Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3139382e32362e302f32342d3234203d3e203633343733.roa
File: 3138352e3139382e32362e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: rTxHNEzrf+uC4dkzRrR8mYNpVfRUkXzcudXO73NbqWI=
Subject key identifier: FF:1D:19:D1:C9:7D:F8:AF:3D:B0:74:31:68:24:79:9C:AF:2E:D6:AC
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 6349876156F63A039E63B07938CD64B22E77E771
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3139382e32362e302f32342d3234203d3e203633343733.roa
Signing time: Mon 04 Dec 2023 09:35:02 +0000
ROA not before: Mon 04 Dec 2023 09:30:02 +0000
ROA not after: Mon 02 Dec 2024 09:35:02 +0000
asID: 63473
IP address blocks: 185.198.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 11:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:49:87:61:56:f6:3a:03:9e:63:b0:79:38:cd:64:b2:2e:77:e7:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Dec 4 09:30:02 2023 GMT
Not After : Dec 2 09:35:02 2024 GMT
Subject: CN=FF1D19D1C97DF8AF3DB074316824799CAF2ED6AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:95:e2:47:26:75:a2:56:76:33:33:4c:b3:f1:
60:10:35:57:c1:e7:ea:43:d0:58:b4:d7:92:1f:4a:
93:30:25:dd:e6:57:c5:44:9f:b6:23:d1:d6:77:21:
ac:84:f0:15:da:fa:30:07:cb:d8:5a:3a:b3:ed:5a:
28:59:ba:12:c0:eb:dd:e3:8c:25:79:78:64:87:37:
3a:59:0a:8c:75:ab:12:8b:2b:f5:a1:d3:b0:37:0b:
fb:41:58:db:80:d1:bd:aa:82:7e:39:f2:8e:79:d3:
26:54:92:bb:f9:c1:51:bf:e7:e0:7c:66:a7:dd:d4:
07:ea:38:26:f4:02:44:3e:8d:54:5b:6f:80:11:d2:
1c:0b:c3:f6:bb:12:f2:16:93:8f:d9:24:d1:3b:9f:
64:7d:ec:c5:ad:e9:83:0e:a0:ab:f4:9f:a6:a4:ad:
19:a3:a9:57:ae:e6:c0:5a:f6:d6:6e:ea:2b:ee:e7:
76:f8:82:f7:02:1a:f3:07:6d:54:62:0f:98:28:86:
77:db:ca:13:40:8b:ea:8f:07:61:9c:f2:78:4a:a4:
a2:e5:78:69:e6:de:ff:60:e4:93:5a:3d:89:cb:09:
2e:37:2f:05:da:0e:6f:ab:d1:eb:26:2c:14:84:df:
78:43:f4:2f:0b:45:87:35:6a:dd:6b:42:54:82:57:
37:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:1D:19:D1:C9:7D:F8:AF:3D:B0:74:31:68:24:79:9C:AF:2E:D6:AC
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3139382e32362e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.26.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:50:04:38:8f:71:74:46:b6:dc:70:65:55:2c:55:58:7e:36:
be:ce:db:01:81:33:9c:e3:34:61:d7:af:42:a4:df:dd:49:e0:
45:b5:fe:4c:cb:63:28:a0:69:d0:c2:e9:14:43:ee:8e:c8:3e:
4f:01:c7:bc:aa:5a:46:4e:70:c3:8f:f2:cc:95:b7:f8:07:a2:
54:22:30:dd:9b:fe:8d:66:dd:95:46:8e:49:f3:91:5c:4b:9a:
96:79:f9:5f:a0:4d:8a:30:e6:51:19:fa:58:0d:1e:0f:47:33:
9e:93:43:e9:7d:e6:b8:77:80:bd:47:47:10:63:37:40:d0:35:
3a:94:92:49:96:d4:95:b7:3d:e0:ef:12:6f:7f:60:7e:23:2f:
fb:33:ab:65:0c:cd:02:98:44:d9:59:34:0a:c2:96:55:53:61:
07:f8:c4:bc:99:a5:3e:55:45:4e:00:cd:2a:7e:d2:d2:9b:9d:
14:97:2a:fd:e4:2d:e7:87:91:cb:56:b0:22:12:23:4f:ec:31:
3f:5d:80:7d:b5:a5:fd:a3:ed:ab:43:38:45:14:08:9e:bf:c7:
89:61:7f:9c:95:76:b7:57:a8:7e:8d:28:5c:89:0d:31:f1:30:
91:39:0f:91:a5:c0:af:79:54:d4:da:56:2c:ba:08:5b:d3:db:
5e:4a:7c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 18:12:36 2024 by rpki-client on console-fra.rpki-client.org