Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3234332e35392e302f32342d3234203d3e203432333636.roa
File: 3138352e3234332e35392e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: t/AZNHAlICOVKYLfep7oQajBJdvdhfnCwcenjpHVD9g=
Subject key identifier: 25:A0:05:CB:E7:09:4B:E1:45:63:43:87:9D:4C:28:5D:8E:AD:CB:F8
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 4C792EC9F2B33CA30C92F7F11CDF45943AD9F412
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3234332e35392e302f32342d3234203d3e203432333636.roa
Signing time: Sun 07 Apr 2024 16:03:28 +0000
ROA not before: Sun 07 Apr 2024 15:58:28 +0000
ROA not after: Sun 06 Apr 2025 16:03:28 +0000
asID: 42366
IP address blocks: 185.243.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 19:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:79:2e:c9:f2:b3:3c:a3:0c:92:f7:f1:1c:df:45:94:3a:d9:f4:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Apr 7 15:58:28 2024 GMT
Not After : Apr 6 16:03:28 2025 GMT
Subject: CN=25A005CBE7094BE1456343879D4C285D8EADCBF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6d:b7:06:98:0c:44:6e:b6:8b:82:f5:86:16:
28:22:c6:1d:7e:66:9b:e4:b6:93:80:dd:6d:0f:dc:
21:5c:d2:07:ea:43:19:a8:a9:ab:bd:bb:27:63:a3:
ae:1d:61:80:d5:0b:89:c2:2a:63:76:7e:55:b3:a4:
ce:d7:95:e4:90:40:15:22:b7:e1:3a:b4:9f:2a:f8:
e2:31:0c:e1:ed:7a:d8:de:e6:b0:e5:3f:d4:03:43:
12:8a:62:a5:fb:a3:3f:a2:c9:86:30:d4:77:fa:e1:
71:66:f6:71:26:dc:02:98:0a:17:4d:54:4e:8d:34:
9d:97:78:39:48:6c:37:10:29:85:6d:b6:bf:4c:78:
99:2c:36:e8:a9:1f:b3:d6:41:b8:52:93:1a:28:75:
3a:85:19:15:ae:3f:03:09:00:45:07:d5:39:c9:68:
a4:3c:09:a8:14:d2:99:87:28:67:ef:d9:d1:ea:91:
3e:6f:07:f6:a2:97:62:44:f2:b7:30:4b:4b:73:a3:
09:c7:8a:eb:94:7c:a4:69:09:9f:5d:89:ca:10:07:
41:3c:58:61:9e:55:be:b0:4e:cd:9e:26:0e:a1:09:
b9:f3:18:71:b6:bf:7d:45:15:3f:64:c6:52:f1:3e:
fa:8e:f8:ca:13:ee:6a:7c:d7:50:1a:1c:d0:28:86:
33:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A0:05:CB:E7:09:4B:E1:45:63:43:87:9D:4C:28:5D:8E:AD:CB:F8
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3234332e35392e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.59.0/24
Signature Algorithm: sha256WithRSAEncryption
15:c7:04:c0:87:06:e7:f8:3c:45:d4:92:21:e1:84:ad:c5:ad:
0f:7f:f6:97:ee:a5:ce:cf:95:d2:a9:f7:e1:83:0c:46:3b:0c:
c4:7c:54:6b:3f:e6:c6:45:76:f8:ee:91:03:cf:2d:db:eb:1b:
6f:2b:8e:0a:90:55:a1:7c:5e:55:2f:ab:76:18:86:dc:e5:c1:
91:a4:13:d0:a6:45:17:9f:78:aa:7c:0e:a2:4b:bd:71:61:0f:
23:cf:f8:0c:8d:d8:a6:3a:09:28:9e:3e:0c:32:83:d6:61:4a:
37:f3:e4:12:5f:6f:99:87:67:ee:df:26:62:38:4c:04:ea:7c:
d8:d1:e3:5d:a5:c2:ac:0f:f0:50:90:5d:13:a9:ae:43:68:6c:
db:6b:17:f7:c9:d6:10:7e:a4:e5:14:7b:40:5e:f8:0e:ef:f8:
dd:b5:ee:ae:6a:2d:22:15:1b:6b:97:68:83:42:8a:d3:59:80:
e2:df:4e:69:c3:46:25:f4:08:76:c6:21:37:42:6d:95:99:1d:
b8:d7:48:53:b6:ac:5e:2a:a7:ba:74:67:a7:28:05:a7:d5:b0:
5c:be:01:f8:75:27:1f:8b:58:33:13:ae:91:ec:d3:4b:30:c4:
4e:ae:99:ef:4b:3b:f9:83:8e:91:92:4f:a2:ff:9f:de:06:59:
5c:17:60:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 00:22:50 2024 by rpki-client on console-fra.rpki-client.org