Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3137352e35392e302f32342d3234203d3e203633343733.roa
File: 3138352e3137352e35392e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: /o3307nRGccDh/qmLuJUyZ42rBy/qIGggaIJhdkmPUs=
Subject key identifier: 19:E3:FE:95:3A:F7:9E:0C:7F:B8:62:BC:0F:4D:E1:8A:CE:C9:C6:2F
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 2AC3467A264AC3D054DBE545902BA7FCCD904002
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3137352e35392e302f32342d3234203d3e203633343733.roa
Signing time: Wed 29 Nov 2023 13:50:58 +0000
ROA not before: Wed 29 Nov 2023 13:45:58 +0000
ROA not after: Wed 27 Nov 2024 13:50:58 +0000
asID: 63473
IP address blocks: 185.175.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 May 2024 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:c3:46:7a:26:4a:c3:d0:54:db:e5:45:90:2b:a7:fc:cd:90:40:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Nov 29 13:45:58 2023 GMT
Not After : Nov 27 13:50:58 2024 GMT
Subject: CN=19E3FE953AF79E0C7FB862BC0F4DE18ACEC9C62F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5a:62:23:4e:89:c8:cf:71:45:0a:8d:a0:b3:
99:76:a1:0f:20:01:97:41:4a:72:7d:0d:22:ee:1f:
ea:f2:36:ec:f1:7b:bb:36:6a:3a:1b:05:a3:4b:75:
d4:c9:3c:65:14:97:f5:84:8c:2d:54:93:a1:f1:57:
ec:d9:84:5f:4f:21:2d:92:6f:03:f4:2a:e4:e6:4e:
cd:1b:ad:e3:e7:fa:d3:4b:3b:48:37:15:77:e0:59:
e5:8c:00:e2:2a:55:20:61:39:6f:05:a3:d4:d7:c2:
5c:ed:c5:fd:b8:ad:3d:39:de:85:bb:05:b6:bd:e8:
2c:8c:8d:20:9c:e7:dc:8e:47:5a:4b:41:c8:e4:e0:
ec:df:9f:a6:e8:5b:48:42:41:f9:69:90:44:9c:24:
c6:46:5e:60:0f:70:e8:56:11:38:d9:29:54:53:aa:
27:c9:58:8f:86:21:58:ad:f6:00:3c:ce:45:fd:13:
a4:0d:6d:5b:29:a9:a5:73:74:b4:39:04:2a:62:7b:
d0:07:70:f4:86:3b:c9:4b:6b:af:21:ef:e0:86:ee:
6f:47:e8:00:1f:48:16:7e:53:01:0d:74:37:6b:a1:
f8:45:17:19:c8:52:e9:06:5f:8c:05:e5:d6:50:de:
16:0d:73:04:70:a2:72:35:7f:57:d0:63:da:71:d8:
fa:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:E3:FE:95:3A:F7:9E:0C:7F:B8:62:BC:0F:4D:E1:8A:CE:C9:C6:2F
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3137352e35392e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.59.0/24
Signature Algorithm: sha256WithRSAEncryption
60:d5:83:6b:bf:33:76:4c:bc:e4:ac:1e:42:3a:78:06:aa:aa:
1e:1c:38:b9:0d:1f:a6:c1:b3:79:c6:c7:5b:50:7d:de:d2:9b:
3c:16:90:5c:43:45:d7:9a:73:c3:93:92:ca:94:75:8b:40:ca:
bb:24:0a:6f:d6:d7:4e:ce:fa:21:d1:8f:fd:d3:0a:93:ab:41:
f6:7b:e7:63:da:d4:a0:14:83:1a:d9:fb:26:03:85:04:e7:1b:
7f:f4:5d:7d:9a:a4:ca:9f:ef:ef:53:a4:ee:50:26:f6:e2:7d:
f4:b1:f2:07:0c:b5:37:25:a0:0b:ad:0b:74:75:7e:ac:71:7c:
9a:75:17:a4:b9:9d:aa:33:b0:06:b2:47:ca:f9:01:35:a2:27:
b0:50:00:7f:3a:b2:dd:cb:af:2e:e0:07:24:88:16:b0:67:95:
cb:50:79:c5:b4:06:5f:05:86:d8:64:96:b3:46:8e:fb:0a:ea:
d5:1e:41:d5:d2:ec:20:6a:d7:7d:a1:9d:8e:f4:08:ec:88:8c:
49:b8:a5:7a:c3:2f:ab:6d:9c:ac:4d:39:f0:d1:21:cd:7f:2e:
5f:e4:67:43:53:3e:dd:4c:46:94:e3:bb:33:76:d7:fe:42:23:
f4:03:72:dd:f4:fe:67:eb:76:09:4f:a8:54:47:40:2d:1b:74:
ef:a1:8e:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 07:46:10 2024 by rpki-client on console-fra.rpki-client.org