Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232322e302f32332d3234203d3e20313938353130.roa
File: 3138352e342e3232322e302f32332d3234203d3e20313938353130.roa (raw, json)
Hash identifier: 28EpHvel+qKQGpeeciF21DYuCjq35WKcsC6ic6aEG18=
Subject key identifier: 3B:6D:7B:28:8A:BA:BA:AA:D7:13:71:11:0E:65:3B:70:28:EE:E6:C7
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 4CD266D38848B8EB2D882E8736125FB46036DB1B
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232322e302f32332d3234203d3e20313938353130.roa
Signing time: Tue 16 Jan 2024 17:03:02 +0000
ROA not before: Tue 16 Jan 2024 16:58:02 +0000
ROA not after: Tue 14 Jan 2025 17:03:02 +0000
asID: 198510
IP address blocks: 185.4.222.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:d2:66:d3:88:48:b8:eb:2d:88:2e:87:36:12:5f:b4:60:36:db:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jan 16 16:58:02 2024 GMT
Not After : Jan 14 17:03:02 2025 GMT
Subject: CN=3B6D7B288ABABAAAD71371110E653B7028EEE6C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3f:fc:56:b2:9c:70:82:fe:1d:f0:c0:9c:e2:
a4:b5:d9:c2:b5:ae:4c:5c:31:8e:55:1c:09:74:bc:
55:4a:4b:40:64:46:41:5b:af:21:9e:33:55:fb:ba:
0a:47:82:65:d1:2c:1f:f9:5f:11:90:18:b4:f9:ec:
02:9e:6d:aa:85:eb:fd:c3:08:a3:91:e8:f2:cb:7a:
29:3e:09:e8:e9:3b:de:59:93:94:ae:e4:23:40:df:
99:ef:04:4e:fe:fe:d5:7a:48:a1:40:44:d5:30:13:
e8:a8:d3:9c:d5:74:17:93:79:94:6a:cc:db:0f:af:
cb:37:37:ed:10:53:3e:9c:c6:0c:29:2c:72:0b:c1:
01:6c:e7:b9:8e:e0:86:3d:c2:f2:b0:80:a5:1e:06:
04:a3:b8:9c:94:d3:98:0a:cf:18:02:9d:42:49:00:
d0:47:5b:17:b0:93:14:d1:3b:c3:17:b1:78:a8:5d:
0b:3b:89:19:f1:52:de:80:42:cf:51:f9:e5:c7:2b:
fa:b2:db:ba:99:20:fa:9d:93:c6:42:6d:97:a1:63:
ab:ea:eb:40:e9:e0:83:f9:80:5c:7a:72:7b:87:58:
29:24:b5:fc:fb:47:8c:08:73:19:f9:66:50:df:95:
5d:e2:43:d7:1d:92:78:4c:ce:56:3f:11:21:93:b3:
da:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:6D:7B:28:8A:BA:BA:AA:D7:13:71:11:0E:65:3B:70:28:EE:E6:C7
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232322e302f32332d3234203d3e20313938353130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.222.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:24:dc:ae:5d:2f:1f:92:81:92:84:cd:fc:a8:10:70:bd:56:
d5:b0:9b:35:f6:9b:92:18:bb:0b:16:12:1c:c5:3e:32:52:c3:
1f:ec:7d:88:8a:83:bc:a9:d7:dc:98:5d:a6:c5:15:40:23:ee:
ac:8c:a8:67:51:e5:6f:e0:95:0a:bf:c1:bd:65:65:9b:4a:31:
07:00:25:77:6e:32:8b:de:6c:2b:b2:2f:9f:b7:cf:0b:6f:cf:
4f:37:fd:60:09:70:b6:e6:1c:c0:ea:50:6b:88:22:4b:c1:05:
08:24:1a:be:92:f5:87:69:44:70:70:7c:6c:5d:ca:e4:98:74:
39:0c:f7:e0:80:92:25:e9:41:f1:b6:11:b1:be:e4:cc:6e:f8:
7f:53:28:3b:d0:ac:87:80:62:58:f7:01:d7:48:f6:bc:0f:6e:
58:cd:5b:74:74:cd:07:af:b0:2f:3f:d5:7d:88:d0:5b:33:f8:
f9:09:72:04:da:a7:1d:cb:08:73:bd:b5:4e:4b:30:da:6d:d6:
53:c7:f9:45:83:63:ef:62:f5:e2:cb:b2:a7:94:31:76:5e:35:
e3:e3:c9:55:a4:2a:c4:7e:84:87:f9:0a:69:17:9a:e7:f6:dd:
ee:4b:1a:4c:8f:99:41:33:d6:50:a5:8e:b2:2f:ea:3e:be:24:
08:17:ec:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org