Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138362e302f32332d3234203d3e2037303138.roa
File: 3138352e3232322e3138362e302f32332d3234203d3e2037303138.roa (raw, json)
Hash identifier: 3hsz68hJHl+RlJ+fyBHqeHOFiPlIAe4kvUXd7c9+zWI=
Subject key identifier: A1:3F:2E:C1:C3:7F:E3:BF:99:30:1D:CE:BC:97:06:44:6F:35:3E:D4
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 30E6E2D5DB731F914168B5D568BA682DCB3C7038
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138362e302f32332d3234203d3e2037303138.roa
Signing time: Thu 10 Oct 2024 14:16:35 +0000
ROA not before: Thu 10 Oct 2024 14:11:35 +0000
ROA not after: Thu 09 Oct 2025 14:16:35 +0000
asID: 7018
IP address blocks: 185.222.186.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 05:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:e6:e2:d5:db:73:1f:91:41:68:b5:d5:68:ba:68:2d:cb:3c:70:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Oct 10 14:11:35 2024 GMT
Not After : Oct 9 14:16:35 2025 GMT
Subject: CN=A13F2EC1C37FE3BF99301DCEBC9706446F353ED4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c7:04:91:34:4c:d6:d5:36:2b:55:37:91:fc:
73:af:81:71:7b:b8:40:27:14:87:d4:47:0c:3c:b0:
02:c4:2b:58:3d:8c:89:20:a7:b0:cb:71:8e:38:3f:
11:ba:53:f6:92:57:04:a6:19:cb:46:c8:32:a5:4d:
72:ee:a1:89:46:48:61:51:63:75:1f:04:7d:5f:16:
ce:57:a0:94:55:71:5e:31:5f:83:51:8d:a5:7a:fd:
04:3d:4c:ca:1c:ee:64:b8:67:7b:ac:1b:3b:c5:73:
1a:4c:84:e3:10:b3:c3:83:72:6a:66:93:ae:42:78:
0b:bf:6e:fa:8a:e1:88:d8:d1:4c:b0:af:ef:a2:87:
71:0e:f1:3c:30:76:73:3d:53:5f:a7:53:f8:b0:c5:
89:67:48:00:d3:22:3f:33:3e:09:a6:d4:82:90:dc:
74:96:72:c8:e2:1c:db:43:e0:bf:3d:fc:f3:97:5e:
d1:f5:d3:e6:0e:b3:97:99:76:f4:41:72:df:fe:92:
0e:0f:fc:95:21:80:d3:b4:e8:7d:a3:4b:0d:50:5a:
27:36:c6:08:d4:09:fa:f3:85:9b:12:e7:49:aa:8e:
72:0e:e6:2b:c0:61:89:55:bd:d5:a6:1f:6e:d1:b6:
79:56:e0:fd:27:98:56:6b:ed:e6:99:5a:e9:f4:23:
e5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:3F:2E:C1:C3:7F:E3:BF:99:30:1D:CE:BC:97:06:44:6F:35:3E:D4
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3232322e3138362e302f32332d3234203d3e2037303138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.186.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:14:59:0a:8b:2d:bf:f3:c0:69:11:9a:28:3c:7b:bc:18:78:
5b:c1:94:4d:19:18:ce:38:4c:b8:e9:f0:f6:dc:53:20:c7:c1:
84:0f:ca:a4:51:45:11:e9:b3:01:b3:49:54:4a:67:4d:0e:d9:
9e:00:d1:d5:ee:d1:b7:6d:7d:5f:59:f9:eb:10:e7:8d:9c:10:
99:9c:72:85:22:c6:b4:bf:93:88:29:2e:c4:63:68:32:db:fb:
bf:b7:a8:3d:3f:cb:ae:c2:ce:cc:a3:59:b2:a8:1c:f6:46:27:
ee:d6:d2:b8:f3:be:56:b6:d8:4e:b4:93:6d:1d:d7:5a:a2:06:
a6:5a:38:35:1a:80:ab:1e:e3:ac:cd:8b:20:2e:68:f8:b4:d3:
29:d1:59:71:84:fb:50:a8:3e:4a:95:37:8d:5d:69:b3:e4:b8:
29:9b:5d:3a:a9:da:d2:78:fb:57:34:ef:d7:43:88:cb:7d:7e:
3b:16:ab:da:47:a4:57:22:b1:98:cf:c3:1a:e7:61:e3:ba:db:
4e:1e:d1:73:04:7a:31:ee:37:5c:0e:46:f8:5e:31:4e:74:4a:
dc:f0:5c:b5:84:a4:11:cb:37:ed:21:ce:42:04:29:d6:b3:99:
41:0a:cd:2a:f6:4d:2e:61:3e:b2:87:ac:47:68:96:9c:57:9b:
97:63:0c:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:32:44 2025 by rpki-client