Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/352e3138302e3135302e302f32342d3332203d3e203531313637.roa
File: 352e3138302e3135302e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: cD9qXwVYDYFzdvjFdjBbAqz0Wg1TPazJ54hCvzhgj6I=
Subject key identifier: F6:8F:8D:F9:18:A4:0C:A0:3D:39:31:E8:6C:C1:7A:C6:6F:3A:89:D7
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 2E29B701C3BA7D61329C3B72800FEAF5046FACE9
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/352e3138302e3135302e302f32342d3332203d3e203531313637.roa
Signing time: Thu 30 May 2024 20:39:03 +0000
ROA not before: Thu 30 May 2024 20:34:03 +0000
ROA not after: Thu 29 May 2025 20:39:03 +0000
asID: 51167
IP address blocks: 5.180.150.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:29:b7:01:c3:ba:7d:61:32:9c:3b:72:80:0f:ea:f5:04:6f:ac:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: May 30 20:34:03 2024 GMT
Not After : May 29 20:39:03 2025 GMT
Subject: CN=F68F8DF918A40CA03D3931E86CC17AC66F3A89D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a2:12:04:56:c8:2f:a7:ad:d8:35:67:c6:c0:
79:d6:d7:07:cf:f4:71:ec:99:13:31:5e:68:b3:b8:
e8:34:d1:22:74:a0:08:8f:9e:76:24:bd:91:7f:ad:
f8:40:ef:77:56:98:c0:9a:0c:38:19:11:70:a6:80:
a4:37:06:95:60:2b:79:7d:56:36:cd:3f:8c:29:29:
77:a3:b3:a0:3f:4f:65:21:f3:ff:64:1c:b5:c8:f9:
40:dc:c0:5b:0d:c1:f2:86:bd:f6:8c:39:bf:5c:cf:
9d:81:3e:95:df:67:fa:75:b9:01:69:54:42:46:1e:
4f:14:df:72:44:b9:26:64:10:03:a1:ae:ca:0b:0c:
4a:76:29:d1:69:48:41:90:b5:66:22:65:c4:55:6b:
08:be:48:7e:a8:51:f5:e6:24:e0:c1:0e:60:c6:48:
50:e3:81:11:3e:54:da:a9:75:5c:48:07:bb:5a:24:
31:11:0d:5e:4d:b1:49:fe:46:cc:60:09:61:f1:be:
29:28:48:62:47:e2:b7:41:1d:4d:82:66:34:d4:d3:
c1:c6:fe:dc:e2:99:e1:4d:57:56:02:65:8a:f5:6e:
e2:75:0c:fb:8a:be:f2:71:44:5c:1d:bf:79:0b:0b:
5c:42:4e:a1:ad:3c:cf:fd:c8:63:20:97:95:2b:4a:
19:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:8F:8D:F9:18:A4:0C:A0:3D:39:31:E8:6C:C1:7A:C6:6F:3A:89:D7
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/352e3138302e3135302e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.150.0/24
Signature Algorithm: sha256WithRSAEncryption
26:5f:0a:c6:d0:aa:42:6e:8d:94:5e:0d:04:e7:2e:42:f4:bb:
f3:44:1c:aa:b0:6c:16:5d:f2:74:ec:dd:2f:4a:53:4a:57:da:
fc:5e:5f:4b:f8:16:f0:57:7b:3f:4b:32:f7:7e:2d:e3:52:be:
04:9e:73:08:4f:ef:3b:54:cd:27:96:23:19:2f:d0:ad:b4:3f:
dc:9e:53:01:d2:4b:ea:68:18:3f:4c:4f:11:11:25:63:2b:10:
4e:9d:f9:bf:b0:eb:98:48:54:c0:16:e8:47:b3:e3:6c:55:53:
10:cf:98:b8:e8:11:14:f3:71:74:58:67:e4:55:f1:5a:2d:dc:
0a:20:54:d9:fb:ff:1a:59:8d:60:5e:0f:c6:e0:1c:21:76:58:
6c:a2:6f:4a:85:50:f4:77:3f:a6:cc:8a:ce:3c:09:0d:be:53:
73:c4:ce:eb:9a:8d:94:e9:c0:1c:e3:8d:de:7b:73:6c:3b:e8:
dc:c7:6c:70:7f:9c:57:9a:2c:0d:6c:42:8b:7e:9e:53:49:c5:
03:33:5b:b8:0c:64:39:01:cc:97:b5:1d:ad:1c:b5:74:d3:61:
81:f8:e0:28:ba:ed:b0:95:c3:40:c6:83:45:84:de:7a:98:f1:
2c:1e:a0:5a:a0:a1:7e:2f:18:1d:ff:12:b1:ec:ac:7b:e9:1e:
50:f5:d9:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:44:10 2024 by rpki-client on console-fra.rpki-client.org