Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3232302e32322e302f32342d3234203d3e203437353833.roa
File: 3138352e3232302e32322e302f32342d3234203d3e203437353833.roa (raw, json)
Hash identifier: AZYVEy9YbPcQWCGQ9r2jbDbF/DIpPaaeSm1oj5hxwS0=
Subject key identifier: 6A:EF:03:64:79:2A:EB:24:29:12:A3:ED:4D:B7:3B:56:35:9E:AF:05
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 4AF94C1A367C9F2CC2A7FDB2E5129D371E274B93
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3232302e32322e302f32342d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:53:34 +0000
ROA not before: Mon 26 Feb 2024 08:48:34 +0000
ROA not after: Mon 24 Feb 2025 08:53:34 +0000
asID: 47583
IP address blocks: 185.220.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:f9:4c:1a:36:7c:9f:2c:c2:a7:fd:b2:e5:12:9d:37:1e:27:4b:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Feb 26 08:48:34 2024 GMT
Not After : Feb 24 08:53:34 2025 GMT
Subject: CN=6AEF0364792AEB242912A3ED4DB73B56359EAF05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:c1:f0:e2:25:d1:23:77:5c:d7:35:55:71:d8:
07:53:c5:40:a4:fa:0f:d1:92:ef:f4:9b:dc:8e:d3:
1f:6d:c9:2c:86:72:8b:55:b3:10:ff:69:28:72:70:
1d:64:b4:6d:8b:39:38:dd:e7:c1:24:b5:a4:3b:3f:
36:57:67:06:09:4e:a7:46:c6:6c:2a:50:7a:d8:3e:
86:e7:9a:af:33:bd:02:8c:a6:6d:bf:cb:ff:a1:91:
12:f6:bb:a2:0b:a7:6c:ab:d6:10:98:ba:f6:e7:2a:
80:7c:73:5e:f7:70:32:3d:b8:f0:68:85:30:e4:1e:
a8:b7:dc:e1:3e:e6:7a:84:74:a1:d2:39:a5:0c:39:
36:7a:6b:ea:02:95:79:de:45:b9:d3:3b:a6:1c:a0:
68:83:4a:a7:c9:d4:c3:f0:e3:2b:34:f2:c3:3d:24:
3d:b3:8f:ee:b6:8e:d0:8f:39:45:a8:57:1d:81:26:
ef:4f:32:68:4b:5b:2d:44:e4:5d:85:7d:34:5e:b6:
5c:6c:84:23:2b:ee:1e:c4:8f:e5:2a:02:01:f2:dd:
93:e6:17:f1:19:3a:6c:f9:f3:94:a5:ae:5b:67:5e:
f6:39:ce:52:cc:3a:c6:47:da:f2:19:66:d7:81:55:
30:da:56:54:53:1e:6b:8e:73:cf:59:11:a8:ad:14:
c3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:EF:03:64:79:2A:EB:24:29:12:A3:ED:4D:B7:3B:56:35:9E:AF:05
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3232302e32322e302f32342d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.22.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:5e:1f:98:b8:66:a2:19:b3:0e:53:3d:e3:2e:42:a3:27:e4:
c9:9d:34:53:2e:3a:6b:86:5d:c2:44:43:d3:c5:e2:28:b7:58:
15:10:e4:f7:23:03:46:e6:f0:ba:0f:31:16:cd:d8:20:11:36:
0e:78:78:61:cb:55:d2:fd:7a:d1:9f:d5:9d:28:4b:f8:af:39:
09:ed:e6:1b:b7:92:de:8f:85:e9:91:08:59:ad:9d:53:e1:28:
e4:26:a1:ac:2d:5e:53:2c:bc:6b:48:e3:d6:e9:ab:61:93:e1:
ba:19:64:23:7c:2b:61:10:6a:8b:c7:42:b7:21:d5:97:f8:b2:
f2:26:02:c7:87:93:e2:5e:11:7a:72:ff:77:1b:c9:91:59:04:
ed:69:54:02:31:41:f2:c4:30:ea:d3:69:bc:8e:1b:96:46:a9:
55:41:7c:b7:e6:40:08:91:ee:1d:bc:0b:96:fb:f8:81:5f:b1:
b5:b7:0d:a5:ba:25:5f:15:23:25:a3:0f:ed:9a:49:66:c9:93:
93:d4:0d:32:4e:dc:5a:0a:7b:f8:3b:90:d6:2c:fd:78:9f:16:
66:b5:11:e2:73:a1:d4:51:51:3d:fa:d5:c5:04:52:e1:3b:d1:
dd:3d:e0:80:9e:1b:00:6b:c0:e1:81:2f:20:99:ce:7c:77:41:
d6:7f:11:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:44 2024 by rpki-client on console-ams.rpki-client.org