Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232322e302f32332d3234203d3e2037303138.roa
File: 3138352e3230352e3232322e302f32332d3234203d3e2037303138.roa (raw, json)
Hash identifier: Zakd7tiUE9i3tPiN1dEdRobA+wkkRjmVKKaXmL7gh6o=
Subject key identifier: 1D:1C:AA:72:F4:B8:77:34:D2:50:A5:35:33:95:F5:1C:C0:EB:F1:3F
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 6F1ACA700388F5437CF88C7C47B2CED36150EE97
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232322e302f32332d3234203d3e2037303138.roa
Signing time: Wed 29 Nov 2023 19:10:54 +0000
ROA not before: Wed 29 Nov 2023 19:05:54 +0000
ROA not after: Wed 27 Nov 2024 19:10:54 +0000
asID: 7018
IP address blocks: 185.205.222.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:1a:ca:70:03:88:f5:43:7c:f8:8c:7c:47:b2:ce:d3:61:50:ee:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Nov 29 19:05:54 2023 GMT
Not After : Nov 27 19:10:54 2024 GMT
Subject: CN=1D1CAA72F4B87734D250A5353395F51CC0EBF13F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a0:a6:71:01:8c:0a:42:9f:1d:c2:0b:46:c7:
b3:7c:f3:cb:37:69:3f:58:ee:db:69:09:9d:62:00:
39:6c:d8:37:88:77:88:dd:85:ab:0a:90:de:7b:e1:
c3:93:84:f2:f7:8c:89:b0:fb:c5:5e:cc:fb:ab:6b:
0d:de:65:3d:64:0b:5c:9a:2a:e5:f7:94:6c:32:23:
84:8b:37:6b:fb:52:1e:1b:c3:f2:45:dd:8c:07:ae:
34:02:fd:67:59:d5:ce:cb:19:11:b0:0c:96:0c:be:
08:f4:d5:ac:b7:c7:c7:0c:dd:cb:19:5d:85:9b:7c:
74:25:83:a0:af:63:63:b4:1f:b8:b7:20:2f:6e:49:
a5:46:81:ec:16:d4:72:80:97:41:e4:c4:61:45:a9:
3a:84:8d:46:21:f8:48:ef:fb:65:a9:b2:60:f0:54:
8d:54:d1:d6:3e:dd:f7:57:02:06:00:9b:ac:62:2a:
78:7d:f1:ae:1a:7d:d8:82:0a:a2:59:1f:1f:f2:30:
29:29:ff:f5:4b:05:c0:d4:25:76:d7:ec:f5:c5:a8:
10:a7:8d:9f:f1:44:85:01:c0:34:2b:e4:9c:4f:b3:
57:cd:f8:8f:23:ce:49:3a:1e:dd:c4:07:d4:bf:65:
cf:ea:d5:70:e7:f9:71:ba:1f:81:9d:90:d0:41:2a:
b9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:1C:AA:72:F4:B8:77:34:D2:50:A5:35:33:95:F5:1C:C0:EB:F1:3F
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232322e302f32332d3234203d3e2037303138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.222.0/23
Signature Algorithm: sha256WithRSAEncryption
70:ea:b1:70:53:36:60:9f:c8:65:53:f8:72:d6:79:e7:a8:79:
6f:43:92:f4:3d:cc:fc:3b:89:26:9c:26:d9:6c:d8:06:4d:a5:
2c:a7:5d:d8:24:20:f9:0c:f2:b9:4a:b5:76:03:b9:4a:bd:93:
cc:46:a3:c2:f1:17:36:1a:e9:75:59:e9:2e:a5:62:bd:3c:d6:
d9:c6:e1:48:b2:b6:68:ab:d7:38:35:a3:cf:17:75:a3:2e:58:
b1:c3:7c:dd:f0:a8:a7:61:79:ac:46:29:35:c8:38:42:cf:4a:
2a:45:45:77:ec:0f:6c:b7:1f:fc:28:25:70:1f:52:e9:d7:0e:
56:46:e3:7e:79:9f:1b:4c:09:98:fd:85:dd:c2:10:11:71:15:
54:0a:a1:7e:c9:02:62:7b:45:16:c4:e6:d7:51:b9:ac:f8:90:
15:72:fb:de:31:bc:fb:aa:aa:a6:67:d1:45:50:6a:dc:a0:da:
c3:8c:5a:9a:bb:ca:20:c6:e3:f8:38:4f:7b:81:d4:16:28:3e:
87:cb:01:b9:23:87:43:4c:7a:3d:c5:f6:d9:e5:7c:ba:7d:b8:
97:08:4a:e0:80:9c:a8:8c:70:03:cc:84:8b:15:62:45:f0:ff:
41:b6:50:48:d8:c5:e6:8b:10:02:7a:33:3a:c5:6b:32:ed:c1:
85:09:b1:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 15:08:39 2024 by rpki-client on console-fra.rpki-client.org