Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3234332e35372e302f32342d3234203d3e20313336373837.roa
File: 3138352e3234332e35372e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 59xTv4ZJLQxwL6WYxVNseDSib6dUtt7gSw5Phu2SS1g=
Subject key identifier: 96:8A:E1:9C:63:F2:75:54:AF:88:E5:B2:4C:49:DD:B3:1B:7D:76:58
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 38CBF2CF7836026AD00750ED38A000427CFFAF08
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3234332e35372e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 22 Aug 2023 20:58:57 +0000
ROA not before: Tue 22 Aug 2023 20:53:57 +0000
ROA not after: Tue 20 Aug 2024 20:58:57 +0000
asID: 136787
IP address blocks: 185.243.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:cb:f2:cf:78:36:02:6a:d0:07:50:ed:38:a0:00:42:7c:ff:af:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Aug 22 20:53:57 2023 GMT
Not After : Aug 20 20:58:57 2024 GMT
Subject: CN=968AE19C63F27554AF88E5B24C49DDB31B7D7658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:a8:ca:62:7e:18:7c:70:2b:e2:8b:8e:b5:ec:
a1:ca:5f:9a:5d:4d:e5:0d:df:d6:0d:b2:3e:60:47:
77:c8:e8:69:18:5e:ff:b4:be:06:79:f9:64:27:3e:
59:0f:57:25:59:44:fb:11:22:09:b7:9e:c6:ce:d4:
8e:aa:42:17:93:9a:ad:b7:31:b7:52:79:6f:96:a4:
72:65:df:9b:78:ca:f5:ef:96:36:fb:3d:3c:fa:53:
7e:47:28:19:e9:e3:a3:72:f3:36:f4:76:7e:bc:8d:
57:50:b9:9c:79:de:d4:8f:10:b3:92:21:ed:c9:cc:
45:44:ad:5b:7b:4a:eb:b3:4d:bf:11:1f:e1:c7:a2:
17:66:7c:5f:02:63:52:2e:a2:d9:5e:64:f6:e7:2f:
7d:3d:c8:a9:5d:ef:3d:49:ad:c0:cd:52:ac:4c:7a:
95:b2:9a:b3:24:af:45:fa:46:67:bb:8d:3f:d1:19:
7e:90:97:13:a7:4b:f0:25:e8:ee:95:f3:95:02:18:
99:38:64:ef:ab:29:c4:59:96:12:02:15:d3:fe:16:
c9:bb:dc:1e:5a:8a:45:fe:93:d4:68:51:bc:b8:ba:
7c:3e:b8:95:f6:4b:e1:f1:12:54:6e:4d:40:70:de:
7b:fd:62:0d:82:6e:ec:cb:8f:0e:cf:46:0b:12:e1:
b5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:8A:E1:9C:63:F2:75:54:AF:88:E5:B2:4C:49:DD:B3:1B:7D:76:58
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3234332e35372e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.57.0/24
Signature Algorithm: sha256WithRSAEncryption
59:28:85:b4:26:41:11:44:98:11:64:5d:bb:10:8a:21:72:5a:
84:ce:61:b2:3b:8a:df:56:57:1a:ea:7e:9d:a3:0d:c7:ee:1c:
17:6e:85:fe:7b:99:3f:1a:7a:35:a9:a1:d9:d1:e3:4f:a1:d8:
57:e0:76:88:04:1d:28:e4:fc:f5:f0:02:a9:12:7a:e6:d1:4c:
35:84:7c:2e:5a:a7:51:48:a2:4f:6a:0b:82:4d:10:52:ff:aa:
83:72:de:7b:4c:05:0a:65:e2:30:57:de:e0:8e:36:17:ce:51:
b5:a1:9e:4a:10:5a:d9:37:37:64:39:2f:52:93:dd:c8:30:64:
c5:57:5f:c0:5c:55:6c:74:2f:45:3c:57:1c:70:39:9e:5f:f7:
68:3c:d0:37:13:7c:cb:eb:6a:18:97:47:88:36:44:16:7d:be:
c7:7f:a7:ee:cf:34:97:1a:ba:f5:ca:83:ed:39:22:27:33:62:
18:b5:70:0d:c8:1f:ce:17:78:60:cd:bf:26:ea:6c:e5:49:43:
02:02:d4:40:0e:b0:44:d9:0b:f1:21:c1:5a:a8:a2:fc:c9:27:
dc:3f:d8:ec:62:e2:32:e9:9a:44:ab:7c:18:a2:0b:cd:4d:a5:
32:e5:e5:71:0c:53:fa:81:85:af:4b:0c:2e:9d:dc:dd:a1:15:
8c:3b:82:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 04:40:31 2024 by rpki-client on console-ams.rpki-client.org