Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3138352e3132372e302f32342d3234203d3e203439393831.roa
File: 3138352e3138352e3132372e302f32342d3234203d3e203439393831.roa (raw, json)
Hash identifier: qcu6BZ9UoNRtaVk2MisPzZYbPr3X4+UDmQ4BLylrBOw=
Subject key identifier: C9:EC:0D:E3:74:93:29:0C:EB:B3:6E:2F:EC:F8:CB:BC:61:E9:5B:B5
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 37A7FA1C8C3C4336D1CCA8C1E60D5ECAB017C63D
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3138352e3132372e302f32342d3234203d3e203439393831.roa
Signing time: Mon 07 Oct 2024 15:35:12 +0000
ROA not before: Mon 07 Oct 2024 15:30:12 +0000
ROA not after: Mon 06 Oct 2025 15:35:12 +0000
asID: 49981
IP address blocks: 185.185.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:a7:fa:1c:8c:3c:43:36:d1:cc:a8:c1:e6:0d:5e:ca:b0:17:c6:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Oct 7 15:30:12 2024 GMT
Not After : Oct 6 15:35:12 2025 GMT
Subject: CN=C9EC0DE37493290CEBB36E2FECF8CBBC61E95BB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c7:13:02:d4:86:56:78:52:b6:ae:76:96:9c:
72:74:9f:6b:8f:f8:08:79:53:61:e1:50:0d:4a:ad:
3c:81:91:05:f2:25:e0:da:ce:ae:21:a5:03:0d:13:
ee:df:15:fb:f2:5d:e2:b9:3e:9f:f7:56:1b:8f:9e:
a8:a4:6d:4d:23:59:dd:45:52:f4:98:07:8d:75:9d:
2f:45:dc:a8:ee:25:96:63:91:9e:65:33:10:e8:f3:
7e:bb:0e:cf:3d:da:1c:75:d5:22:68:42:53:eb:67:
61:cd:e5:11:3b:76:a5:af:6a:0f:af:70:f9:a7:4f:
ee:38:bd:ff:b4:9d:46:ed:3e:09:71:a6:4d:fe:73:
27:8b:2c:b6:6b:6a:c3:55:25:12:f2:fb:3d:90:e3:
5e:44:b1:40:5c:e1:27:e9:06:c4:cf:d4:97:f0:16:
de:de:52:ac:bd:73:d6:b6:51:a5:ce:22:7b:c3:4f:
41:56:85:46:43:b6:62:1b:49:d9:75:9b:a2:02:a7:
c9:35:d5:73:84:64:06:6e:63:6c:6d:a8:8d:c3:d0:
f7:ea:14:26:3a:d4:8b:f9:25:f4:3f:31:44:cb:5c:
2d:0b:96:e1:f1:97:22:0c:97:9b:ac:6e:c8:b8:fc:
2e:85:ca:71:98:52:ab:c0:62:2a:08:51:cb:8a:00:
7c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:EC:0D:E3:74:93:29:0C:EB:B3:6E:2F:EC:F8:CB:BC:61:E9:5B:B5
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3138352e3132372e302f32342d3234203d3e203439393831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.127.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:b4:37:ff:f2:1b:82:8a:ee:01:00:2b:98:19:2b:6b:95:04:
e5:9c:e9:55:b0:cc:3b:8d:72:b9:fb:0f:0b:7e:b6:ee:83:ca:
6e:6a:9b:56:da:e3:c7:cc:b5:af:7f:9d:73:06:dc:2f:9c:4b:
1f:0c:01:17:75:a0:10:23:cc:e5:f6:02:10:74:f1:aa:04:f5:
05:4e:17:e1:3a:81:c4:64:e3:9b:96:9e:a5:5f:16:30:ca:01:
bc:fc:ac:88:2a:13:60:37:89:50:ff:ab:6e:84:c4:25:8f:c3:
bb:90:3b:e6:f4:df:1e:ba:0d:d2:8a:6c:c2:f0:f4:90:99:45:
14:a4:59:fa:e4:11:20:cb:e7:8a:f9:55:ab:c5:fe:9f:35:bc:
68:dc:a2:1d:a5:1c:db:f7:4f:66:30:01:ec:46:c3:1b:bd:41:
1f:ef:22:a8:89:3a:80:dc:f5:11:3b:af:4a:5f:02:24:98:49:
8f:df:c6:38:e4:fd:85:20:c7:53:34:95:9d:42:c5:8b:5a:ce:
c1:11:db:41:f8:7b:fb:69:ce:67:35:f0:ad:2c:3a:25:6c:01:
93:76:e7:68:8a:42:23:0f:8d:ce:d8:35:bb:98:10:97:5f:80:
56:a1:89:3e:e7:e6:99:b9:00:e6:f3:85:a5:b8:6f:a9:c1:d1:
aa:32:74:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:14 2024 by rpki-client on console-fra.rpki-client.org