Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3133302e3138352e3131372e302f32342d3234203d3e203632323430.roa
File: 3133302e3138352e3131372e302f32342d3234203d3e203632323430.roa (raw, json)
Hash identifier: iOJ+RQqTwy1lgUDEPTxP2kTfqRKQNIBycse/t8z/ukc=
Subject key identifier: 80:DC:44:C0:CF:DD:59:F5:19:AA:C8:A6:CD:8C:2B:D1:95:E2:08:5C
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 7455B5D00891B3B4055F29BAE530A8407D30DCC1
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3133302e3138352e3131372e302f32342d3234203d3e203632323430.roa
Signing time: Mon 01 Apr 2024 14:03:22 +0000
ROA not before: Mon 01 Apr 2024 13:58:22 +0000
ROA not after: Mon 31 Mar 2025 14:03:22 +0000
asID: 62240
IP address blocks: 130.185.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:55:b5:d0:08:91:b3:b4:05:5f:29:ba:e5:30:a8:40:7d:30:dc:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Apr 1 13:58:22 2024 GMT
Not After : Mar 31 14:03:22 2025 GMT
Subject: CN=80DC44C0CFDD59F519AAC8A6CD8C2BD195E2085C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ab:b5:10:5d:89:59:4b:05:76:32:d7:32:30:
fd:48:38:17:f0:83:ce:96:05:ae:c4:85:c6:8c:76:
f0:60:45:8a:78:0c:38:2d:91:2b:56:38:87:92:cc:
bd:a9:a5:00:1d:78:49:7c:06:17:8d:69:92:e8:97:
77:d4:b0:0a:2a:d6:5f:5f:70:c6:4c:36:85:f9:0d:
41:02:d5:5c:bb:10:8a:87:b3:0a:70:03:8e:f3:f5:
f9:a3:95:3a:08:1f:65:95:b6:07:65:3b:a1:28:18:
d1:c1:bd:f8:96:80:4b:27:9d:60:04:83:a0:86:14:
f4:72:2d:c3:1e:c6:87:56:a1:2b:a7:5e:4a:39:c7:
82:ff:ad:18:09:f0:52:7d:fe:1f:87:b0:54:12:33:
23:65:65:6a:d8:82:db:89:e2:34:a7:be:c7:bd:53:
a0:90:9f:8f:8a:9e:be:e0:2b:4a:f0:dc:08:cc:b4:
65:08:1b:17:07:0f:85:c1:a6:af:8b:f6:58:a1:76:
62:12:3f:d0:54:fe:a4:79:9d:1c:2e:c1:7f:70:7c:
27:27:0b:0d:a6:2d:85:d7:5d:6d:b6:6d:38:f6:c8:
70:06:c2:69:b3:46:24:0f:a6:cf:ea:c9:a6:05:94:
cf:0d:70:92:db:67:ed:ce:7f:97:3a:88:75:72:3a:
6f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:DC:44:C0:CF:DD:59:F5:19:AA:C8:A6:CD:8C:2B:D1:95:E2:08:5C
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3133302e3138352e3131372e302f32342d3234203d3e203632323430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.185.117.0/24
Signature Algorithm: sha256WithRSAEncryption
23:63:51:0d:9a:14:e4:8b:eb:19:33:32:e7:9c:19:85:8f:2f:
d0:87:19:15:3f:97:2d:38:9a:b7:be:72:b8:70:7c:9d:89:a6:
f0:21:fd:c9:6e:d2:eb:68:07:7d:bf:84:6a:01:5d:b7:57:4f:
28:c7:7f:10:e2:e0:7e:80:e9:ba:91:81:54:fe:1f:a6:98:63:
94:9f:d2:61:b7:26:ac:ae:93:d9:36:78:70:0f:b4:68:70:d5:
6f:da:9e:3d:d2:6d:a5:8f:12:57:1c:19:15:63:1d:fc:31:f0:
e9:4f:c9:58:6f:97:53:a8:fe:8e:a3:cd:b5:15:74:be:9a:b9:
3c:84:08:3e:4a:53:b3:39:92:61:53:e9:bd:32:1d:b6:12:46:
38:de:a6:3c:c1:d3:ac:ec:a2:69:56:e0:1f:05:28:93:35:39:
6e:71:ac:07:04:3f:a3:8a:a8:f1:99:ba:45:92:27:22:15:bf:
66:0f:7b:ef:e3:91:e9:9f:15:27:92:90:02:e2:2e:0a:67:fc:
20:2e:7e:28:ae:5c:88:cd:53:dc:2b:66:cb:46:19:fc:86:2e:
2d:b3:96:95:74:39:3d:2e:1a:85:f8:a0:1f:f7:da:ed:08:b5:
31:1b:ae:fd:1a:16:5d:de:cd:85:dd:26:8a:59:9f:5a:a5:2f:
c6:4a:21:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 22:57:02 2024 by rpki-client on console-fra.rpki-client.org