD:23:9A:C3:97:BC:2B:B5:E6:C3:47:DC:EE:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/3138352e322e3230372e302f32342d3234203d3e203531303539.roa
Signing time: Tue 07 Nov 2023 09:47:12 +0000
ROA not before: Tue 07 Nov 2023 09:42:12 +0000
ROA not after: Tue 05 Nov 2024 09:47:12 +0000
asID: 51059
IP address blocks: 185.2.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl
rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 07 Jun 2024 20:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:e2:cf:4c:0a:3a:e7:12:34:1d:0c:6e:af:06:d6:1b:97:80:c8:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4502e63ce01cad239ac397bc2bb5e6c347dceeea
Validity
Not Before: Nov 7 09:42:12 2023 GMT
Not After : Nov 5 09:47:12 2024 GMT
Subject: CN=70D529AD85A69B359E3FCBE24FA82954E5513D1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1d:47:ed:51:79:38:83:28:53:f6:6a:ee:19:
bf:83:e2:54:97:e5:db:13:5c:10:51:02:16:fb:b3:
ad:e8:52:0c:d6:63:08:0b:c6:a5:3d:9b:f2:30:38:
bb:f0:9f:6b:03:cf:9c:ae:92:ad:15:7c:11:16:52:
e9:69:46:3a:08:23:4d:ab:b3:26:5c:cf:c4:d8:b1:
72:a5:1c:5d:11:31:0c:52:72:cc:32:d8:07:96:f5:
57:49:35:df:18:b3:c6:ac:df:ea:83:23:2a:07:b9:
48:a5:a9:8a:5a:8a:45:4a:02:b4:c9:11:cb:36:c4:
5d:b6:dd:9f:00:54:dc:90:c1:e6:a7:8e:1a:1e:ee:
8b:26:87:06:42:57:cd:df:19:4a:bf:8f:15:eb:80:
83:9e:b9:70:14:5a:8d:5f:b6:70:d2:0d:b7:62:a0:
27:4d:ea:20:4c:09:73:8c:bc:7b:64:2f:fd:5b:49:
0c:e3:22:e8:02:eb:38:0b:b6:6a:94:2e:18:63:fc:
af:bc:f4:85:68:59:c4:9c:ec:fd:06:1d:75:2e:35:
24:ee:c3:56:b3:58:7f:f0:1d:2f:4f:c5:e6:cc:b0:
d3:38:33:68:7c:68:39:25:77:35:fd:70:f1:8d:1a:
92:49:35:18:17:25:60:48:08:c5:6d:e0:77:ec:b3:
f6:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:D5:29:AD:85:A6:9B:35:9E:3F:CB:E2:4F:A8:29:54:E5:51:3D:1F
X509v3 Authority Key Identifier:
keyid:45:02:E6:3C:E0:1C:AD:23:9A:C3:97:BC:2B:B5:E6:C3:47:DC:EE:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/3138352e322e3230372e302f32342d3234203d3e203531303539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.2.207.0/24
Signature Algorithm: sha256WithRSAEncryption
50:aa:68:72:06:dd:83:c9:a9:53:78:40:e4:98:e2:f9:f1:eb:
0a:ee:84:dd:73:25:07:f4:0a:0d:27:9b:f9:e5:b8:40:69:1e:
ae:9c:e7:6e:c5:38:ac:91:6c:7e:17:04:e8:2a:27:f7:9a:0c:
f4:2b:8d:13:6a:d9:d3:66:c2:ee:63:e9:45:a3:48:59:9d:d3:
de:19:21:3e:9c:9c:26:35:09:a2:cb:a6:80:b7:15:de:e5:63:
eb:75:05:ab:d2:04:7d:2b:94:e6:60:e9:d5:26:46:f7:fb:70:
eb:20:04:fe:36:86:7a:4d:f6:7c:4e:72:6d:18:75:cc:4d:16:
6b:cc:76:cd:e6:e0:a5:36:d2:0c:c2:51:f4:73:c9:50:bd:64:
49:3c:27:e1:05:88:45:d4:f4:8f:dd:ff:03:36:b4:31:6a:8c:
3e:5c:eb:2c:14:7b:f6:5d:46:c1:ad:34:5a:b4:dc:d9:39:6d:
dd:38:bb:3c:b9:78:f8:4d:a0:4e:69:b1:2e:91:a0:3a:22:d8:
f0:f4:43:ed:b4:d4:5c:1f:38:a5:eb:30:4f:72:fb:23:1e:72:
3f:b4:d4:77:2d:2e:2b:f0:0b:c6:0c:17:36:7c:57:5e:3c:d5:
39:f6:03:6a:64:d6:4c:ad:fe:cb:7f:ab:9c:e5:2c:7b:fe:0d:
0d:f3:dd:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 02:44:38 2024 by rpki-client on console-fra.rpki-client.org