Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36312e302f32342d3234203d3e20323732363936.roa
File: 3138352e3133302e36312e302f32342d3234203d3e20323732363936.roa (raw, json)
Hash identifier: OQY6w4Q7ZQH092Yj40TGy9LpmPXnSdGe58D7QhrLuAk=
Subject key identifier: 48:B1:16:18:95:09:8B:B6:B9:5A:10:6F:DB:DE:B3:3E:18:F7:26:B2
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 57060B0BB54EF90A8689700CB0266AF0CA1D9D44
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36312e302f32342d3234203d3e20323732363936.roa
Signing time: Thu 25 Jul 2024 17:05:19 +0000
ROA not before: Thu 25 Jul 2024 17:00:19 +0000
ROA not after: Thu 24 Jul 2025 17:05:19 +0000
asID: 272696
IP address blocks: 185.130.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.mft
rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:06:0b:0b:b5:4e:f9:0a:86:89:70:0c:b0:26:6a:f0:ca:1d:9d:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: Jul 25 17:00:19 2024 GMT
Not After : Jul 24 17:05:19 2025 GMT
Subject: CN=48B1161895098BB6B95A106FDBDEB33E18F726B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d5:6a:3f:18:a0:df:ee:45:6c:3a:0a:39:8d:
de:15:c8:22:38:a9:2e:90:e1:e1:a1:c6:2d:b8:66:
e2:4e:e2:57:3b:53:5f:fc:da:3f:bd:5b:6f:1d:7f:
84:eb:df:7d:c8:e1:71:98:5d:83:66:1c:d5:40:e5:
ec:1e:03:4c:98:69:8f:6b:97:6a:d3:dd:14:4e:ec:
39:a0:c9:31:43:dc:35:22:ad:ae:69:6f:65:74:14:
7c:b4:57:7c:6d:ad:24:f3:b5:8b:38:62:bc:a6:c7:
dd:e6:df:a5:56:a5:b4:95:53:76:44:ec:04:60:23:
4c:96:46:62:b2:3b:da:7d:0d:12:8c:38:fc:10:8a:
85:cc:a9:79:c2:5a:b4:7b:a4:15:db:5b:37:2f:8d:
7f:62:17:2c:bb:3b:08:57:ed:c2:8a:17:7f:ec:11:
19:af:03:cf:9a:a5:71:9c:78:1f:ca:93:ba:bb:ef:
93:4b:5d:59:fb:d6:61:e1:d0:58:98:ed:e3:a5:35:
6d:b6:e1:d7:e6:ae:9e:0e:25:f3:ad:5e:1b:17:41:
28:9d:b5:74:46:8d:9d:71:4d:64:3b:80:d2:17:e3:
99:3d:aa:5d:61:03:2b:f2:f8:70:d7:a4:fa:5e:c5:
36:ce:2c:c2:ce:17:55:94:5a:ce:aa:93:34:68:c9:
34:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B1:16:18:95:09:8B:B6:B9:5A:10:6F:DB:DE:B3:3E:18:F7:26:B2
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36312e302f32342d3234203d3e20323732363936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.61.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:f8:cd:71:89:66:16:80:c6:d4:db:6c:e9:36:b1:b3:66:c2:
bb:76:a0:e4:4d:00:69:f6:5b:db:76:3b:c5:c5:6a:2a:7d:57:
ff:e8:b5:51:79:01:07:fe:8a:ee:c3:00:cf:5f:5d:27:ca:65:
39:c0:d6:cb:28:f6:b5:05:a5:43:20:9b:bf:5a:9f:84:6d:33:
a1:2f:40:24:c5:5a:6d:f7:65:dc:d6:d9:c1:70:ca:8d:e8:35:
a8:3b:f4:ec:fe:75:92:18:1b:6f:3f:09:9d:ed:e4:10:98:1d:
53:d3:98:a0:01:bc:1c:18:50:2b:f0:0b:a0:be:5e:2e:b3:e2:
51:c4:c0:a4:62:6f:28:d0:9c:2d:72:3f:58:5d:60:d8:6c:2a:
c7:86:38:b9:0e:ed:a8:3d:f1:49:b1:af:a3:95:c6:41:80:b4:
ba:8e:62:fc:5b:10:2d:0b:99:be:88:36:bd:99:78:09:f1:a1:
5a:f9:2d:fb:61:72:e0:ed:1b:24:b2:e0:e7:0e:cc:21:32:03:
01:4a:97:c4:e9:cc:38:88:2c:6e:11:84:5a:61:a4:8e:0e:7a:
13:cb:84:ce:77:fd:6c:18:a4:7c:61:27:4a:17:83:82:e8:d9:
a4:fc:68:41:03:52:bf:d5:0f:5a:97:ee:a4:68:29:67:e0:9e:
c8:e2:6b:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:41:51 2024 by rpki-client on console-ams.rpki-client.org