Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3231332e3234302e302f32342d3234203d3e2033323233.roa
File: 3138352e3231332e3234302e302f32342d3234203d3e2033323233.roa (raw, json)
Hash identifier: MTIhm4AWxGYXI1kfk2fRvRpeoMSjL4DGS+IhTTsOKDg=
Subject key identifier: 97:75:C1:0F:63:58:2D:BC:F2:66:9F:C1:87:A6:87:10:27:E5:DC:FF
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 5BDCB255DDAABE945858D5306215A917F6D3A53A
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3231332e3234302e302f32342d3234203d3e2033323233.roa
Signing time: Fri 15 Dec 2023 03:51:11 +0000
ROA not before: Fri 15 Dec 2023 03:46:11 +0000
ROA not after: Fri 13 Dec 2024 03:51:11 +0000
asID: 3223
IP address blocks: 185.213.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.mft
rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 19:51:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:dc:b2:55:dd:aa:be:94:58:58:d5:30:62:15:a9:17:f6:d3:a5:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: Dec 15 03:46:11 2023 GMT
Not After : Dec 13 03:51:11 2024 GMT
Subject: CN=9775C10F63582DBCF2669FC187A6871027E5DCFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a2:a2:11:22:d9:68:98:81:45:1f:d2:b5:c9:
69:8c:ef:de:b3:b4:82:4d:c3:1d:d1:e8:94:0c:d8:
ae:c7:95:db:a6:88:8a:ba:57:b3:ec:4b:2d:87:9d:
cb:bf:f2:f9:36:f5:44:a4:ef:f3:66:63:45:7e:a1:
60:ac:54:1c:b4:0f:5f:b7:20:bd:d8:a2:a7:25:ff:
93:54:16:e3:96:1b:d1:9d:04:b9:19:f4:8d:c3:86:
c6:8e:24:7a:71:bf:23:76:dc:a8:86:b4:4a:b9:ad:
e3:fd:8e:25:b0:d1:9a:ae:f3:3f:00:02:48:4e:8e:
ab:b8:99:9d:24:1e:70:b8:c3:43:ac:b6:a7:bf:dd:
0e:fe:38:91:5f:ee:e2:65:79:24:1b:9c:1f:1b:c2:
67:52:99:6e:3b:98:50:a7:38:db:fd:9e:99:19:fa:
12:97:5b:7a:c5:dd:4d:10:f7:dc:60:d3:0b:c0:61:
13:19:bb:c7:be:32:f6:7b:a9:9a:81:d7:52:99:6e:
4d:b5:fc:11:8e:3b:03:4d:a1:9c:e8:e1:26:a6:2b:
e2:e8:62:8d:5e:ab:67:11:dc:4e:bf:dd:bc:9b:da:
94:2e:95:c8:43:5a:2d:0a:50:96:e1:1b:6b:49:5d:
ec:7f:78:61:e0:dd:d0:c9:a6:b3:e5:f8:b6:92:f4:
40:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:75:C1:0F:63:58:2D:BC:F2:66:9F:C1:87:A6:87:10:27:E5:DC:FF
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3231332e3234302e302f32342d3234203d3e2033323233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.240.0/24
Signature Algorithm: sha256WithRSAEncryption
29:ed:bd:49:15:8b:32:ca:93:ff:62:09:8e:ec:90:b6:d1:19:
a0:1d:27:cc:5f:58:88:65:75:6e:25:7f:b1:77:e1:40:9d:29:
32:02:e5:9c:de:58:1b:be:79:00:72:49:39:ea:b1:fc:4b:f1:
9b:ef:e1:13:27:2a:bb:4c:fb:86:d3:f4:2f:37:99:f1:1e:51:
f5:1a:73:6b:80:3f:b3:3c:a7:51:f4:6e:97:27:48:80:3e:4d:
7a:b9:92:f9:30:70:87:98:ac:04:9f:a4:d6:ae:04:be:35:e8:
72:ad:e6:fe:84:d1:ca:e5:48:7e:80:da:fd:d5:5f:29:3a:a6:
9b:60:1e:bb:ea:b9:19:5c:ed:a2:5d:4e:c6:9c:d3:aa:7c:bd:
8e:c5:53:de:93:c8:61:c5:fc:ce:59:cf:71:41:ea:4b:f2:27:
c3:6c:b9:f6:5d:d9:6f:46:20:0b:6b:d9:70:a4:33:ff:9e:41:
11:dd:44:0d:ef:71:7d:be:bf:c6:60:cb:c7:81:93:27:3c:a2:
3a:40:ec:99:28:fd:8b:a8:9f:9b:11:16:ba:be:9c:17:c4:4e:
07:ea:a3:64:7f:6e:e5:8f:bf:40:a7:1f:23:d6:7a:13:07:1d:
9f:81:64:de:c4:31:2e:c2:0c:99:62:73:0b:11:3a:eb:4b:e0:
0a:46:fb:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 23:43:29 2024 by rpki-client on console-fra.rpki-client.org