Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/3138352e3138312e302e302f32342d3234203d3e20323135363232.roa
File: 3138352e3138312e302e302f32342d3234203d3e20323135363232.roa (raw, json)
Hash identifier: m/oIQYRMYKrcoJuR6mz4JZedxpEj7xZ6BHA3PkQyNSk=
Subject key identifier: CA:5D:98:9A:2F:2B:F4:A3:AB:9B:0B:6A:F8:8B:57:27:63:EA:B2:C5
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 1760156677330062D81E85BCAC6FF26AA9742F33
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/3138352e3138312e302e302f32342d3234203d3e20323135363232.roa
Signing time: Wed 28 Aug 2024 11:37:14 +0000
ROA not before: Wed 28 Aug 2024 11:32:14 +0000
ROA not after: Wed 27 Aug 2025 11:37:14 +0000
asID: 215622
IP address blocks: 185.181.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:60:15:66:77:33:00:62:d8:1e:85:bc:ac:6f:f2:6a:a9:74:2f:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Aug 28 11:32:14 2024 GMT
Not After : Aug 27 11:37:14 2025 GMT
Subject: CN=CA5D989A2F2BF4A3AB9B0B6AF88B572763EAB2C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:58:70:eb:00:e2:83:ab:04:2e:5c:51:55:53:
6f:9b:be:67:d1:33:48:89:f3:cf:f5:97:ca:fd:2d:
68:99:9d:77:f2:b5:6d:9c:3d:be:76:75:04:2d:c8:
e3:64:b4:3e:bd:19:31:c3:ba:1d:e6:fd:85:a9:4e:
41:dc:b9:26:27:4a:3b:97:c6:6f:67:8f:d8:b3:3a:
b1:b3:9d:b7:75:36:07:05:d6:03:fe:a3:ee:a2:26:
af:08:0b:c0:20:16:1e:09:e2:d8:8f:57:7f:1e:49:
04:46:3d:af:8e:8a:d6:d4:5e:84:44:60:66:85:15:
e2:1d:56:9f:ac:7f:65:e1:6b:9c:64:3e:db:f6:b2:
da:0c:cc:15:19:76:9c:27:b7:09:69:1c:d5:6e:32:
ee:81:42:84:10:85:b4:a5:ff:ec:fe:b2:a3:0b:5d:
83:25:e3:15:72:d4:8d:80:26:ee:63:63:e3:16:40:
6f:46:c5:4b:c0:ef:80:18:60:8e:da:51:ca:e7:cd:
45:f3:a8:d6:4c:a7:46:bc:48:c5:7a:3a:ef:a1:df:
0c:96:d2:5f:60:c3:1e:63:76:45:a9:6c:ae:77:10:
2b:58:d7:0c:7b:f3:41:be:c2:08:49:7c:30:5e:59:
67:a6:e3:78:14:73:3e:dd:3e:79:2e:d8:f6:5b:37:
86:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:5D:98:9A:2F:2B:F4:A3:AB:9B:0B:6A:F8:8B:57:27:63:EA:B2:C5
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/3138352e3138312e302e302f32342d3234203d3e20323135363232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.0.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:a7:5a:99:80:5b:5a:a9:4b:8d:55:7b:0f:90:4b:4a:a1:6a:
25:5a:da:a2:a3:54:f0:9b:09:3c:12:38:77:06:5f:05:f8:54:
7c:aa:da:24:57:b5:d8:05:52:c4:15:06:02:ab:45:75:ea:3c:
9c:17:5b:c1:cb:e6:68:7f:f5:c4:c7:1b:59:5c:8a:a8:39:33:
73:df:03:0f:9d:42:fe:fc:ba:f2:a1:94:ec:44:b2:17:35:4b:
da:1f:56:3a:e8:1b:59:88:b3:c8:c6:86:ca:93:f2:71:82:3c:
9c:02:02:54:c5:3a:83:b9:26:7d:32:b3:4f:df:71:be:e2:29:
44:e3:a4:27:c9:13:fb:42:58:48:f2:c1:d5:42:d0:e2:26:42:
29:cc:c1:c6:82:97:96:3b:02:9b:08:61:1a:d0:8c:e4:10:54:
9d:36:11:ce:9d:1a:d7:d7:3b:ca:1c:ab:59:e6:17:49:88:cf:
de:81:02:25:cb:9a:7f:77:9f:e1:be:6a:b0:e0:c7:9a:7f:56:
2a:27:d4:6f:1f:c4:d8:7e:7a:b4:52:24:ab:06:6e:bd:25:01:
d4:66:b1:79:71:ab:56:9c:ec:27:e2:50:8c:1c:d6:82:6e:3c:
69:b1:32:18:d4:02:e0:64:01:bb:e1:09:42:42:91:01:9b:fb:
41:92:fb:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:15:23 2024 by rpki-client on console-ams.rpki-client.org