Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3231322e3131382e302f32342d3234203d3e20313437303439.roa
File: 3138352e3231322e3131382e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: o0szdMS1XxaRPrNn+t5pxo+KsAoZ28Jfu/d9lC4lddM=
Subject key identifier: F0:CD:E1:8C:D6:48:94:71:26:D8:B4:83:13:72:44:3C:93:B2:BC:C9
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 0952CC45DCB0648E3EF4F93189CD39BCEA558D5A
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3231322e3131382e302f32342d3234203d3e20313437303439.roa
Signing time: Thu 21 Dec 2023 14:10:26 +0000
ROA not before: Thu 21 Dec 2023 14:05:26 +0000
ROA not after: Thu 19 Dec 2024 14:10:26 +0000
asID: 147049
IP address blocks: 185.212.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 13:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:52:cc:45:dc:b0:64:8e:3e:f4:f9:31:89:cd:39:bc:ea:55:8d:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 21 14:05:26 2023 GMT
Not After : Dec 19 14:10:26 2024 GMT
Subject: CN=F0CDE18CD648947126D8B4831372443C93B2BCC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:42:51:bd:9f:be:7d:f9:7f:a4:ea:69:14:37:
0a:1a:0a:3c:ea:a2:67:81:f9:f1:db:95:af:6f:a6:
81:96:9b:4f:92:d7:a9:c5:e3:f0:7e:b0:87:25:71:
7b:6e:4f:cb:f8:19:83:39:04:09:70:9e:82:8d:a7:
bb:c0:24:d5:c2:b9:67:69:46:b8:6e:31:f5:36:fd:
32:08:ce:13:7c:0b:b1:c3:41:93:83:13:20:d0:67:
b9:bd:99:79:e2:7f:6e:9f:eb:73:97:70:cf:b4:c2:
48:ee:1e:e5:bb:87:fa:e8:84:c6:61:86:f7:0c:6d:
94:17:36:0f:09:d1:42:21:e4:da:a4:7e:6f:6b:c3:
55:64:9e:d9:a9:5b:66:49:89:06:30:69:a1:80:d5:
86:a2:ee:cd:c5:93:33:be:22:1e:32:86:22:80:05:
78:7b:a0:d2:b9:de:0f:42:1a:77:f4:fc:d2:c2:0f:
68:78:eb:d5:e0:81:67:44:28:71:76:00:fa:a8:a9:
2f:05:8f:fe:92:2d:3d:fd:62:d5:fa:b4:56:97:97:
00:48:1c:06:9f:28:35:1c:20:36:96:89:81:a1:16:
4d:25:a3:e0:2c:32:e2:95:8e:84:2d:c4:a8:7f:a9:
ba:3d:96:da:0c:0d:6f:37:f5:03:17:a3:33:60:f1:
1c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:CD:E1:8C:D6:48:94:71:26:D8:B4:83:13:72:44:3C:93:B2:BC:C9
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3231322e3131382e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.118.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:92:a8:bd:2e:c4:63:39:2e:69:98:3e:c7:89:f2:60:58:ad:
97:ce:66:76:31:6b:06:76:70:39:37:9b:fa:2a:68:7f:ba:8a:
ef:5f:a6:06:7c:17:ba:37:f1:53:87:2e:2d:f5:14:53:f6:50:
21:43:63:15:e8:3c:1b:f5:78:55:3c:d6:bf:cc:4e:be:d5:3d:
15:9a:dc:66:df:c9:f8:7a:29:de:49:82:c7:0d:51:4b:80:47:
33:c8:23:1a:50:ca:2c:44:84:37:c0:14:e8:ff:42:09:a1:12:
35:1c:f7:fe:d3:f4:74:7e:ed:15:2f:0c:66:b7:81:52:eb:6e:
42:ab:f4:24:85:a3:16:6b:c3:7c:60:f1:99:4b:da:40:6a:05:
d4:c7:7e:ee:1e:a2:df:53:6f:44:b9:0f:0f:b8:05:3d:87:ff:
b3:99:7a:2f:f9:f3:0c:2f:0a:b2:99:4c:4f:77:a3:eb:b0:9f:
dc:4d:20:e8:fe:1e:9f:c4:18:7a:9c:15:a5:8a:7e:16:c6:8f:
13:e2:50:47:da:34:40:e4:10:fc:8e:2a:f8:28:26:1a:06:24:
95:57:2e:b3:7c:34:12:3b:6a:c8:58:34:99:b2:fd:7c:02:c9:
7d:cd:bd:be:b6:c2:bb:d3:d5:d3:5c:c1:bd:f8:1b:48:67:94:
80:cb:26:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 17:58:47 2024 by rpki-client on console-fra.rpki-client.org