Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3138332e3138322e302f32342d3234203d3e203333313832.roa
File: 3138352e3138332e3138322e302f32342d3234203d3e203333313832.roa (raw, json)
Hash identifier: 42TDg7PXXYtdRlGppWdrcPTzhforFdsNvomwksYBgCA=
Subject key identifier: 85:85:20:63:E0:12:14:2A:76:AA:A7:02:08:55:74:94:5B:CC:C8:E5
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 6F4D94F27C4FC72BB4764974F671D76ECC28FA93
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3138332e3138322e302f32342d3234203d3e203333313832.roa
Signing time: Mon 07 Oct 2024 15:34:52 +0000
ROA not before: Mon 07 Oct 2024 15:29:52 +0000
ROA not after: Mon 06 Oct 2025 15:34:52 +0000
asID: 33182
IP address blocks: 185.183.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:4d:94:f2:7c:4f:c7:2b:b4:76:49:74:f6:71:d7:6e:cc:28:fa:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Oct 7 15:29:52 2024 GMT
Not After : Oct 6 15:34:52 2025 GMT
Subject: CN=85852063E012142A76AAA702085574945BCCC8E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:da:73:53:5f:83:2d:f9:1b:bc:4e:66:ff:f6:
ab:b7:1a:01:e0:74:27:93:64:61:74:6f:65:23:3c:
59:7f:d9:6b:5d:b6:c9:65:cf:dd:59:e8:c9:b5:b2:
05:57:b4:27:84:4e:2b:6d:c5:19:30:95:45:82:98:
16:b4:3e:65:63:4b:d5:98:cc:7d:ab:53:81:6e:a3:
95:b8:2e:13:a4:a7:ef:9a:10:5f:6f:36:a6:06:83:
3f:60:32:11:eb:bf:61:82:a2:33:c3:f6:c6:90:1a:
3f:a8:82:17:4b:e7:e6:ab:37:d4:9c:5d:6d:69:a2:
0d:bf:9f:40:35:fa:f4:c4:88:8b:6c:d0:01:3d:6b:
37:e1:e7:2d:57:7a:dd:8b:dd:81:d6:82:1b:b0:b6:
c2:6c:f1:2e:48:83:94:db:3b:36:a5:3a:27:66:f3:
04:ff:d2:50:28:f5:09:4f:d5:1c:21:16:38:d1:18:
b5:e2:86:7d:1d:3d:e2:a3:16:7a:8a:0f:b5:cd:56:
74:30:94:a8:ff:39:36:8b:fb:2c:cf:8b:07:2a:14:
72:b5:e0:a2:f9:8b:f4:24:56:39:56:6d:1c:c8:60:
57:fc:9a:a3:a2:df:64:46:07:ee:04:de:65:b1:66:
38:2d:23:11:51:a1:2f:21:cc:04:72:2f:d1:a0:e9:
bd:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:85:20:63:E0:12:14:2A:76:AA:A7:02:08:55:74:94:5B:CC:C8:E5
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3138332e3138322e302f32342d3234203d3e203333313832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.183.182.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:a3:d9:43:52:28:8f:4b:0c:f5:a3:88:fd:bd:9f:9f:28:9d:
2b:0d:dc:09:01:76:bd:24:1a:85:fb:a5:c3:76:2c:79:c1:67:
06:22:87:8a:ec:56:2a:75:f4:8e:2e:c8:c4:01:fc:b8:d2:e8:
92:0c:5f:cb:9f:04:33:1e:bc:2c:b8:79:4e:22:e9:68:ae:46:
bc:5e:db:2f:c1:fb:d1:e8:6c:43:ec:d1:a3:a4:f2:c2:9c:c6:
98:37:68:6e:75:04:ac:33:8b:a2:c8:b2:34:80:59:5f:99:b7:
ee:f3:82:3b:6f:5a:72:4d:f7:57:11:49:d6:b1:5b:df:92:74:
9e:c2:80:6b:72:f9:4c:08:d2:c4:a7:09:05:36:5f:44:9a:5b:
e1:67:f3:40:fd:62:95:d2:cb:30:93:cc:ce:c1:a6:51:19:79:
b9:54:ec:72:50:e2:e0:9e:2f:1f:24:1f:0a:e9:0c:f3:cf:62:
ff:69:f4:d3:b2:08:50:fc:08:5e:0a:9e:84:a6:40:0f:51:4b:
3f:07:df:fb:d9:c8:5e:4d:5e:0a:de:ed:bb:7d:01:8f:ec:da:
8e:9c:48:2f:04:09:46:c6:ed:f7:3c:f0:f4:1c:ed:8d:c3:b5:
bb:93:48:19:29:ce:3a:9a:05:7c:c5:a1:37:5f:9c:2c:98:42:
8d:82:51:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:44 2024 by rpki-client on console-ams.rpki-client.org