Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3139362e332e302f32342d3234203d3e20313336373837.roa
File: 3138352e3139362e332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: QxWlhBefKl9j0B3WWV5Y56zV4hkZkxYMtHChYnM+hkw=
Subject key identifier: BB:3B:D0:CF:96:0C:0E:E3:EC:C0:55:A7:A2:BB:0F:4F:A5:3A:04:90
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 03C003DBDA89201490CB7BE71D173EB289E1E69B
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3139362e332e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 13 Feb 2024 12:54:56 +0000
ROA not before: Tue 13 Feb 2024 12:49:56 +0000
ROA not after: Tue 11 Feb 2025 12:54:56 +0000
asID: 136787
IP address blocks: 185.196.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:c0:03:db:da:89:20:14:90:cb:7b:e7:1d:17:3e:b2:89:e1:e6:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 13 12:49:56 2024 GMT
Not After : Feb 11 12:54:56 2025 GMT
Subject: CN=BB3BD0CF960C0EE3ECC055A7A2BB0F4FA53A0490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ab:05:ff:35:30:58:e7:31:c7:f6:ec:17:d8:
38:a8:84:4a:b2:08:03:0f:99:0f:4f:1c:09:fc:59:
41:83:a6:c7:a3:0f:3e:28:37:4f:ac:1a:c3:86:d8:
91:41:7c:74:84:cc:90:da:20:22:e6:9f:3f:72:ee:
f2:e4:1f:05:90:fe:9d:10:f1:3d:e5:df:cf:95:ca:
46:92:98:a2:e9:8c:36:fc:1f:40:cb:18:aa:92:32:
cb:cb:a2:60:0a:a2:1d:64:cc:3a:eb:5e:48:19:06:
a1:2e:e5:3f:6e:bd:9f:0b:9d:32:20:a6:a0:5b:e6:
e6:b1:51:50:4d:d8:0c:ae:2a:b8:8a:40:56:c7:9b:
df:d9:32:2f:4e:92:78:0d:a6:8b:aa:e8:40:da:50:
d5:15:b0:e4:25:a3:e6:ec:76:a6:12:2a:65:db:a9:
99:00:9c:e7:84:b5:a4:fd:41:31:3c:40:a1:65:82:
d4:25:75:be:e0:06:7b:30:37:1d:e6:94:81:8a:63:
ce:49:8a:50:bb:1e:d1:aa:76:fa:91:fd:0b:45:ba:
d0:40:ce:81:04:0f:08:3f:96:da:eb:56:71:3d:50:
d5:6a:15:19:05:94:e5:6d:36:cf:6e:74:3a:bd:4a:
10:5b:d9:fa:e1:73:57:24:05:3a:9f:4c:ae:3a:a8:
5d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:3B:D0:CF:96:0C:0E:E3:EC:C0:55:A7:A2:BB:0F:4F:A5:3A:04:90
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3139362e332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.3.0/24
Signature Algorithm: sha256WithRSAEncryption
57:ca:b6:c2:3e:22:45:44:51:c0:80:3a:37:e9:ea:60:1d:d7:
ce:4a:a3:6f:0c:d6:98:15:62:3b:4a:db:f3:d8:8d:da:65:d4:
c2:d9:64:13:30:d0:20:2e:85:1e:f2:cf:d2:ed:4c:1b:e6:0d:
b6:0e:82:04:c7:db:fb:d9:50:f4:fe:48:23:c8:08:06:92:8a:
3d:1e:9e:e1:28:fd:60:1e:d3:c0:00:53:06:aa:f1:4f:89:f1:
11:b2:53:5b:f2:3a:77:42:27:c9:cf:4d:af:79:aa:b4:ec:d6:
fe:db:46:c7:eb:9b:c6:d5:81:6e:35:f1:64:13:f7:5a:b7:ce:
94:fe:29:63:58:e1:d1:89:fd:0a:23:b2:36:9e:53:52:52:de:
2b:4f:ba:44:1c:0b:5f:8d:ac:53:ae:4f:9d:5d:cd:8c:1c:3d:
af:bd:bd:c8:af:43:60:96:37:36:4f:90:90:39:ac:4c:da:31:
c8:6b:52:d7:35:8f:49:9e:24:8c:10:e0:2b:a1:45:82:fe:10:
88:2e:1d:fa:a7:4f:ba:f5:07:64:16:0c:0e:0e:9f:ad:94:9d:
6c:95:09:c4:c0:20:36:13:67:15:db:4e:54:40:87:0e:a5:63:
e6:76:f2:a2:cc:da:2d:00:cd:9b:21:f6:aa:d5:c4:c6:94:85:
af:0c:01:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 20:21:27 2024 by rpki-client on console-fra.rpki-client.org