Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3230352e31322e302f32342d3234203d3e20313336373837.roa
File: 3138352e3230352e31322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: GtFbYAg6NPGfW5APZyGOIC6WUsSX5ZT4zroZNhbcrnQ=
Subject key identifier: 23:64:E7:74:3C:8F:4D:21:28:88:49:A8:27:6B:78:25:5C:46:48:8A
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 4817E5D584130AD299BA63AC923185E3071471EF
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3230352e31322e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 30 Dec 2024 15:41:18 +0000
ROA not before: Mon 30 Dec 2024 15:36:18 +0000
ROA not after: Mon 29 Dec 2025 15:41:18 +0000
asID: 136787
IP address blocks: 185.205.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:17:e5:d5:84:13:0a:d2:99:ba:63:ac:92:31:85:e3:07:14:71:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Dec 30 15:36:18 2024 GMT
Not After : Dec 29 15:41:18 2025 GMT
Subject: CN=2364E7743C8F4D21288849A8276B78255C46488A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e7:f3:6c:58:aa:f2:51:d9:fa:5b:63:bb:d8:
55:f3:d3:3c:73:40:ee:c3:1c:d4:75:66:35:d8:ba:
d4:cc:af:11:23:23:03:8b:b3:6d:dc:6c:1b:71:a8:
03:1c:10:91:33:73:1c:84:b2:38:8c:68:56:24:de:
ba:75:60:c3:35:e1:65:f6:66:0a:b7:28:8b:b4:4c:
f2:9d:a4:f4:d8:e6:c1:25:8c:5d:4f:0c:4d:00:be:
93:5d:da:d5:2a:5f:0b:0c:4b:48:10:33:bd:7b:f9:
39:90:6a:a0:46:e7:94:3c:89:d8:69:55:77:2e:6b:
48:6e:c0:3a:15:77:8e:9c:5e:e0:85:3a:76:a8:c1:
0b:14:73:d7:67:26:e3:96:c2:23:45:a2:98:32:fe:
83:b4:6e:ae:1e:94:5d:fb:ed:d2:c5:8e:31:a3:07:
95:05:07:fc:5c:d1:12:26:0d:ed:76:7a:a5:ee:25:
b8:21:a6:2c:56:8a:13:6e:6e:76:d5:21:5f:99:9d:
c5:b5:89:c1:35:bb:bb:a5:37:11:be:97:3d:45:4c:
c4:2f:38:10:1b:91:0e:90:2c:9d:15:a4:dc:ae:f5:
45:68:fc:5e:b9:b5:b3:19:d6:ef:1d:11:f0:b6:bd:
93:a8:c0:9d:85:88:ae:9b:9d:f7:7a:4e:d9:0f:09:
9a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:64:E7:74:3C:8F:4D:21:28:88:49:A8:27:6B:78:25:5C:46:48:8A
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3230352e31322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.12.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:4d:3d:3d:c7:cc:27:31:27:ba:8e:56:50:b4:a1:11:56:22:
dd:8a:e0:79:ef:46:01:df:66:b0:43:57:8d:59:06:b8:8c:a9:
30:26:f0:f4:10:93:b3:38:4a:b4:00:ff:bd:ca:45:ed:10:9c:
fe:02:4a:d9:ad:8b:0b:3d:95:ac:be:c8:86:d1:48:31:15:fc:
3a:0f:fa:d3:4e:29:6d:ff:b3:5a:18:69:14:b4:61:c8:cc:5d:
ad:29:6d:48:86:69:5c:12:e5:4f:ae:c9:f7:7b:02:6d:55:05:
dd:22:2f:c8:8e:cb:c3:77:2b:00:fd:41:a5:5f:b7:5c:78:a6:
ce:7f:ee:f2:84:63:68:d9:16:76:62:61:81:8e:0b:e8:e6:11:
06:84:26:c2:cc:7c:a9:10:cb:37:78:58:1e:35:bc:67:97:32:
e7:a4:db:97:60:8e:13:3e:5c:12:1b:d7:2b:76:87:9b:af:64:
b1:7f:4e:e9:f1:5f:0d:be:3a:00:d0:1e:6d:a0:31:4f:2b:9e:
55:ef:d3:bf:4d:6a:ed:05:c8:28:c5:75:f2:e6:42:4c:1a:c1:
ae:61:3a:0a:d8:c9:c7:86:89:5a:3a:4c:7a:34:8c:46:21:88:
86:fb:f5:e6:aa:14:5f:28:41:eb:64:f1:66:3e:57:c5:48:67:
8d:54:e6:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:02:17 2025 by rpki-client