Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/3138352e31332e3232372e302f32342d3234203d3e20323130353432.roa
File: 3138352e31332e3232372e302f32342d3234203d3e20323130353432.roa (raw, json)
Hash identifier: F9aTk9bgOzcFh6NPGG7l7OjOmRqEky0/zHiWtw+XU+g=
Subject key identifier: 48:E7:6A:7D:A4:6F:27:EB:88:6D:B2:1E:7A:86:18:76:D5:1A:23:04
Certificate issuer: /CN=4c189e42f35c944d463d9ea6501f093eb62ba785
Certificate serial: 47DF9CC757BC1533E56D4C88FA54F7C84AF14A58
Authority key identifier: 4C:18:9E:42:F3:5C:94:4D:46:3D:9E:A6:50:1F:09:3E:B6:2B:A7:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TBieQvNclE1GPZ6mUB8JPrYrp4U.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/3138352e31332e3232372e302f32342d3234203d3e20323130353432.roa
Signing time: Mon 29 Apr 2024 06:28:43 +0000
ROA not before: Mon 29 Apr 2024 06:23:43 +0000
ROA not after: Mon 28 Apr 2025 06:28:43 +0000
asID: 210542
IP address blocks: 185.13.227.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/4C189E42F35C944D463D9EA6501F093EB62BA785.crl
rsync://rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/4C189E42F35C944D463D9EA6501F093EB62BA785.mft
rsync://rpki.ripe.net/repository/DEFAULT/TBieQvNclE1GPZ6mUB8JPrYrp4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 May 2024 22:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:df:9c:c7:57:bc:15:33:e5:6d:4c:88:fa:54:f7:c8:4a:f1:4a:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c189e42f35c944d463d9ea6501f093eb62ba785
Validity
Not Before: Apr 29 06:23:43 2024 GMT
Not After : Apr 28 06:28:43 2025 GMT
Subject: CN=48E76A7DA46F27EB886DB21E7A861876D51A2304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b9:ae:db:aa:bb:69:5c:82:6b:3b:a7:92:45:
b6:b9:80:fa:1f:ab:b4:79:b8:9c:61:99:fa:7a:20:
d2:4f:0c:ae:83:6a:d3:32:d3:76:e1:c1:f1:de:ee:
75:04:65:85:e6:73:df:6b:3e:37:a5:4b:1a:0c:50:
f1:30:69:d2:cf:47:c0:ea:76:f2:b7:91:96:a7:91:
e9:8a:62:44:e3:75:6a:9a:4b:bf:a0:29:16:57:8e:
12:02:40:bf:05:59:2c:b9:21:da:e5:19:f6:f2:b8:
48:99:0c:fc:05:fc:cc:31:08:12:7c:15:4a:e1:bc:
d4:f2:7a:b7:a4:b9:b3:b1:a5:0b:de:fd:46:cc:04:
4f:56:b6:48:11:6e:b9:26:89:a9:f9:08:51:7a:4c:
3e:06:35:aa:f5:f3:96:1b:43:88:04:62:4f:a5:4d:
c3:3c:1a:b1:00:cd:6c:9e:55:6c:55:ea:51:f5:19:
1c:42:7e:4b:7b:27:21:7c:1b:96:fd:8e:0a:0e:64:
78:23:87:0e:47:27:df:b4:7c:37:45:1a:77:0d:32:
53:76:63:94:e5:5f:86:ac:a1:a8:ec:69:26:f2:96:
68:0f:2b:78:04:93:b9:4a:b3:17:2d:e4:c0:a3:ef:
0d:9d:aa:30:24:03:ca:58:f1:6d:14:d6:2c:11:c8:
2a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:E7:6A:7D:A4:6F:27:EB:88:6D:B2:1E:7A:86:18:76:D5:1A:23:04
X509v3 Authority Key Identifier:
keyid:4C:18:9E:42:F3:5C:94:4D:46:3D:9E:A6:50:1F:09:3E:B6:2B:A7:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/4C189E42F35C944D463D9EA6501F093EB62BA785.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TBieQvNclE1GPZ6mUB8JPrYrp4U.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/3138352e31332e3232372e302f32342d3234203d3e20323130353432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.227.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:45:61:26:1e:12:03:17:e0:56:15:97:86:9b:f3:73:61:6e:
4b:2b:46:86:46:c5:b9:6c:76:93:a8:16:79:ee:7a:bd:a2:24:
d7:f8:54:40:8b:68:e7:eb:bf:56:35:f2:d2:b4:c0:91:4c:2b:
b7:1f:5c:09:20:9f:f9:c8:11:be:e7:9a:3e:c0:bc:7c:76:98:
ef:58:d1:bf:5a:1a:df:5b:b8:8b:c9:a8:66:ec:59:3f:ae:2f:
45:6b:28:7c:f0:83:1f:3c:5f:17:76:ad:7d:15:53:f2:41:e8:
07:86:bf:87:62:0b:39:36:19:09:64:13:16:7b:d2:80:23:f3:
fe:5d:92:94:eb:34:aa:4f:68:1f:68:80:49:13:22:1b:e2:3f:
26:63:d3:b2:51:fb:3a:cb:9f:75:7b:d6:5a:01:99:d7:8c:6f:
4d:ff:1b:45:2b:e7:91:c1:5a:78:60:ca:9b:1e:70:4f:f6:60:
6d:21:03:50:d5:c9:f7:68:8d:7e:16:5f:2d:b7:7f:7d:a1:de:
d2:d3:ca:2b:67:a8:a6:9e:d9:10:f9:3c:95:ce:58:c7:12:d3:
74:62:26:cf:8d:83:d1:eb:db:de:f2:47:93:aa:bf:13:a0:85:
01:83:79:bf:03:20:6b:51:95:4e:3d:ee:22:df:64:44:18:d5:
e6:f0:e5:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 30 05:49:12 2024 by rpki-client on console-ams.rpki-client.org