Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3233372e3134362e302f32332d3234203d3e203437353833.roa
File: 3138352e3233372e3134362e302f32332d3234203d3e203437353833.roa (raw, json)
Hash identifier: H6m1uZJcykf7voj6ireCKxjtDctOFFm+aV8A+iioXQw=
Subject key identifier: 10:CB:14:56:68:14:E8:3E:B0:9E:57:E4:1A:F0:C2:BE:61:79:00:77
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 16425C9A6A7929C04CD561842713ACCAE91EE3A9
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3233372e3134362e302f32332d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:53:37 +0000
ROA not before: Mon 26 Feb 2024 08:48:37 +0000
ROA not after: Mon 24 Feb 2025 08:53:37 +0000
asID: 47583
IP address blocks: 185.237.146.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:42:5c:9a:6a:79:29:c0:4c:d5:61:84:27:13:ac:ca:e9:1e:e3:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Feb 26 08:48:37 2024 GMT
Not After : Feb 24 08:53:37 2025 GMT
Subject: CN=10CB14566814E83EB09E57E41AF0C2BE61790077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:18:ce:0c:51:f7:76:c4:67:f8:04:5a:fc:7d:
37:05:a0:46:d5:af:99:39:40:b3:e0:0f:a0:8c:76:
b7:01:74:13:5f:23:95:30:56:04:3a:51:ff:f5:b4:
92:4d:a5:2c:c8:4b:79:6c:1a:73:43:0b:3e:14:04:
79:76:5c:04:06:97:49:d2:9e:f0:1e:db:51:cd:80:
e1:89:41:d9:d4:e4:c2:01:9e:52:66:c9:a1:14:7e:
c6:fa:0e:f2:7d:01:9b:69:1b:ce:45:b2:23:fe:4a:
b4:58:d8:e3:f7:ea:f3:17:d4:3f:2c:fb:2c:d9:aa:
2e:eb:da:aa:db:49:7e:75:55:53:0a:bd:aa:46:8e:
f1:14:93:03:61:dd:7e:24:0f:ee:1b:4a:34:01:c1:
84:08:43:b1:75:a8:01:2a:ff:50:da:11:09:57:b4:
dd:b7:0e:6f:85:fd:05:72:4b:a8:64:af:c0:9d:b8:
92:8e:c5:b5:b4:18:eb:64:d7:22:63:1c:ba:9b:0e:
bb:9d:8f:a8:3a:6a:e4:a0:79:fc:c2:51:af:f9:f4:
7c:d7:3d:f3:85:25:de:c5:53:2d:3b:61:45:10:58:
32:37:72:75:a8:4b:d2:5d:1e:df:91:96:cf:be:ca:
66:8e:6a:23:39:18:b9:5b:0e:e9:1a:1b:ab:90:32:
1b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:CB:14:56:68:14:E8:3E:B0:9E:57:E4:1A:F0:C2:BE:61:79:00:77
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3233372e3134362e302f32332d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.146.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:71:aa:57:6c:25:40:8f:89:df:d7:65:bd:c8:46:dc:61:27:
31:31:8b:78:e9:b3:4a:ee:a0:06:2e:56:28:78:36:c0:97:b9:
d3:6f:17:34:f0:5c:2c:e2:1c:e5:9f:cc:a6:e1:b6:ed:ac:b2:
5e:d8:f4:0c:c0:0c:08:4a:c2:8d:39:14:d0:62:4a:33:ed:5e:
81:17:11:65:9e:b5:51:0d:5a:0a:89:4f:f5:1c:3b:89:fb:44:
70:6e:0a:c6:24:5f:f4:76:bb:5c:c7:b4:50:4a:78:43:9e:42:
df:7d:e4:53:e6:5b:02:15:f4:b7:33:25:d6:d2:42:4e:06:03:
b2:53:1e:f4:75:bc:20:0c:de:2a:cf:72:75:6e:88:e4:99:50:
21:c9:85:27:c7:cf:ec:ca:27:dc:14:c6:7f:aa:c2:90:a9:48:
3c:fa:7a:a1:35:9c:a6:b7:31:81:05:a7:d4:31:35:3f:d1:ce:
2a:ea:a4:5c:8f:f3:02:2d:4f:51:f3:27:21:c3:f6:c8:10:39:
fc:66:8b:40:ad:ea:36:f3:b0:0a:e5:2e:3c:cb:cd:c2:73:2e:
02:c8:bf:04:ec:52:70:08:6a:f1:14:2b:ab:6c:58:5f:1a:99:
25:80:1b:43:33:fc:2c:42:88:cc:36:15:61:30:2e:69:19:44:
05:d5:06:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:44 2024 by rpki-client on console-ams.rpki-client.org