Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230332e3231392e302f32342d3234203d3e20313431303339.roa
File: 3138352e3230332e3231392e302f32342d3234203d3e20313431303339.roa (raw, json)
Hash identifier: a3SVNx4GCTC40AhIhGISxwgbpPc16jY2A2M8PPh96Sk=
Subject key identifier: F2:C2:23:1F:3F:3D:6E:12:25:84:EB:72:A0:8B:A2:84:EA:AA:DE:FC
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 2263C7F5BC8570AF215CAB878C794313E1DCE363
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230332e3231392e302f32342d3234203d3e20313431303339.roa
Signing time: Fri 20 Sep 2024 14:04:57 +0000
ROA not before: Fri 20 Sep 2024 13:59:57 +0000
ROA not after: Fri 19 Sep 2025 14:04:57 +0000
asID: 141039
IP address blocks: 185.203.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:63:c7:f5:bc:85:70:af:21:5c:ab:87:8c:79:43:13:e1:dc:e3:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 20 13:59:57 2024 GMT
Not After : Sep 19 14:04:57 2025 GMT
Subject: CN=F2C2231F3F3D6E122584EB72A08BA284EAAADEFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ce:eb:21:17:5c:c6:5e:7c:54:0c:d4:d9:d1:
bc:64:1f:e0:f6:27:d6:27:26:90:62:10:c5:59:78:
83:3e:d3:dd:84:5f:04:b5:04:46:30:86:68:dd:0a:
96:2c:ad:e7:ab:ad:dc:e5:d0:75:08:08:20:c5:4e:
66:15:86:5a:40:de:3b:cc:61:ce:eb:98:f7:92:5d:
f0:c6:89:b3:19:b9:60:89:38:74:db:03:7e:ea:51:
ef:bb:2a:53:80:c7:26:a6:2c:9e:c3:4a:c6:fd:49:
85:4b:52:77:80:0f:84:f3:b7:02:bd:62:76:44:79:
2d:99:0f:dd:41:4d:f5:1f:fe:ab:46:4f:d5:0f:8a:
aa:fd:68:90:36:9f:fa:48:f1:f3:51:c6:c1:cf:c6:
e5:ea:b7:81:b7:e3:92:3e:ba:eb:a5:4b:45:55:5b:
74:88:10:e5:3a:0e:d2:81:6f:73:fd:d6:21:00:75:
34:77:79:44:2f:97:98:e1:e6:40:9a:e7:f0:1a:c1:
ff:3d:b7:2b:0e:f4:45:59:fc:2a:0c:d7:68:c8:b0:
77:64:2a:33:f0:91:a9:44:6a:7e:78:08:0e:b0:87:
b9:0a:40:49:be:26:f3:48:23:7e:21:40:ab:58:41:
93:ed:0b:a8:04:83:fd:b0:eb:0e:6d:47:16:90:35:
41:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:C2:23:1F:3F:3D:6E:12:25:84:EB:72:A0:8B:A2:84:EA:AA:DE:FC
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230332e3231392e302f32342d3234203d3e20313431303339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.219.0/24
Signature Algorithm: sha256WithRSAEncryption
63:6a:90:26:c9:ad:bc:f3:3f:d3:d4:62:39:f8:00:39:94:66:
0f:77:ab:50:33:15:43:ba:5e:32:a1:c6:f6:20:a5:8f:23:63:
dd:8a:97:4e:c0:98:a7:88:34:40:c2:64:3c:62:3d:94:49:60:
60:e4:24:26:11:cf:ce:89:d5:8a:8b:f7:1a:f2:c3:53:f0:bb:
02:89:41:49:5e:fb:6d:ef:0d:cb:00:19:ae:ba:91:76:f0:f7:
45:01:a9:c5:c1:27:fc:d4:9f:d5:65:f4:94:d3:44:3b:70:17:
39:4f:b8:b0:82:ce:62:9a:87:b0:4a:b3:16:77:65:9f:1e:bc:
91:e2:e6:bc:e8:79:28:a2:9f:fe:73:58:9d:52:fd:9d:ff:5e:
28:c0:32:bc:7e:15:4a:1f:e8:b5:46:6d:a9:ef:48:6e:47:37:
4f:21:3d:60:aa:de:9d:dd:6a:fe:1f:82:47:f8:04:c5:de:5e:
14:6d:70:9f:cf:c7:6f:52:7e:8f:a4:45:8f:ab:ac:6c:dc:16:
74:bf:87:56:25:84:47:87:0e:05:db:6d:5b:67:20:7e:0b:0c:
e9:cd:51:5d:56:64:c1:fd:46:b5:92:30:53:69:30:59:28:e5:
c6:1e:3f:44:5c:35:ac:11:06:70:ae:eb:53:a1:03:4c:89:bf:
a6:a2:90:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:29:13 2024 by rpki-client on console-ams.rpki-client.org