Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3139362e32322e302f32342d3332203d3e20313336373837.roa
File: 3138352e3139362e32322e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: iTJq+B2Kgv3cpMmNMQMjI8Pw/DrtmjGO7/y/cEV3JQI=
Subject key identifier: E0:51:46:B4:E0:91:B9:A4:0A:53:13:28:D5:7F:92:E2:F3:D9:3B:46
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 22C32C4EDD422E0D925E0623F724F00B4F72E059
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3139362e32322e302f32342d3332203d3e20313336373837.roa
Signing time: Mon 26 Feb 2024 08:53:35 +0000
ROA not before: Mon 26 Feb 2024 08:48:35 +0000
ROA not after: Mon 24 Feb 2025 08:53:35 +0000
asID: 136787
IP address blocks: 185.196.22.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:c3:2c:4e:dd:42:2e:0d:92:5e:06:23:f7:24:f0:0b:4f:72:e0:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Feb 26 08:48:35 2024 GMT
Not After : Feb 24 08:53:35 2025 GMT
Subject: CN=E05146B4E091B9A40A531328D57F92E2F3D93B46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:13:90:1e:72:fb:bc:e1:65:c1:86:98:16:33:
3f:dc:e2:73:e2:a6:30:b0:04:aa:c1:a6:12:5a:66:
95:6c:d2:ab:96:f3:2a:36:23:f1:2e:af:98:fb:80:
9c:d0:b9:fe:d7:cd:f5:00:27:28:0d:94:b2:c0:03:
36:97:69:28:07:58:75:c6:9d:28:d3:f2:51:53:5a:
87:26:18:32:3e:b7:ad:ab:61:99:77:fc:93:69:9b:
ba:90:4b:07:c4:99:99:91:27:ce:7c:9b:40:d3:cc:
66:9c:6c:a8:75:da:ef:d1:2f:40:09:30:d9:c3:e4:
81:c1:1f:50:99:03:c4:e5:b0:ed:6d:e4:39:32:33:
51:58:c4:da:91:14:c1:e4:85:f7:c0:b4:69:b8:cb:
e3:8c:a5:08:68:dc:29:39:41:39:53:45:8e:e1:39:
c8:8a:88:02:4b:a6:d3:47:80:6f:52:e4:84:1b:9a:
80:d7:b4:54:cc:5b:0c:dc:fc:65:3a:1e:f1:66:bf:
2a:91:2a:27:33:b0:b3:04:49:bf:72:13:4e:54:ba:
a4:69:ea:e0:88:2a:70:15:c4:02:e3:8b:8f:b8:6c:
52:ed:24:1c:1c:89:6f:eb:20:61:7e:08:f1:b4:38:
83:cf:38:80:7b:d4:69:22:c0:15:dc:78:f0:e8:47:
1e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:51:46:B4:E0:91:B9:A4:0A:53:13:28:D5:7F:92:E2:F3:D9:3B:46
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3139362e32322e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.22.0/24
Signature Algorithm: sha256WithRSAEncryption
25:1d:47:88:a9:54:ca:35:90:aa:e4:9c:f9:79:17:a9:c7:bf:
65:87:f1:da:dc:bb:4c:01:8b:75:b9:2d:45:9e:68:d7:46:43:
07:3e:be:60:ce:72:22:fc:93:ca:06:58:45:57:9d:f8:d8:43:
9b:35:35:f0:09:79:a4:7b:4a:0b:4b:19:11:13:eb:98:87:2b:
82:d8:2c:c4:e5:28:e0:ee:f6:5a:ec:e7:de:16:fe:22:28:b3:
ce:ff:06:ce:b8:71:fe:7f:60:80:81:f3:70:f4:ae:f8:84:fa:
5b:ea:6f:b7:70:a2:dc:4f:b9:e5:02:4d:58:5b:19:b7:67:e8:
31:a7:b9:9d:1f:17:5c:0e:78:16:70:2a:96:53:09:27:c6:1d:
e9:6e:c1:89:33:77:ea:21:fc:db:4e:a7:d7:48:ce:28:19:28:
0f:68:a4:dd:65:73:46:ec:43:db:df:6f:5c:1e:f8:17:6c:6d:
95:38:41:a1:86:89:f7:31:d5:29:37:79:ca:dc:d8:2a:ec:91:
28:cd:c6:d4:48:56:59:20:59:22:18:8b:6b:c5:bd:68:ef:71:
ae:fc:ab:40:9e:b3:f8:8a:bf:ff:e1:c9:55:8f:c9:9c:e7:1c:
12:6f:1b:19:70:7c:13:f3:a0:b6:80:46:11:14:7f:21:bb:3d:
3e:fc:8b:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 04:40:31 2024 by rpki-client on console-ams.rpki-client.org