Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232302e302f32342d3234203d3e20323132333335.roa
File: 3138352e3230352e3232302e302f32342d3234203d3e20323132333335.roa (raw, json)
Hash identifier: Gdk8zFkbKJUucaMOvn6ny6NK9ms+UEczzCUc24nEfn4=
Subject key identifier: 14:E2:48:4E:91:0E:8A:25:AA:43:D0:51:47:FE:58:9D:1A:38:3F:94
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 1450C64072772867D1D2B7C5E2091EA0DAC7C1AB
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232302e302f32342d3234203d3e20323132333335.roa
Signing time: Fri 09 Feb 2024 14:53:14 +0000
ROA not before: Fri 09 Feb 2024 14:48:14 +0000
ROA not after: Fri 07 Feb 2025 14:53:14 +0000
asID: 212335
IP address blocks: 185.205.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:50:c6:40:72:77:28:67:d1:d2:b7:c5:e2:09:1e:a0:da:c7:c1:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Feb 9 14:48:14 2024 GMT
Not After : Feb 7 14:53:14 2025 GMT
Subject: CN=14E2484E910E8A25AA43D05147FE589D1A383F94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e4:0b:4b:91:9c:aa:e5:4f:25:34:b7:f8:89:
65:9f:53:75:11:d2:c8:b9:a0:09:aa:96:5a:8d:75:
39:36:83:a1:1f:13:4a:61:80:f5:8f:22:2f:d8:f2:
9d:cd:9f:e6:f9:ce:17:8b:9e:73:78:c3:a8:37:82:
58:b3:80:d9:b9:1b:26:91:b4:26:03:da:e0:72:aa:
cc:1d:ab:e7:31:f0:17:ed:fc:9a:0c:be:96:c0:22:
1c:1b:7a:73:79:0f:bc:a4:f5:73:b8:88:f1:e1:8a:
b6:c2:6b:36:c2:61:be:51:d1:67:d7:20:a8:c8:27:
ad:ad:a4:42:41:85:b1:1b:06:3e:57:96:8a:5a:8b:
dc:9e:8a:bf:3c:07:b6:59:63:eb:42:37:e4:6b:a9:
b0:4e:71:11:e2:c3:4c:bb:21:38:a9:8b:02:3c:60:
3e:09:fa:d7:65:e0:3b:7c:cf:f1:8d:e8:17:1c:85:
6d:51:fc:d4:46:f5:56:04:4c:bd:34:07:37:0f:f0:
6a:9e:23:11:6e:fa:70:b5:f8:47:5b:a9:0a:a8:d4:
54:53:60:f5:05:f7:98:f2:57:a4:a1:2d:f3:16:36:
57:0c:6a:23:e9:90:d0:2a:46:51:09:45:04:c2:84:
63:e4:5d:8f:c4:1f:a7:8c:5e:99:55:f6:ce:b3:03:
3f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:E2:48:4E:91:0E:8A:25:AA:43:D0:51:47:FE:58:9D:1A:38:3F:94
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232302e302f32342d3234203d3e20323132333335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.220.0/24
Signature Algorithm: sha256WithRSAEncryption
51:46:c2:e7:bc:e0:44:22:cd:7b:1f:d7:d4:09:f7:6a:ec:7d:
82:62:d7:e5:2a:9e:fc:7f:22:40:83:61:4f:c3:12:d2:50:e4:
ad:0c:7f:f4:61:2c:cc:7e:99:14:00:a2:94:7d:37:fe:7f:9e:
99:ff:41:41:60:60:2d:2a:78:f9:cb:3e:b9:e8:2e:70:24:78:
a4:14:9f:31:ca:83:5f:ab:c1:30:e8:0e:e1:44:de:d7:bb:2a:
a7:5e:22:b9:ce:e1:da:53:0a:aa:98:35:e5:5c:cb:38:e4:e3:
be:a0:b1:55:66:14:94:49:c3:f9:9f:05:1d:2e:c3:79:c3:74:
0e:5f:53:41:8f:3f:05:77:b8:ca:49:bb:4e:b3:34:ce:23:f2:
d7:8f:63:bd:fd:10:cb:c4:79:cf:2b:f7:84:87:51:94:3c:2c:
9e:74:10:e0:54:61:02:6c:4a:f7:b0:ae:8b:3a:58:ff:19:44:
1a:ce:3f:43:68:10:72:aa:bc:0d:ca:f4:59:6d:ce:7c:fb:0a:
a6:e1:99:45:52:6d:76:02:29:b0:e9:a0:0d:d2:d4:18:09:dc:
6f:27:e0:56:46:b6:34:48:d9:bf:7f:70:f8:d7:54:61:68:c0:
60:ec:fd:e4:24:7b:a9:2a:9e:72:ae:0a:bf:6c:fd:ed:08:dd:
83:1d:75:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org