Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3230352e31322e302f32342d3234203d3e20313336373837.roa
File: 3138352e3230352e31322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: SasOQtQ6An3EU0KUNLrg74AuINGpdtMFvF98DAV3C+U=
Subject key identifier: 5C:3B:15:AC:A4:1C:63:F1:79:63:F6:EC:48:9D:94:3F:8A:6E:8D:89
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 0113E40AD20EA5FC6F6E66DB30CC086708B078A4
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3230352e31322e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 19 Mar 2024 10:16:32 +0000
ROA not before: Tue 19 Mar 2024 10:11:32 +0000
ROA not after: Tue 18 Mar 2025 10:16:32 +0000
asID: 136787
IP address blocks: 185.205.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:13:e4:0a:d2:0e:a5:fc:6f:6e:66:db:30:cc:08:67:08:b0:78:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Mar 19 10:11:32 2024 GMT
Not After : Mar 18 10:16:32 2025 GMT
Subject: CN=5C3B15ACA41C63F17963F6EC489D943F8A6E8D89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e2:72:af:86:e7:d1:ee:58:8a:59:55:30:56:
ea:fd:69:f5:b6:41:0f:68:5d:73:23:ad:33:37:ee:
b8:df:4d:77:6e:a9:97:e3:88:cc:bc:5b:d5:87:2a:
29:b6:2a:38:d9:2a:c6:f5:17:16:e4:8e:1d:10:7d:
0e:a5:74:e5:a7:c3:9f:f3:d4:8f:46:b5:bd:b5:dd:
59:30:78:2c:36:59:e8:41:15:42:bd:e3:49:c8:d6:
af:fc:62:20:53:02:9f:47:27:3d:a1:8f:dc:ec:74:
4a:74:24:cf:2f:df:df:1e:fc:13:b0:7a:71:eb:ca:
c0:bb:d5:fe:96:36:ac:25:6e:37:9b:4d:eb:e1:a8:
62:01:10:5b:f2:64:13:fd:70:43:20:85:69:d5:c4:
14:90:67:28:eb:22:da:24:9d:5d:de:f2:47:13:bb:
05:49:36:7d:b7:23:26:9c:d1:19:bf:b6:eb:f6:ca:
e2:88:bb:02:29:ad:1b:d0:14:30:e7:23:47:07:55:
38:c0:0f:45:a3:94:4e:87:5f:87:0c:10:fe:da:33:
cc:33:5e:3e:ea:50:3d:1d:2b:89:a6:8a:c8:4f:08:
db:b5:6a:d6:4c:fe:ef:37:c9:9b:31:69:8a:92:5e:
38:f3:40:45:3a:d7:83:78:c8:12:bd:f3:cb:92:9b:
0c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:3B:15:AC:A4:1C:63:F1:79:63:F6:EC:48:9D:94:3F:8A:6E:8D:89
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3230352e31322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.12.0/24
Signature Algorithm: sha256WithRSAEncryption
32:3f:ec:cc:84:1d:6f:1e:e5:c9:d2:52:13:52:61:f3:da:d3:
66:9c:5d:dd:46:f4:26:64:94:70:b8:a1:48:73:3d:e1:94:3d:
08:06:5a:9c:d7:3b:da:c8:8a:0a:55:36:fe:af:98:04:d8:0f:
9d:08:01:e8:a3:74:4e:5f:5a:14:28:11:51:d6:9e:02:14:4a:
a8:a6:a6:8b:c3:c1:87:ef:82:ad:a8:8a:fd:18:f1:f6:da:b4:
b7:2d:13:85:e4:41:17:53:fb:24:94:fc:7a:e0:0b:50:5e:28:
19:d3:8c:ef:87:fe:04:d8:4b:83:52:d5:f7:3b:d5:72:a0:c7:
42:e6:0f:59:f2:e3:82:45:03:92:55:83:8d:42:a7:29:4c:3f:
a7:0b:27:5f:99:c1:9e:76:b1:4a:fc:ba:52:3c:71:f9:e5:fa:
cd:95:cd:e7:99:70:b8:40:b1:3b:37:24:74:d7:c7:47:48:11:
12:cb:5b:ae:cc:f3:bb:99:b5:bc:72:56:8e:f1:49:3c:f3:cb:
dd:81:aa:2b:59:71:7e:bb:c7:e6:a7:45:2a:89:49:ea:a6:b3:
49:5a:c8:30:64:6c:c5:1a:ef:61:52:33:6f:eb:d4:e8:6f:bd:
a2:0e:6d:ac:c3:56:d7:44:10:e2:47:7b:d4:b1:80:f7:09:96:
e9:9c:6a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:54:23 2024 by rpki-client on console-fra.rpki-client.org