Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3231332e3234332e302f32342d3234203d3e203330343536.roa
File: 3138352e3231332e3234332e302f32342d3234203d3e203330343536.roa (raw, json)
Hash identifier: hgOouETN68JjnwRVGuA3Qb1CgGL84jJbpDczZSdOrkw=
Subject key identifier: 4F:54:44:02:16:B6:01:09:A0:18:DF:ED:53:AC:AA:36:EE:63:06:09
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 0279B343FEC67DD7A95135B6899053F186D833EF
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3231332e3234332e302f32342d3234203d3e203330343536.roa
Signing time: Mon 22 Apr 2024 01:46:21 +0000
ROA not before: Mon 22 Apr 2024 01:41:21 +0000
ROA not after: Mon 21 Apr 2025 01:46:21 +0000
asID: 30456
IP address blocks: 185.213.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.mft
rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:79:b3:43:fe:c6:7d:d7:a9:51:35:b6:89:90:53:f1:86:d8:33:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: Apr 22 01:41:21 2024 GMT
Not After : Apr 21 01:46:21 2025 GMT
Subject: CN=4F54440216B60109A018DFED53ACAA36EE630609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6a:be:ec:04:ab:39:3c:04:51:3a:01:ad:4a:
8b:87:93:b1:11:fe:aa:cc:1a:36:9b:ae:41:f1:d1:
ce:0d:be:f8:be:a0:d9:d4:2c:4f:8c:df:9b:0f:b8:
62:63:c4:f1:e2:2b:9c:2a:35:dd:8e:ef:65:a5:50:
85:7b:16:dc:e1:12:4f:ae:50:c8:6e:9c:f6:42:ee:
7d:58:c7:20:75:31:58:c2:b8:3e:fb:45:7c:33:c1:
a4:f2:18:58:1e:4a:a5:b4:7e:d5:91:68:06:ca:fc:
5a:6d:3c:21:f2:8e:37:de:2f:a3:44:8b:06:3c:13:
00:1c:69:25:4a:65:10:ce:c2:47:81:d9:85:6a:ff:
42:1a:38:30:2e:55:e2:70:15:73:b5:d7:2d:ad:8a:
fb:8d:86:dc:0d:c8:6b:35:6c:9a:e9:7d:a4:93:92:
50:35:59:db:2f:a0:37:1e:1a:f2:cc:3b:d4:56:75:
5a:bb:92:35:fc:40:c5:27:19:94:af:a7:8d:1e:7e:
1b:c6:eb:eb:3c:59:5d:01:19:69:19:06:18:c0:10:
ea:2a:cc:10:55:5d:32:75:e9:dd:e3:63:27:f2:af:
0c:4c:64:6f:41:7e:8d:f9:b1:6f:41:ba:98:ac:dd:
95:6d:80:c0:aa:f3:c8:84:1a:22:cd:72:c7:27:5c:
b3:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:54:44:02:16:B6:01:09:A0:18:DF:ED:53:AC:AA:36:EE:63:06:09
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3231332e3234332e302f32342d3234203d3e203330343536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.243.0/24
Signature Algorithm: sha256WithRSAEncryption
29:05:b1:7b:99:3f:6a:45:4a:3e:3f:7c:31:87:65:9d:88:d1:
a2:c7:39:b9:5d:69:7b:ef:5a:1b:fb:47:28:d7:56:88:ce:76:
ec:9c:20:5b:b3:8a:48:36:58:f4:23:5c:52:a3:73:61:c2:4a:
58:43:c6:ab:25:82:97:39:b2:9b:1e:0b:a3:76:47:ac:f6:28:
23:4c:5b:ff:3f:68:c0:08:fc:a1:83:66:46:b7:70:d6:da:34:
4b:09:77:a4:5d:74:f1:94:1c:35:12:7c:9f:39:39:e0:0b:26:
69:1a:dd:b8:0b:e4:bd:9a:46:32:a8:25:ea:86:5a:e1:d3:33:
5e:9a:49:41:48:c4:e5:7e:ba:e5:3f:e2:34:7a:32:18:bc:3b:
a5:9d:75:79:4a:82:a2:aa:c1:78:6c:b4:96:94:a5:bb:67:3d:
04:e8:e3:6f:1b:d8:6c:d1:09:fc:26:cd:dd:99:ef:f9:25:5a:
3d:fa:00:92:28:c4:49:a0:8e:20:3f:c9:45:98:b2:5b:39:ca:
c0:a0:bb:75:ab:36:0d:cd:0b:9b:15:b2:d8:72:84:0c:a7:7f:
85:f1:3d:01:c3:a2:31:a0:cb:d3:ff:bf:a7:85:34:00:d7:74:
21:65:65:c6:27:0b:b2:c7:d1:6f:9d:ed:4b:0d:ec:d7:64:76:
37:8d:28:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 07:52:36 2024 by rpki-client on console-fra.rpki-client.org