Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3138352e3231322e3131332e302f32342d3234203d3e203136323736.roa
File: 3138352e3231322e3131332e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: Gjr12EOq9hSpELLAQEodj+Eyim2azzBcyKB+G3oM8OM=
Subject key identifier: 7B:8D:88:B1:2D:F8:98:FF:2B:05:45:C8:C3:90:F1:AC:D0:50:16:3F
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 03546106914C4458CC64FD8E78867F27A8D0FD08
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3138352e3231322e3131332e302f32342d3234203d3e203136323736.roa
Signing time: Thu 03 Oct 2024 09:22:57 +0000
ROA not before: Thu 03 Oct 2024 09:17:57 +0000
ROA not after: Thu 02 Oct 2025 09:22:57 +0000
asID: 16276
IP address blocks: 185.212.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:54:61:06:91:4c:44:58:cc:64:fd:8e:78:86:7f:27:a8:d0:fd:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Oct 3 09:17:57 2024 GMT
Not After : Oct 2 09:22:57 2025 GMT
Subject: CN=7B8D88B12DF898FF2B0545C8C390F1ACD050163F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:b8:cd:45:d6:e2:14:d7:20:56:46:d1:4f:72:
68:63:b7:8d:eb:da:a7:b4:bb:cc:24:f0:c4:b4:37:
7a:da:a8:36:12:c2:8f:4c:2c:e9:6b:d1:55:35:c5:
d7:3a:86:47:2d:55:9f:2b:83:e1:71:dd:20:e8:02:
b7:6c:c1:76:2d:28:32:29:db:3a:61:c9:de:a2:31:
06:7e:2c:fa:e8:74:f6:c3:61:f2:57:82:e8:85:df:
42:05:9d:99:f9:36:93:e6:95:ed:0f:8f:53:3b:d3:
96:b0:ac:22:cd:44:c8:75:23:4b:a9:0d:80:6e:36:
81:85:60:ea:63:09:71:f4:27:ae:6f:c8:81:4e:e4:
46:a7:fe:3a:16:2e:d5:ff:27:73:20:de:11:75:0f:
cf:f1:6a:69:c2:e3:c8:39:f3:74:cc:1a:ce:d0:5e:
97:d4:e7:c3:91:e8:bf:9d:ca:c4:ae:b7:e2:58:02:
5c:6d:38:cf:c0:59:ca:db:44:cf:8e:98:fd:e9:e6:
56:f8:4c:51:d6:b2:8b:ef:8c:61:04:3f:60:fe:f7:
99:ca:83:85:f9:27:df:37:7e:e7:f6:e6:cd:24:48:
6a:ad:ff:8e:4f:e1:fc:41:de:bf:2a:47:37:6f:8b:
6c:df:ac:18:48:04:d8:1c:a7:92:c1:d7:30:a3:22:
8e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:8D:88:B1:2D:F8:98:FF:2B:05:45:C8:C3:90:F1:AC:D0:50:16:3F
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3138352e3231322e3131332e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.113.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:4e:a6:60:08:47:fb:91:dc:b1:c5:32:12:9e:06:aa:7d:b5:
59:cd:a8:6e:10:73:7d:49:a8:6f:44:4b:a0:ed:be:90:61:95:
68:55:9e:96:50:1d:3d:c3:ad:55:22:fa:d9:9d:21:a5:b0:97:
1a:4b:fa:f4:59:13:25:d2:25:29:3d:97:2a:ad:5e:02:78:0b:
64:33:c4:3d:5b:f9:d5:1a:4f:21:c2:5e:33:2e:ac:7f:ce:1f:
65:2b:a6:02:7f:b8:0e:96:37:8a:e8:6f:5d:ed:17:c1:cc:00:
b8:4f:6f:ed:a8:d9:ba:c6:79:c9:e8:3b:8a:3c:05:9a:29:b5:
d2:44:94:88:6b:c3:7f:a0:3f:6a:6b:5a:0e:8e:69:e3:91:b2:
f6:68:be:44:45:58:7e:d2:37:b9:c0:5b:5f:be:47:48:2b:5c:
c1:44:55:8e:91:a6:c7:3b:d3:55:e1:a4:de:de:18:c1:d7:ed:
ad:0b:e1:21:31:ed:a0:20:5a:4d:18:6f:98:52:25:37:02:9c:
ca:4b:74:20:89:6a:84:24:45:86:58:49:40:7b:55:85:c1:27:
83:ed:f7:b1:26:8d:19:f0:10:f6:87:e9:42:f0:60:55:32:5d:
bd:fb:08:84:96:7f:de:52:2f:21:b7:c0:8e:7f:91:79:07:78:
68:94:10:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:59:20 2024 by rpki-client on console-fra.rpki-client.org