Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3234352e3135352e302f32342d3234203d3e20323036323833.roa
File: 3138352e3234352e3135352e302f32342d3234203d3e20323036323833.roa (raw, json)
Hash identifier: uybQYuThaycA659H+dR4tBU60o+FN09ZCEWbI/s/weM=
Subject key identifier: 49:CE:3E:70:87:BD:02:ED:C7:5C:E0:6F:8B:F3:24:A9:97:9F:EF:22
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 5F4967BADA65F496FEC0689886CA46750F9EAEE1
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3234352e3135352e302f32342d3234203d3e20323036323833.roa
Signing time: Fri 27 Dec 2024 11:47:13 +0000
ROA not before: Fri 27 Dec 2024 11:42:13 +0000
ROA not after: Fri 26 Dec 2025 11:47:13 +0000
asID: 206283
IP address blocks: 185.245.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 14:45:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:49:67:ba:da:65:f4:96:fe:c0:68:98:86:ca:46:75:0f:9e:ae:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:13 2024 GMT
Not After : Dec 26 11:47:13 2025 GMT
Subject: CN=49CE3E7087BD02EDC75CE06F8BF324A9979FEF22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:33:3a:bb:74:ba:b5:35:61:28:0f:70:50:32:
97:89:f0:f2:12:9e:d9:53:17:9b:f6:ff:de:d0:3f:
e0:01:bd:e0:a5:5c:e8:a2:ba:49:2d:03:03:2c:4d:
a8:d8:2d:f8:78:67:35:de:fa:10:98:a8:f2:22:26:
81:c3:89:91:34:da:81:01:9f:4c:07:83:cb:06:5b:
0d:2d:9e:a7:fd:da:33:9d:f7:d9:84:43:65:95:be:
7b:b0:b8:0d:40:b1:86:5a:b8:74:e6:97:4a:81:0c:
87:94:48:46:0f:41:50:36:aa:4c:12:1d:ca:be:8f:
3e:a6:ad:71:c5:6b:2f:f6:d4:8a:da:d1:34:86:ce:
29:97:bd:44:55:e6:17:41:71:89:8b:68:a6:0d:6b:
06:a2:01:45:aa:3e:cf:52:f1:81:0b:1d:da:2a:29:
07:16:88:dc:0a:46:84:de:48:9c:da:a0:21:51:1f:
ca:4e:68:7d:84:8f:d4:d2:aa:ec:db:50:08:ee:fe:
fc:77:38:58:76:54:a3:62:48:24:99:8d:c0:02:2a:
8d:43:8f:5c:d7:b0:9f:4b:c2:b3:ef:1a:e4:4c:b9:
79:9a:03:c9:ee:ed:84:d6:f7:13:96:d0:5a:b2:df:
ab:d4:47:ea:67:4f:fb:fd:f3:1a:49:37:8c:77:76:
4b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:CE:3E:70:87:BD:02:ED:C7:5C:E0:6F:8B:F3:24:A9:97:9F:EF:22
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3234352e3135352e302f32342d3234203d3e20323036323833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.155.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:35:6e:75:18:6f:d5:ee:a5:3c:51:fc:62:74:9a:bc:cd:99:
2a:5a:96:e4:d4:00:70:56:39:2a:0d:ea:47:4c:e5:44:56:c4:
63:a8:85:86:81:b8:bf:76:e5:67:8d:82:d5:08:3d:b9:06:61:
56:17:69:02:8c:b8:ce:b7:6e:6e:0f:c0:92:b0:8a:95:07:1a:
d4:6e:6e:43:3d:e8:92:f2:c3:f1:1f:c4:c8:9e:8d:3d:4d:dc:
df:33:55:1d:5a:27:b1:9b:8c:10:6d:23:a3:12:c3:4e:b1:be:
21:c7:7d:eb:a4:99:36:37:4f:97:1e:8a:16:d4:97:08:37:8e:
57:ac:df:73:32:3e:b4:bb:94:65:a2:36:c9:0f:ce:73:4c:c2:
0c:5a:5f:e7:99:9d:ff:02:93:02:da:51:4a:61:85:e8:63:68:
ab:47:95:14:ca:a4:ff:56:0e:83:79:93:14:45:a2:1e:83:19:
e6:d5:df:70:a7:e7:2d:95:ac:95:ff:57:7a:c3:76:50:c9:14:
10:e8:b1:da:f7:3b:d2:d2:bf:d8:24:73:61:59:ee:09:b0:2a:
94:73:e0:85:0f:b6:58:25:ff:b8:08:eb:77:a4:b7:b0:9c:02:
e9:83:cb:ab:17:b6:87:aa:92:01:c9:63:52:34:bb:ed:b0:65:
95:e6:37:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:01:50 2025 by rpki-client