Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231362e3233312e302f32342d3234203d3e20313437303439.roa
File: 3138352e3231362e3233312e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: 8I0dCEcuQmanfiFPgVrXuAZRZ1k7xcPQxsT2L4bjMu0=
Subject key identifier: FF:48:3C:3F:CA:96:50:57:E4:33:3D:41:AC:36:9F:55:3B:4A:12:21
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 5911EC5D692F152042C9F862C415BF16B0BBF719
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231362e3233312e302f32342d3234203d3e20313437303439.roa
Signing time: Tue 22 Aug 2023 20:59:18 +0000
ROA not before: Tue 22 Aug 2023 20:54:18 +0000
ROA not after: Tue 20 Aug 2024 20:59:18 +0000
asID: 147049
IP address blocks: 185.216.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 19:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:11:ec:5d:69:2f:15:20:42:c9:f8:62:c4:15:bf:16:b0:bb:f7:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Aug 22 20:54:18 2023 GMT
Not After : Aug 20 20:59:18 2024 GMT
Subject: CN=FF483C3FCA965057E4333D41AC369F553B4A1221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a9:1d:e9:bb:1b:fc:08:d8:aa:82:bd:fc:f5:
2c:24:c6:0d:02:f8:23:ff:9c:16:e4:9d:23:9c:f6:
5c:c9:45:aa:7e:b9:05:21:b3:42:07:0c:05:5e:88:
ff:81:fc:33:ac:4f:4c:74:41:41:77:73:39:43:1d:
67:7c:21:a2:2c:35:cd:fc:45:de:18:2c:36:f1:c5:
e9:b5:66:db:90:dc:f3:70:ee:75:6a:2f:a2:63:92:
81:49:d6:4b:e4:ae:0d:69:8e:eb:e4:c8:b9:fa:02:
88:ec:6f:8e:a4:f8:34:94:ef:13:f0:f2:2e:81:0d:
10:3a:d6:d1:87:f9:d5:bf:71:99:1f:a0:8c:1e:50:
33:33:02:24:96:91:e5:e4:30:02:11:59:97:b3:0b:
28:91:d5:b3:65:f1:5d:87:82:dd:06:d7:9a:9b:6e:
2e:db:2f:3b:2c:e9:e2:2c:95:d7:4b:fc:8f:dd:7f:
1a:0a:9d:1e:94:c0:34:96:8a:78:dd:47:20:98:2e:
1f:ef:7e:98:e6:e7:88:90:84:a5:5f:e3:29:1c:d7:
be:f1:4f:93:e7:b1:92:c3:83:17:b2:82:e7:75:18:
79:53:18:48:c3:c0:4e:a2:f9:df:5b:85:81:54:3c:
1d:a1:a7:94:d3:60:c7:e4:58:04:7e:46:78:89:c2:
cd:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:48:3C:3F:CA:96:50:57:E4:33:3D:41:AC:36:9F:55:3B:4A:12:21
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231362e3233312e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.231.0/24
Signature Algorithm: sha256WithRSAEncryption
02:c8:d3:77:dc:f1:40:05:85:79:98:13:31:1a:df:8f:68:11:
c2:10:15:af:cb:57:7a:2b:06:67:20:13:2f:60:a5:d3:c9:42:
ab:77:88:4f:9c:c7:f7:a3:19:cd:53:2f:65:c5:94:ef:c3:e0:
51:f0:85:5d:67:15:d4:bb:32:64:e8:aa:fa:94:45:fb:d2:e8:
0d:f6:f5:be:f3:44:e1:1b:e8:db:fa:31:8c:a8:49:e1:bc:98:
f7:f7:7b:96:6b:f9:1d:9d:be:49:9d:81:1a:c2:75:a9:c2:0c:
93:89:58:df:ea:ef:7c:3c:02:f0:8a:74:5f:d7:e8:cb:64:d5:
7b:9c:bb:de:3e:3c:3a:76:bb:e7:94:51:23:ef:38:4d:41:35:
9c:7c:a1:67:ef:5c:63:07:b0:7c:4d:62:11:c3:62:6a:71:4b:
89:4f:4e:e5:36:9f:06:9a:55:e3:71:b3:8b:33:de:fc:ae:a7:
ef:56:57:32:2f:e6:65:e6:21:a5:7a:9d:ce:90:88:e9:98:b3:
5c:d7:aa:23:04:b4:51:5c:5b:e9:ac:52:ff:d0:fd:c8:46:7b:
7b:c1:ae:50:5f:68:d9:8b:62:5d:ea:a8:05:dc:96:5b:49:3b:
25:d1:ce:6a:7b:19:58:66:7c:9f:2c:05:61:32:69:cb:4c:4b:
de:23:72:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 00:32:14 2024 by rpki-client on console-ams.rpki-client.org