Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3137352e35382e302f32342d3234203d3e203633343733.roa
File: 3138352e3137352e35382e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: DVupjc/EgkgWmaDOnjvpsEHieu8iwkbpwR81eCvFfuo=
Subject key identifier: AF:39:14:E4:62:46:9E:79:D3:BB:0B:98:2E:07:30:89:D6:6C:7D:A5
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 51548295EA9AEA5B519B14D5FAFAC134B9FC5846
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3137352e35382e302f32342d3234203d3e203633343733.roa
Signing time: Wed 29 Nov 2023 13:50:48 +0000
ROA not before: Wed 29 Nov 2023 13:45:48 +0000
ROA not after: Wed 27 Nov 2024 13:50:48 +0000
asID: 63473
IP address blocks: 185.175.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 May 2024 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:54:82:95:ea:9a:ea:5b:51:9b:14:d5:fa:fa:c1:34:b9:fc:58:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Nov 29 13:45:48 2023 GMT
Not After : Nov 27 13:50:48 2024 GMT
Subject: CN=AF3914E462469E79D3BB0B982E073089D66C7DA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2c:9e:9d:e9:d6:4c:85:eb:c8:2e:9e:2e:07:
ee:92:78:87:56:6e:e9:fb:e6:d1:41:0d:60:55:6e:
78:80:7a:27:63:5f:c7:ff:7d:5a:b8:27:67:31:c1:
a0:12:66:60:30:69:ef:e2:02:68:0d:42:73:23:eb:
7b:54:a6:b8:34:58:da:27:5d:d5:0e:cb:af:95:c8:
ce:29:9a:62:63:4d:ed:73:60:54:ee:65:a7:34:4f:
b0:3c:9a:be:2d:cb:ff:84:5b:0a:4e:0c:f3:8b:dd:
b1:fb:87:88:3a:0e:bf:7a:47:fa:f5:31:31:68:cd:
0c:6a:5f:14:35:43:a1:80:c8:d1:08:4d:b4:3a:48:
c9:83:ca:3e:0c:48:db:9c:54:88:d0:bc:83:9c:ad:
c7:b5:9b:6e:83:c0:00:10:10:2a:68:60:6c:46:07:
64:fe:b5:bb:9b:8a:0a:57:ce:bc:02:78:17:87:fa:
e2:98:92:ae:98:97:5e:0a:6f:8b:e9:6a:9f:2e:31:
9f:4d:e4:e8:b3:db:42:78:15:d2:08:eb:31:16:e6:
a3:17:21:94:91:d9:c1:e5:08:42:cd:db:42:37:a4:
b3:c5:08:b7:f2:06:e6:bd:62:46:09:8e:29:55:71:
98:98:8a:a5:82:b1:df:0c:1c:f7:c4:79:ad:a6:92:
8c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:39:14:E4:62:46:9E:79:D3:BB:0B:98:2E:07:30:89:D6:6C:7D:A5
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3137352e35382e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.58.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:74:a5:bf:b8:fb:32:30:fc:84:ff:d4:fd:ba:ce:53:6f:09:
f7:cc:44:99:af:a4:43:d5:8d:a1:b2:67:1e:b2:74:4e:7d:7c:
24:9d:0d:cb:64:1c:86:a5:0c:77:97:ee:43:cf:3e:18:7f:2b:
d1:71:86:6e:83:97:4c:43:3f:40:ea:39:4b:91:b7:71:23:47:
39:2e:7e:51:d9:79:2f:3d:93:00:af:b8:36:65:c1:9a:e0:a6:
c1:fa:dd:4b:c5:51:89:5d:0d:8c:a7:ba:a9:93:d3:37:bc:2a:
79:4a:a6:27:3d:2b:5f:2c:a3:a5:e9:81:22:44:ec:c6:30:44:
b5:96:cb:77:65:ae:64:8f:d0:c3:4f:4a:04:1f:f8:dd:16:b5:
20:17:46:38:a0:17:27:76:b4:25:53:d2:f8:8b:55:45:d7:ae:
44:5b:54:02:5a:eb:9c:5b:1e:35:b9:ca:f0:23:bb:86:ee:2f:
57:b1:8f:46:8f:90:fd:53:b5:f0:bc:b3:bf:5d:12:c3:3b:27:
43:52:1b:a8:42:64:9f:40:95:c8:71:13:2e:6b:1c:c6:10:2d:
d2:f3:3d:cc:85:c7:0d:89:30:71:6a:ec:b0:a8:4a:4b:3f:7b:
78:8f:73:e3:fd:c8:da:30:74:05:68:ea:33:8b:a0:0c:a8:b2:
cc:5d:86:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 17:35:51 2024 by rpki-client on console-ams.rpki-client.org