Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ed81477e-510b-4d37-a229-ed4e88fbe65a/0/3138352e3232392e3230372e302f32342d3234203d3e203538303631.roa
File: 3138352e3232392e3230372e302f32342d3234203d3e203538303631.roa (raw, json)
Hash identifier: 8QMP51yDd/aRQi3NuOh6ee/haeGDJYpfA/NDhGQxuHs=
Subject key identifier: 83:97:87:FE:54:4B:2C:CB:87:AA:FD:AB:14:FB:B2:7D:88:33:78:83
Certificate issuer: /CN=922085cff3657fa2aec6f91d91bbf0cd4dd24418
Certificate serial: 24C6C7E90C799B14AFBDF0933F4D7F64780FB3C0
Authority key identifier: 92:20:85:CF:F3:65:7F:A2:AE:C6:F9:1D:91:BB:F0:CD:4D:D2:44:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiCFz_Nlf6KuxvkdkbvwzU3SRBg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ed81477e-510b-4d37-a229-ed4e88fbe65a/0/3138352e3232392e3230372e302f32342d3234203d3e203538303631.roa
Signing time: Mon 19 Feb 2024 14:05:28 +0000
ROA not before: Mon 19 Feb 2024 14:00:28 +0000
ROA not after: Mon 17 Feb 2025 14:05:28 +0000
asID: 58061
IP address blocks: 185.229.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ed81477e-510b-4d37-a229-ed4e88fbe65a/0/922085CFF3657FA2AEC6F91D91BBF0CD4DD24418.crl
rsync://rsync.paas.rpki.ripe.net/repository/ed81477e-510b-4d37-a229-ed4e88fbe65a/0/922085CFF3657FA2AEC6F91D91BBF0CD4DD24418.mft
rsync://rpki.ripe.net/repository/DEFAULT/kiCFz_Nlf6KuxvkdkbvwzU3SRBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Jun 2024 14:36:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:c6:c7:e9:0c:79:9b:14:af:bd:f0:93:3f:4d:7f:64:78:0f:b3:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=922085cff3657fa2aec6f91d91bbf0cd4dd24418
Validity
Not Before: Feb 19 14:00:28 2024 GMT
Not After : Feb 17 14:05:28 2025 GMT
Subject: CN=839787FE544B2CCB87AAFDAB14FBB27D88337883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f4:aa:d8:2f:4a:c4:53:45:fa:f4:2f:c2:d0:
d0:8e:1a:51:76:ad:9a:fe:65:e7:4e:65:3f:69:3b:
f9:d3:02:5b:b8:45:a6:fa:51:9c:f7:3b:46:79:29:
01:83:e2:79:3a:5b:7a:da:61:fd:a7:97:d2:81:d4:
6c:43:2e:9d:6e:ae:d1:cc:db:6c:c0:93:8d:96:2c:
31:94:28:e1:5d:35:a8:b8:0a:b1:e9:da:97:fc:66:
00:ec:5c:d0:34:52:89:87:37:d9:f3:3a:b7:5b:06:
3a:b5:15:24:38:62:73:de:cd:3f:03:ce:7a:9b:a2:
2e:dc:14:e6:a3:9a:a7:ed:87:72:fa:87:17:13:36:
b3:13:b7:97:ff:59:82:97:88:a0:8d:f9:bd:21:46:
98:31:01:8f:f7:0f:39:0a:03:7d:64:9a:d8:70:6c:
b3:5d:d0:c3:bb:71:f6:57:94:3d:38:2e:23:1c:1f:
fc:29:44:be:4e:e3:eb:2d:05:fb:e4:2f:49:4a:69:
96:9e:84:e8:86:c3:55:42:3b:5a:b2:49:53:75:52:
9e:a7:09:24:46:22:a6:ef:38:d0:b7:56:99:0f:53:
d8:a6:a3:f0:ae:b5:5b:0f:66:07:d3:86:7e:a1:f1:
46:a1:d0:94:50:10:94:6b:87:d1:1c:24:15:98:4a:
5c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:97:87:FE:54:4B:2C:CB:87:AA:FD:AB:14:FB:B2:7D:88:33:78:83
X509v3 Authority Key Identifier:
keyid:92:20:85:CF:F3:65:7F:A2:AE:C6:F9:1D:91:BB:F0:CD:4D:D2:44:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ed81477e-510b-4d37-a229-ed4e88fbe65a/0/922085CFF3657FA2AEC6F91D91BBF0CD4DD24418.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiCFz_Nlf6KuxvkdkbvwzU3SRBg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ed81477e-510b-4d37-a229-ed4e88fbe65a/0/3138352e3232392e3230372e302f32342d3234203d3e203538303631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.207.0/24
Signature Algorithm: sha256WithRSAEncryption
71:1d:c4:75:75:21:48:8c:ad:23:a8:57:09:95:4a:4e:82:fd:
40:c1:33:0a:2a:0a:e5:1d:d0:1c:2e:82:76:2e:3d:20:47:85:
a1:86:f6:42:3a:dc:2c:d6:d6:bb:c0:b7:6c:38:90:89:5e:17:
cd:34:44:10:51:1b:8f:5b:62:e8:07:e8:77:2c:f9:8f:41:6c:
ba:4b:29:36:88:98:f2:dd:9c:3d:ca:7e:28:0f:0f:4b:f9:b4:
6f:ac:0c:b8:04:49:4f:b7:64:be:2b:5b:04:fd:68:9a:cf:ae:
9c:73:fd:bb:8d:53:b6:a2:b5:15:21:e5:f9:b5:48:15:e0:67:
91:1f:c4:ed:ef:4b:ef:e0:3a:6f:e6:77:e6:8a:4d:51:53:42:
42:5b:54:f3:4b:fd:12:45:9d:c8:8b:0e:92:bb:cd:f7:2c:0c:
c6:f8:d4:9d:26:c6:b1:20:6a:88:d6:b8:e2:3e:dd:c0:e8:9a:
28:a0:31:82:31:71:16:13:6e:1b:bc:81:62:5b:e1:1f:d7:09:
5c:6c:b1:e6:42:4b:c8:7e:a2:b3:6b:13:e6:02:41:70:28:1c:
7b:25:a1:e4:23:61:08:2d:d2:33:86:0f:98:28:ad:6a:27:85:
93:8e:b1:9d:09:ea:a2:78:14:51:b3:48:f5:c4:1b:58:87:ae:
95:32:06:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 19:45:42 2024 by rpki-client on console-ams.rpki-client.org