Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3233372e3134342e302f32332d3234203d3e203437353833.roa
File: 3138352e3233372e3134342e302f32332d3234203d3e203437353833.roa (raw, json)
Hash identifier: AoDfHZ8kZEzCiatP8iGvSO9LBawFHYwV05eLCdR/ufs=
Subject key identifier: 00:E7:93:ED:7C:44:84:AD:98:61:11:93:90:A0:1D:77:89:51:B9:57
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 7C30670FC8E552DD6A9E533BCA7243A148A069F0
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3233372e3134342e302f32332d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:53:34 +0000
ROA not before: Mon 26 Feb 2024 08:48:34 +0000
ROA not after: Mon 24 Feb 2025 08:53:34 +0000
asID: 47583
IP address blocks: 185.237.144.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:30:67:0f:c8:e5:52:dd:6a:9e:53:3b:ca:72:43:a1:48:a0:69:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Feb 26 08:48:34 2024 GMT
Not After : Feb 24 08:53:34 2025 GMT
Subject: CN=00E793ED7C4484AD9861119390A01D778951B957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cb:e4:80:cb:2d:03:12:1f:68:0c:58:a5:20:
41:e8:b2:27:72:8b:60:c3:16:26:61:34:c8:b2:c2:
87:70:8b:d5:4f:8d:93:a6:4e:31:f4:3d:50:67:2b:
25:5a:95:6c:97:4b:57:e0:05:8f:b3:b6:b6:d6:0b:
a7:b0:d1:2e:4d:65:6b:84:70:d6:ec:61:aa:45:e5:
fc:4d:e8:8b:6b:2d:44:b9:c8:dd:21:59:74:63:db:
3c:69:a6:aa:cd:47:24:2b:71:46:37:44:4a:ef:bb:
e5:74:1c:12:9b:8d:38:f2:7d:60:ec:35:d5:7c:4a:
86:f8:e3:76:f2:2b:83:eb:60:7d:2d:89:1b:4f:23:
aa:b1:c9:79:52:7a:08:48:a9:0d:10:31:6d:72:1a:
95:a0:cf:15:66:d2:62:f3:9e:f7:87:2f:f6:db:fc:
22:9b:35:27:4a:44:e4:35:1a:dc:b5:ba:5e:72:2b:
67:77:2f:71:42:8a:00:ae:f1:b3:c0:8c:ae:d7:f2:
95:e5:3f:61:f2:b4:98:9e:b3:e6:bf:73:1d:d3:5f:
17:af:d0:66:d3:10:53:05:ad:d6:c4:6f:1d:6a:98:
d5:06:a3:92:dc:2d:e4:4b:06:5b:c0:d1:7e:4c:5f:
86:65:22:ee:0b:bb:d6:46:29:9d:21:95:5b:f3:9e:
06:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E7:93:ED:7C:44:84:AD:98:61:11:93:90:A0:1D:77:89:51:B9:57
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3233372e3134342e302f32332d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.144.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:ee:e2:02:7f:96:1e:26:2c:97:2a:fd:3a:a7:96:15:cc:ef:
72:af:0d:5e:3d:91:99:68:67:68:1f:63:c0:70:7c:fa:eb:5f:
22:dc:93:80:22:db:78:cb:bb:74:7b:ee:96:66:ba:30:87:57:
c6:af:ec:3c:60:06:b2:c7:8f:46:cd:04:a7:a1:af:a5:e6:04:
c1:4d:e5:79:3b:9f:8c:58:26:0f:20:f4:a0:7e:a7:56:23:c8:
63:95:17:e8:97:6e:e7:5a:a3:14:db:ac:74:5e:9e:b2:5b:37:
43:ec:99:4c:80:d0:12:42:8f:73:7f:96:89:4e:5e:f0:f4:50:
21:6b:2d:5d:c1:ab:c8:d3:4b:c5:93:09:c3:61:f7:4a:27:41:
db:5b:81:b0:41:45:29:de:62:0a:e6:3f:f9:40:b8:a5:20:5a:
cf:82:f4:41:1a:af:7e:3b:b3:bc:f7:75:6c:2d:81:6e:52:6e:
95:f0:58:7d:73:63:ae:31:12:32:46:39:51:81:64:30:40:08:
b5:cd:e9:91:71:1b:1e:b1:f8:bc:17:8a:4c:d1:50:21:b5:82:
37:48:b5:d9:3d:73:85:0d:c3:7f:b2:21:e0:1f:50:0b:56:bc:
40:4b:0f:75:4a:aa:7d:88:52:9f:21:a4:b8:50:26:f1:22:2c:
70:35:3f:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:15 2024 by rpki-client on console-fra.rpki-client.org