Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3233322e31352e302f32342d3234203d3e203432333636.roa
File: 3138352e3233322e31352e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: 3hq0FlegHS8P8/rQRjf/Gx+DSPLCGQTi7m1O1mO+Bbo=
Subject key identifier: 78:39:80:AF:E4:67:18:4B:E9:7D:77:5B:53:91:43:E1:E5:1C:CB:EC
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 4590B386C3D538B5E743F8FF17A27291A72C014B
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3233322e31352e302f32342d3234203d3e203432333636.roa
Signing time: Sun 07 Apr 2024 16:03:28 +0000
ROA not before: Sun 07 Apr 2024 15:58:28 +0000
ROA not after: Sun 06 Apr 2025 16:03:28 +0000
asID: 42366
IP address blocks: 185.232.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:90:b3:86:c3:d5:38:b5:e7:43:f8:ff:17:a2:72:91:a7:2c:01:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Apr 7 15:58:28 2024 GMT
Not After : Apr 6 16:03:28 2025 GMT
Subject: CN=783980AFE467184BE97D775B539143E1E51CCBEC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:3e:0c:ed:e6:bc:22:66:b7:46:e6:09:1d:7f:
1c:62:e5:53:3b:1d:07:a7:27:ed:63:1e:c4:d5:20:
e8:e7:1f:3f:80:72:21:e4:e7:94:53:0c:da:45:86:
f8:c4:eb:b5:30:38:ff:57:7f:04:0c:46:8d:01:6f:
a0:45:e9:f7:30:47:c6:03:7e:73:e6:a6:ad:23:72:
18:04:34:8c:84:95:29:66:bc:68:ac:27:b9:a0:c4:
6b:54:72:89:ce:12:83:81:46:4f:2f:c3:ec:7b:81:
81:f5:65:b2:b0:f0:01:35:81:0d:5e:ac:60:db:df:
10:2a:97:26:c0:ab:ac:85:0f:dd:f4:0c:b8:7a:be:
b3:be:de:80:b7:b9:b0:a9:bd:79:82:db:2b:68:8e:
19:c0:69:cf:b2:61:c3:42:9b:bc:3c:85:61:78:d0:
2b:2c:7a:9d:a0:aa:51:c2:9a:03:21:77:b2:b9:e6:
79:3a:25:aa:6f:5f:79:ae:9a:22:de:a6:7f:0c:a3:
bf:7b:4a:97:75:79:1c:cc:df:cd:2b:2b:5b:dc:77:
47:f2:cd:93:5d:6c:7d:a3:59:b6:f2:cb:3b:a8:30:
57:6f:b3:9d:d3:49:33:5a:c0:43:01:34:81:1b:13:
a6:c0:4f:b6:18:63:eb:de:a7:8c:eb:e9:5e:67:18:
c5:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:39:80:AF:E4:67:18:4B:E9:7D:77:5B:53:91:43:E1:E5:1C:CB:EC
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3233322e31352e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.15.0/24
Signature Algorithm: sha256WithRSAEncryption
63:0d:84:92:ca:f6:34:64:09:ce:26:45:b6:3d:82:54:73:24:
6c:5b:f3:2b:88:a3:ce:1f:34:55:15:86:7a:ea:85:29:2b:ce:
a4:66:78:ff:d9:a8:3e:89:6a:76:ef:d0:e0:52:2e:a4:87:89:
de:95:a6:2b:35:02:37:0e:e1:22:c5:83:c3:6b:ab:8d:d2:92:
f6:ea:90:80:c0:d3:3f:c6:51:20:7d:da:8f:d8:fb:a7:93:16:
29:0f:5e:6c:6a:3d:69:4b:aa:53:03:3d:8e:9e:1c:6e:f2:85:
54:83:60:45:ff:e9:83:1e:4b:e0:14:f9:20:d6:ed:b2:99:01:
5e:67:89:53:04:31:a1:2b:88:dc:fd:26:2e:ab:e5:5a:0a:5a:
11:33:f0:f1:bf:f7:6a:cf:12:31:d4:ca:85:18:e4:04:51:11:
30:5d:70:10:61:13:c1:30:13:a0:84:bb:74:a1:d4:fb:e8:4c:
9b:33:0c:e4:85:be:b7:5a:91:31:eb:92:db:95:72:46:e4:6e:
39:14:de:11:3e:de:ee:83:93:c6:22:91:5a:17:d9:5d:a1:f3:
5a:0b:35:1e:c4:c7:f4:00:9d:04:cb:42:25:a7:c2:67:57:64:
86:44:32:93:74:4a:df:7e:d4:3e:5d:1c:83:0b:57:a2:49:79:
e8:6f:2e:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 04:06:33 2024 by rpki-client on console-fra.rpki-client.org