Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3139362e32302e302f32342d3332203d3e203531313637.roa
File: 3138352e3139362e32302e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: N4Dc/9eBbbvC5OzV7uxgPzhzqm0BKH4joc06SdevFa8=
Subject key identifier: 47:24:97:D6:27:C2:43:61:2E:60:7B:E3:E8:95:DE:06:8B:67:55:C8
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 28E4AF968D5E7DE7EC19C444EBB0EA7D93F80ED3
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3139362e32302e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:53:37 +0000
ROA not before: Mon 26 Feb 2024 08:48:37 +0000
ROA not after: Mon 24 Feb 2025 08:53:37 +0000
asID: 51167
IP address blocks: 185.196.20.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:e4:af:96:8d:5e:7d:e7:ec:19:c4:44:eb:b0:ea:7d:93:f8:0e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Feb 26 08:48:37 2024 GMT
Not After : Feb 24 08:53:37 2025 GMT
Subject: CN=472497D627C243612E607BE3E895DE068B6755C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e6:d3:c2:d8:df:25:17:91:bd:45:22:9b:72:
76:f3:3f:3f:64:31:e0:f7:5e:8d:86:cc:f3:e7:24:
d1:b6:be:fb:bf:bb:1a:49:f0:e2:3f:db:c2:e3:91:
c3:db:51:8c:a4:07:4a:4a:ac:8e:94:14:14:05:23:
4f:d4:f4:d7:d4:26:c0:4b:b0:4c:c5:b8:ce:b4:a7:
bd:4d:ee:77:73:29:02:84:98:0f:e0:34:b4:6a:91:
ea:83:3e:5f:7f:45:ba:c7:ab:36:2d:e5:75:fc:50:
78:cd:8d:61:3a:2f:d6:20:e3:af:d5:e1:a3:b9:38:
1e:05:48:a6:e1:c1:47:a5:ad:62:bb:94:87:f6:fc:
1c:83:6c:b3:cb:b9:8e:3b:cd:a5:40:33:e7:b6:56:
d3:74:7f:f8:24:d5:dd:17:d1:2b:ca:f9:cc:97:51:
bd:e2:be:5a:7e:ea:ad:e6:cd:87:0f:cd:cb:fb:df:
4a:cd:b1:7e:45:86:e9:75:33:84:9a:6b:16:00:fd:
02:9d:ea:3e:2d:1f:39:5e:49:66:6a:9d:88:1f:0e:
27:a8:00:79:1f:05:a9:4e:7c:c9:24:4d:0c:42:c1:
fb:48:d7:e0:e7:f1:ab:76:ef:53:f3:a7:ba:b3:34:
06:ee:b4:32:b1:7c:6c:a8:21:f4:59:48:45:9a:2a:
6b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:24:97:D6:27:C2:43:61:2E:60:7B:E3:E8:95:DE:06:8B:67:55:C8
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3139362e32302e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.20.0/24
Signature Algorithm: sha256WithRSAEncryption
46:8b:03:72:af:87:c7:dc:7d:36:b9:eb:1e:49:8d:20:47:30:
58:3a:07:8e:7f:1a:f0:88:34:3c:e2:95:51:9e:09:89:32:8a:
46:4e:78:60:cd:74:25:ae:66:44:bb:46:65:cf:61:d2:78:de:
97:76:8e:a6:3f:13:cf:98:cf:60:8d:1d:16:1b:0b:58:6b:ee:
7e:1f:d6:75:d8:d4:35:2f:16:40:95:1e:73:25:fd:52:e0:02:
86:ae:b5:43:8e:52:e2:65:8a:2d:ae:2a:06:ac:02:11:d7:33:
ec:1e:78:69:ad:3b:49:00:55:5c:d8:0c:06:70:27:b1:e8:ed:
f4:cc:5f:7c:ec:c0:32:61:7e:3a:23:e6:d4:14:2e:30:fb:87:
d3:43:c8:8e:d5:43:37:99:3b:87:09:c2:0c:a9:a9:23:53:e5:
ce:94:b7:a5:38:b0:24:e4:4d:68:9d:77:46:ac:73:40:3a:04:
d2:63:9b:cb:4b:71:27:e7:0d:8c:98:6b:f3:5c:16:71:b6:f0:
ec:96:91:df:fa:20:0a:ab:b5:46:b3:3e:24:77:dc:2a:96:17:
a9:04:23:ea:be:84:36:de:54:d7:90:26:59:1f:be:31:dc:4c:
a4:f2:87:a7:f9:aa:52:12:0d:c8:65:e9:63:e5:58:9e:da:aa:
61:97:6c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:44 2024 by rpki-client on console-ams.rpki-client.org