Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3137362e3232372e3234302e302f32342d3234203d3e20323039383534.roa
File: 3137362e3232372e3234302e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: vPQaZS0D0HwHOhobsKSyVkeriqJYBpxfpigf9UuyjwM=
Subject key identifier: 27:F0:66:58:3C:73:17:60:F2:E2:7C:40:0D:F1:AF:95:A5:94:28:24
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 3799BB16D34EA6880F53317DBABE8B51DAA7604C
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3137362e3232372e3234302e302f32342d3234203d3e20323039383534.roa
Signing time: Wed 06 Sep 2023 07:17:08 +0000
ROA not before: Wed 06 Sep 2023 07:12:08 +0000
ROA not after: Wed 04 Sep 2024 07:17:08 +0000
asID: 209854
IP address blocks: 176.227.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 16:15:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:99:bb:16:d3:4e:a6:88:0f:53:31:7d:ba:be:8b:51:da:a7:60:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Sep 6 07:12:08 2023 GMT
Not After : Sep 4 07:17:08 2024 GMT
Subject: CN=27F066583C731760F2E27C400DF1AF95A5942824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:56:3e:28:eb:b6:3f:a4:c1:7c:82:df:8f:52:
b1:9e:74:65:35:54:1a:ec:eb:d3:e7:a3:96:cd:7c:
4d:93:27:49:e4:eb:c2:ab:8f:98:56:52:8f:99:f1:
89:0a:50:61:cc:c1:75:8d:40:06:9b:2e:37:0f:e3:
cf:8e:86:19:2f:a0:b9:8e:51:ba:57:f3:c0:ba:af:
cc:5b:8e:b0:21:12:7e:85:ba:74:1e:e7:44:61:5a:
88:9a:9a:fa:80:8d:44:f2:39:90:00:b7:4b:c2:cc:
cc:a6:b2:e8:d1:e5:2d:dc:9f:a7:07:ce:68:c2:5e:
8b:d5:10:d7:8e:d1:50:16:6a:fe:cd:a3:2a:cf:63:
46:51:01:d1:08:5c:01:5b:59:a7:48:e1:b7:0b:a7:
f9:91:86:75:46:da:75:b8:5e:14:36:79:4a:b1:a7:
fe:45:2b:9b:48:24:95:2d:e4:30:76:a9:58:a1:92:
96:52:3e:63:fe:ce:bb:74:df:8a:21:1c:21:04:58:
1b:5b:75:58:5b:d9:c7:a4:5f:c7:6e:d6:ae:46:52:
dd:19:6f:66:f1:13:ef:f6:18:d9:2d:f0:56:f3:be:
4e:7f:9e:2a:83:01:0b:0b:88:a2:5e:18:b1:91:53:
16:dd:61:a9:fa:f1:2c:76:68:fe:f2:9f:db:36:1d:
78:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F0:66:58:3C:73:17:60:F2:E2:7C:40:0D:F1:AF:95:A5:94:28:24
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3137362e3232372e3234302e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.227.240.0/24
Signature Algorithm: sha256WithRSAEncryption
80:52:1b:b0:f7:11:8d:6e:c4:7c:1d:d3:9e:d9:f8:56:4e:90:
42:31:01:15:07:48:8b:45:8b:66:d6:ed:2d:64:9d:d1:a8:85:
c7:3d:63:03:be:e4:fe:31:04:df:f6:31:b4:38:67:5a:1f:99:
7c:1d:c1:fb:63:0c:a7:81:1b:f8:45:1b:86:f3:a3:53:35:e1:
d9:33:34:09:49:53:ed:64:aa:e2:16:00:d1:fb:15:37:4c:28:
cd:25:34:06:b0:23:68:81:c6:de:4a:30:41:78:df:c5:fd:cb:
1c:12:93:5d:f6:79:d4:e0:d1:63:5c:6a:72:7a:57:bc:6e:5d:
68:bf:c3:57:50:9b:e4:e2:46:38:3a:d6:85:54:41:c5:87:5a:
7a:a4:76:dc:f7:2d:3e:0f:3a:28:6e:ec:ad:aa:d4:81:c2:d5:
b7:25:95:34:b6:c8:0f:8e:4f:b4:39:4c:7e:ad:cd:f8:97:b3:
fb:90:f7:f1:46:b3:20:43:61:bd:09:1f:f8:52:ba:19:ab:90:
94:da:a3:94:89:9e:3e:c2:1b:b4:21:50:5b:44:39:2b:00:bd:
b2:4d:4a:0d:62:61:04:1b:f8:6f:77:24:86:99:21:03:b5:81:
4c:64:0c:41:ff:3b:a5:06:e4:4f:aa:34:bc:41:7d:cf:43:4d:
17:88:69:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 01:22:09 2024 by rpki-client on console-ams.rpki-client.org