Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3231322e3131382e302f32342d3234203d3e20313336373837.roa
File: 3138352e3231322e3131382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: J2Mu/9CbuE3YZlTdzDFVau0ZPQF+NtbqpDbzFFj+LoE=
Subject key identifier: 54:0C:9D:9F:60:62:32:95:FB:09:1C:81:40:1B:9C:AB:15:64:EB:0F
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 398056942B05CA92224DB25055A2DA8B2E134122
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3231322e3131382e302f32342d3234203d3e20313336373837.roa
Signing time: Wed 25 Sep 2024 11:23:07 +0000
ROA not before: Wed 25 Sep 2024 11:18:07 +0000
ROA not after: Wed 24 Sep 2025 11:23:07 +0000
asID: 136787
IP address blocks: 185.212.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:57:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:80:56:94:2b:05:ca:92:22:4d:b2:50:55:a2:da:8b:2e:13:41:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Sep 25 11:18:07 2024 GMT
Not After : Sep 24 11:23:07 2025 GMT
Subject: CN=540C9D9F60623295FB091C81401B9CAB1564EB0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:09:0d:c5:4f:f3:f1:00:c3:44:29:c8:e1:88:
13:74:7d:96:7f:30:34:41:ed:5a:e0:d5:e8:fe:9b:
d7:6f:87:45:36:2b:3f:c5:7e:c9:54:d5:72:98:54:
12:80:e3:fc:68:6c:4f:3e:94:7a:69:b3:81:bd:ba:
0d:93:80:16:d9:73:e0:f1:f6:bc:fb:5d:32:c7:cc:
97:d6:85:b8:e5:58:0b:95:47:d0:ba:8a:ef:bd:83:
89:18:24:20:40:d6:29:b4:a2:14:cb:75:13:38:23:
d9:78:85:6c:2a:5c:90:10:c3:fd:ae:6e:73:0d:ae:
87:2c:33:32:8c:29:86:ec:a2:ce:2f:3c:67:0b:0f:
e1:c6:87:30:7e:cb:63:95:56:04:81:e8:1b:eb:ff:
0d:4a:83:e2:36:0f:ec:91:10:41:09:2f:b2:a6:04:
04:92:39:8e:5a:42:5a:8a:95:ca:7f:66:e7:35:45:
81:2f:ee:a8:92:9a:9b:8f:10:ae:8d:8f:4c:fd:7c:
f9:16:18:3a:9a:5c:98:8b:35:c2:0b:77:4b:b1:8d:
9d:75:3d:c8:d1:bc:eb:bd:ae:9b:d5:a7:8d:a3:fc:
83:cc:3c:c0:80:69:22:ca:79:16:5a:89:68:3c:4f:
d8:12:ed:fb:06:62:02:17:37:b4:c2:87:eb:b9:5c:
50:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:0C:9D:9F:60:62:32:95:FB:09:1C:81:40:1B:9C:AB:15:64:EB:0F
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3231322e3131382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.118.0/24
Signature Algorithm: sha256WithRSAEncryption
53:be:cc:6c:ff:42:77:da:58:03:83:51:bd:6d:a5:21:e3:ad:
65:a8:ce:b5:ae:31:c8:57:44:a7:e2:3b:88:0a:98:1e:52:fe:
0b:6c:cb:eb:e0:7e:10:92:79:f3:4f:b9:f1:b8:35:b3:d5:be:
4e:2c:22:c9:35:fa:5f:80:d1:d6:b0:f2:fa:fb:4d:1d:cc:e5:
7c:7a:4d:5a:3c:24:ac:c1:f6:f8:c8:06:70:07:61:d9:34:6d:
a8:d3:54:5a:15:ec:45:7e:4d:5d:cb:17:63:c4:49:76:c5:2e:
98:69:cf:e5:1c:45:9a:4a:23:bb:f0:26:21:a1:a3:ab:c4:81:
61:88:e6:89:74:28:62:27:9f:e5:d7:b0:e0:3f:c4:91:74:fb:
b9:ee:a5:21:f4:16:6f:04:f1:3b:1d:51:ec:65:f2:e8:3b:4d:
83:ad:6f:85:af:1a:90:de:9e:b5:f8:c9:64:62:81:cd:74:74:
a5:bf:27:a0:a1:c1:34:13:56:23:7e:9f:f7:f3:84:f9:aa:60:
9c:6b:c6:19:3b:27:4a:8b:33:6c:d2:f4:d3:32:04:51:37:5c:
42:bb:81:ba:90:d2:2f:d6:1d:5a:17:d7:f0:3a:3d:fc:b9:08:
94:f4:0b:ba:30:d0:f0:4b:61:73:f8:57:3e:27:15:a4:d3:7a:
63:9a:e0:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 17:14:43 2024 by rpki-client on console-ams.rpki-client.org