Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3138352e3235302e3231352e302f32342d3234203d3e20313336373837.roa
File: 3138352e3235302e3231352e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: gFL0YnIaD7JLzB0yQEoypX0Bmhj9a9BACadgk9JnN+g=
Subject key identifier: C1:2A:D0:0E:12:AA:F3:AD:D4:AC:AA:D1:0E:70:3D:CB:BF:90:34:80
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 0C44A61E9CE3DA7300D73F706513D826797BF941
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3138352e3235302e3231352e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 19 Jun 2023 16:33:39 +0000
ROA not before: Mon 19 Jun 2023 16:28:39 +0000
ROA not after: Mon 17 Jun 2024 16:33:39 +0000
asID: 136787
IP address blocks: 185.250.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:44:a6:1e:9c:e3:da:73:00:d7:3f:70:65:13:d8:26:79:7b:f9:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Jun 19 16:28:39 2023 GMT
Not After : Jun 17 16:33:39 2024 GMT
Subject: CN=C12AD00E12AAF3ADD4ACAAD10E703DCBBF903480
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:97:74:60:4c:9f:2a:47:27:8c:8c:38:eb:0f:
ac:da:9d:90:9a:d6:c7:81:97:30:36:db:29:1e:3b:
12:61:8c:b9:19:2d:21:86:61:2f:11:e0:69:0a:80:
e1:80:74:e0:a6:63:6e:78:08:2a:b1:38:51:89:80:
50:2c:1d:ae:80:31:6c:5c:12:e5:52:00:0a:d2:92:
8a:92:5a:ca:3f:e9:66:f6:1e:f9:96:52:1d:f1:73:
c7:4a:00:38:ad:1a:df:8f:57:95:a4:a3:bd:0b:03:
99:c6:86:e9:57:3a:0c:4a:33:74:fe:81:79:b2:3d:
45:a8:83:11:ed:ec:8f:9b:52:8c:99:ad:3e:ac:70:
7a:77:11:70:16:e6:f3:94:cc:31:da:ed:6e:00:e9:
9d:77:3f:86:2d:9b:fc:20:05:67:3d:fa:68:d0:db:
11:9b:5f:54:e4:5e:48:60:37:10:fa:ec:58:9a:21:
90:40:e3:92:dd:31:9b:76:88:0f:9c:bc:c1:30:df:
18:12:14:2e:a8:43:6b:49:18:70:4d:be:a2:00:69:
3b:50:29:46:3f:a3:4d:68:d9:a1:2a:40:c2:34:01:
3c:f9:a5:84:c3:cd:35:0d:2e:d9:1e:9f:14:06:63:
c8:0e:34:ae:7c:04:b3:9d:c9:9c:21:eb:6a:68:eb:
6a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:2A:D0:0E:12:AA:F3:AD:D4:AC:AA:D1:0E:70:3D:CB:BF:90:34:80
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3138352e3235302e3231352e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.215.0/24
Signature Algorithm: sha256WithRSAEncryption
19:25:36:f7:5c:c1:5d:bf:0b:9e:ac:58:4a:ea:14:56:f3:04:
ac:f9:7c:0a:95:96:67:e8:1c:7d:13:eb:00:8b:14:b4:5d:7d:
03:8e:23:fb:c8:c4:43:aa:b8:a8:9e:82:f8:c2:c0:db:02:f9:
ab:ef:ea:6d:76:95:65:50:24:e3:e5:b2:a3:b1:1b:e5:ac:49:
19:83:d8:a0:ad:36:10:c0:6e:fe:aa:37:d7:04:69:2f:2b:03:
8a:e5:40:17:39:8b:85:35:d0:a2:dd:1f:d9:e8:09:ef:87:1b:
db:39:1b:89:5b:f2:50:9a:47:83:90:c9:60:4a:91:d1:fc:6e:
25:a3:34:44:79:6c:b3:4b:9d:4c:a7:82:6d:a2:72:72:a6:2d:
34:9a:92:2e:4e:71:f2:a6:3b:70:11:55:71:6f:a6:41:c2:bc:
59:81:d7:32:05:23:85:36:70:a6:5f:5c:3c:52:eb:f6:ca:ab:
ae:11:67:b8:04:9f:94:26:4d:f5:72:db:2e:45:40:ab:f8:40:
ac:d6:76:fc:2e:38:6e:f0:47:4f:69:22:59:09:b4:59:d4:bb:
8d:dd:c5:b6:ae:eb:77:ac:00:c2:07:26:15:44:59:9b:dc:1b:
ad:ef:e6:51:1f:93:c5:03:09:96:71:57:ce:90:15:05:c8:e0:
18:c6:d1:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 22:52:25 2024 by rpki-client on console-ams.rpki-client.org