Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231332e32342e302f32342d3234203d3e203633343733.roa
File: 3138352e3231332e32342e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: FFlIhtg3BA+Ej/LS5GWi+Zct0pxHqC4JMFqBiTT8kz4=
Subject key identifier: C9:5C:60:F3:3F:0C:C6:07:8E:E5:6E:4A:20:33:3F:9D:CD:82:58:37
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 3C86045F51D9E1487A3C5ED2F38F20C95D0F5609
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231332e32342e302f32342d3234203d3e203633343733.roa
Signing time: Sun 20 Aug 2023 07:15:56 +0000
ROA not before: Sun 20 Aug 2023 07:10:56 +0000
ROA not after: Sun 18 Aug 2024 07:15:56 +0000
asID: 63473
IP address blocks: 185.213.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 11:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:86:04:5f:51:d9:e1:48:7a:3c:5e:d2:f3:8f:20:c9:5d:0f:56:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Aug 20 07:10:56 2023 GMT
Not After : Aug 18 07:15:56 2024 GMT
Subject: CN=C95C60F33F0CC6078EE56E4A20333F9DCD825837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b0:8b:ab:d1:f7:07:d0:57:79:ea:b9:80:af:
7d:ad:ea:8d:b8:35:13:7a:92:9e:c1:3b:29:d3:fa:
08:9b:36:6a:f4:be:fa:2e:c6:41:0a:51:d2:f3:26:
ef:7b:1f:97:64:80:0e:6a:f0:75:f9:73:4c:f2:ad:
da:86:ef:be:2c:60:38:8f:ab:a8:a7:80:d7:29:b3:
8d:f6:9e:55:9e:e5:70:68:af:01:68:85:f8:35:47:
27:90:2e:76:fc:d9:9a:c1:b9:2d:c3:ec:4d:31:8c:
86:48:5d:5e:2b:49:43:cc:82:1c:a0:55:40:6b:55:
fe:a9:64:5a:3f:d1:15:55:b2:18:25:e0:4c:82:2d:
d8:a0:b9:0c:2d:8e:da:c2:69:6a:63:5e:e9:c9:9d:
7a:aa:6b:04:35:10:98:eb:11:00:01:fc:07:44:30:
f8:0f:60:3f:f8:9a:53:71:31:0b:ad:b6:ab:d7:4e:
ad:3e:b3:e6:a3:44:0a:31:51:2e:d4:c3:92:d4:24:
8c:da:dc:03:fa:8b:ef:dd:67:a4:d6:41:1b:43:24:
fc:c3:fc:e4:fa:f7:24:8a:12:6f:99:8b:29:f7:42:
80:2d:e4:3e:50:d0:38:fb:f8:61:63:15:42:9b:09:
96:32:1b:64:17:10:ac:90:2e:19:34:3f:25:7f:2e:
e3:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:5C:60:F3:3F:0C:C6:07:8E:E5:6E:4A:20:33:3F:9D:CD:82:58:37
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231332e32342e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.24.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:28:05:8e:51:0b:b6:13:ef:b5:90:9f:db:9e:80:25:ae:81:
9c:9f:99:b7:d8:61:09:1c:c1:be:da:21:5d:65:98:84:98:18:
a4:77:1d:ba:af:e3:ff:c4:3d:cd:d9:57:a4:b3:e7:c4:d7:e3:
66:6c:df:1f:44:2c:39:ef:43:44:43:f3:6f:94:db:e0:09:6d:
48:8b:2a:c6:c5:f9:2c:bc:40:f2:62:a0:38:17:fc:18:55:0b:
9a:19:5f:5b:cc:4d:cd:82:d1:a9:d7:5a:6e:5b:bd:e9:0d:88:
99:58:95:d3:c2:b0:3d:39:83:0b:25:3a:4b:4e:7d:13:69:83:
04:57:33:68:6f:97:97:57:27:83:ce:6f:14:68:40:76:8d:3c:
9e:18:b4:f9:5e:d1:6b:13:16:bc:09:d2:92:57:0a:c4:84:ae:
84:97:94:d9:77:e7:83:57:44:0e:f8:2e:c9:9f:28:24:a4:6f:
25:e8:7b:66:23:42:ad:71:0a:9e:26:20:76:e7:c6:2d:ba:1b:
3e:ec:a5:9a:cd:12:0b:d5:60:ff:94:d8:f5:6d:ed:3a:5e:02:
91:3c:1c:81:e0:bf:6c:a3:ed:76:41:3e:42:72:10:6c:05:24:
ee:57:10:73:b0:ef:5b:10:de:b0:81:82:be:66:76:ca:01:cd:
03:3d:53:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 19:16:41 2024 by rpki-client on console-ams.rpki-client.org