Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3234392e3232352e302f32342d3332203d3e203531313637.roa
File: 3138352e3234392e3232352e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: AdKmNZfeAR6bPeWYOEroxF08Ec2sx4OdcmKQbks4Pe8=
Subject key identifier: 6B:B9:98:FF:AC:BB:EA:BC:4D:3F:02:62:5F:31:51:A6:E2:A2:DF:BC
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 23996BD505E85CF1680A7CBBDF213D92DD78F69A
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3234392e3232352e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:53:38 +0000
ROA not before: Mon 26 Feb 2024 08:48:38 +0000
ROA not after: Mon 24 Feb 2025 08:53:38 +0000
asID: 51167
IP address blocks: 185.249.225.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:99:6b:d5:05:e8:5c:f1:68:0a:7c:bb:df:21:3d:92:dd:78:f6:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 26 08:48:38 2024 GMT
Not After : Feb 24 08:53:38 2025 GMT
Subject: CN=6BB998FFACBBEABC4D3F02625F3151A6E2A2DFBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ef:ad:0e:b7:59:a5:92:15:14:99:1f:92:fd:
e5:0b:42:69:ab:9b:2c:3f:ef:2a:3f:02:b3:57:8b:
34:2e:81:de:db:47:e5:50:61:ba:53:6a:ed:b9:71:
30:4a:ed:54:3f:b2:8b:d8:7c:e8:e5:3b:40:79:86:
b1:4e:9f:24:40:1b:4e:58:60:87:06:c1:e3:9e:d1:
ac:c2:80:f8:ac:c6:0f:b4:03:e4:64:17:70:d4:d6:
4e:e0:2d:5d:6b:cc:a6:f8:0a:e1:3f:4f:9d:77:96:
01:2f:1b:79:5b:2c:ed:7d:e5:fb:75:e8:fd:da:69:
b9:ca:59:c0:5c:64:52:46:de:72:0c:8f:4a:33:85:
88:48:c6:d7:92:2f:a1:b8:12:92:4f:aa:05:b7:6f:
e5:e4:35:f3:17:9a:40:0c:27:3c:08:3e:d6:f7:ad:
1b:e0:12:26:40:f3:a0:03:53:ad:84:c4:a2:db:4e:
a5:b7:7d:42:5a:84:d6:d3:34:7b:6d:a3:97:fe:0c:
aa:85:00:b7:98:3c:f2:23:4d:29:48:67:df:f7:ed:
56:15:78:bc:21:79:a4:0e:83:96:75:7a:be:c0:3e:
f2:2c:41:53:3f:02:0d:8d:95:ab:6a:c8:12:ff:17:
61:47:a7:f3:ab:92:13:97:5b:90:32:d2:a0:b8:83:
3c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B9:98:FF:AC:BB:EA:BC:4D:3F:02:62:5F:31:51:A6:E2:A2:DF:BC
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3234392e3232352e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.225.0/24
Signature Algorithm: sha256WithRSAEncryption
72:17:2e:c7:9d:7d:ab:ea:91:12:6e:5a:ac:30:f0:70:2b:41:
fa:a2:90:4b:9a:84:4f:ee:f2:91:52:37:44:99:92:90:d5:b3:
33:4b:ad:3f:cc:a0:f8:52:5a:88:20:53:4a:c4:44:63:49:74:
d7:6c:d7:71:a9:37:f1:be:24:57:eb:6e:81:21:d1:69:26:97:
d0:1f:8a:a1:2c:c8:f4:b4:45:66:7e:32:69:6c:3f:cd:20:07:
1c:6b:2d:7c:5b:26:3d:03:47:d0:a2:46:95:a0:14:21:e2:e4:
b3:9d:42:d5:f4:e9:b8:36:b9:9e:75:03:23:4c:3d:68:c8:77:
76:7d:bc:b7:be:5c:e6:e9:fd:f0:b5:78:cc:59:35:5e:f2:26:
49:94:38:2a:e5:3c:89:aa:9f:6c:34:73:9a:68:53:f8:ec:bc:
e5:44:15:81:33:77:93:d7:8e:c7:04:c8:3b:28:0a:a4:38:57:
b2:8d:87:22:b9:63:a6:e3:16:77:eb:ee:50:02:2e:0d:21:75:
67:ca:fa:ed:37:fb:60:b9:50:af:e7:f7:8c:80:68:66:a8:76:
82:5b:54:4c:12:21:11:fd:dc:e5:7e:6c:af:23:47:f4:a5:5f:
ab:d6:a9:63:e7:cc:c0:37:3d:95:af:61:e6:e1:45:76:39:68:
ae:4e:56:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org