Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3137352e35362e302f32342d3234203d3e203633343733.roa
File: 3138352e3137352e35362e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: E6Lj8Y3/JYdKOmi781K6jkqH6IVCQsjaYz34WOizTRs=
Subject key identifier: 1F:64:92:75:3B:7D:7F:41:B6:09:D1:FD:2C:28:8A:49:F5:94:55:CE
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 6B53E20B15A1631FC3945C27481BBB49C6776AA2
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3137352e35362e302f32342d3234203d3e203633343733.roa
Signing time: Mon 04 Dec 2023 09:34:34 +0000
ROA not before: Mon 04 Dec 2023 09:29:34 +0000
ROA not after: Mon 02 Dec 2024 09:34:34 +0000
asID: 63473
IP address blocks: 185.175.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 May 2024 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:53:e2:0b:15:a1:63:1f:c3:94:5c:27:48:1b:bb:49:c6:77:6a:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Dec 4 09:29:34 2023 GMT
Not After : Dec 2 09:34:34 2024 GMT
Subject: CN=1F6492753B7D7F41B609D1FD2C288A49F59455CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6a:85:63:30:7f:e6:ea:fc:61:9e:b9:c4:3b:
16:e1:46:8c:2c:c5:9d:06:99:9d:f1:b4:a2:9a:1d:
cd:a8:e8:74:7f:33:af:09:d3:0b:45:3d:45:6d:0b:
10:da:ce:1e:c0:bf:ef:8d:e6:49:ff:69:6e:11:4e:
36:89:ad:48:a3:08:54:d1:ff:79:e3:12:d2:d3:43:
cc:cc:f2:38:aa:8c:00:22:38:1b:da:50:45:49:65:
ac:a6:89:4d:d8:09:f5:8c:4b:47:7b:0b:73:0e:43:
e4:ad:e2:ed:0e:d7:ce:08:9c:6f:d6:0e:2f:0a:1b:
36:c9:a8:69:a3:a1:7f:cf:74:dd:9d:e3:19:56:d3:
f2:3f:bb:b1:d2:3c:89:c4:f9:d2:f5:5b:65:93:6b:
34:52:36:60:70:5e:3a:66:a8:1e:d0:f8:51:4e:b1:
f4:76:e9:da:3d:6c:1d:d5:c4:72:b9:b3:50:b2:15:
80:99:50:36:a8:f1:dc:0a:5b:f4:4e:85:6f:40:f9:
fe:b9:96:16:c0:fb:23:ac:c9:c0:d8:ef:9c:c5:33:
bf:2b:a5:0b:37:e5:8b:86:2d:f3:96:ac:f0:6c:5d:
68:5e:ee:eb:a7:d7:6a:ed:b9:f7:f0:67:a4:54:d3:
36:ee:8b:88:9d:e6:09:93:a4:48:7f:fa:2c:10:12:
97:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:64:92:75:3B:7D:7F:41:B6:09:D1:FD:2C:28:8A:49:F5:94:55:CE
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3137352e35362e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.56.0/24
Signature Algorithm: sha256WithRSAEncryption
82:ad:02:7a:dd:25:b6:46:4f:4c:53:15:0f:de:5b:86:ec:e7:
0d:fd:5d:3a:23:a2:c8:61:b2:bb:4f:85:ff:6a:e9:5b:8a:5a:
2f:22:32:43:7f:9f:a0:b1:9b:d7:14:2e:5e:4c:39:ee:b2:42:
ef:38:3c:d5:24:55:d0:58:ca:06:0e:aa:eb:2e:72:60:71:7d:
28:0d:d1:8f:21:77:e4:27:d0:04:65:ac:7d:89:72:f5:d1:7b:
a7:58:56:f8:f2:7a:05:58:48:ce:fd:d3:18:81:ee:dd:eb:47:
84:4f:2e:18:8d:93:6c:1e:3f:0d:6f:c1:b6:d5:f2:19:35:4d:
de:47:53:b1:d0:09:da:a5:14:18:4b:15:31:cc:c2:fd:0f:c5:
99:e5:b9:e2:5c:f8:1e:13:fa:cb:a5:e6:c6:62:4b:79:62:84:
fb:67:6e:df:af:2d:92:50:f3:06:02:4e:04:7f:ca:de:8c:4a:
93:2f:cb:ba:7a:d4:f1:67:e3:80:bc:5a:9c:1d:26:87:88:16:
42:c1:0c:0a:d3:70:f3:87:a3:74:92:27:ae:98:fa:6f:25:5c:
31:36:68:0d:4e:fc:ea:69:43:23:34:46:f1:6b:9d:fe:1c:5b:
70:68:24:03:e0:5f:c5:b2:88:1e:3a:de:da:1d:ed:a7:44:c8:
4a:bb:54:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 10:17:49 2024 by rpki-client on console-ams.rpki-client.org