Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3234392e3232372e302f32342d3332203d3e203531313637.roa
File: 3138352e3234392e3232372e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: zZfH0RNrqKR1N4WX66UU8/7aAdWx+ekiIBJ+fHi2kRo=
Subject key identifier: C6:52:EE:59:19:FF:4B:E8:8D:FC:A3:85:35:C4:9E:EE:24:13:76:A1
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 02B59912EC6E3C4AE5A5C7CE074C7813683BE042
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3234392e3232372e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:53:39 +0000
ROA not before: Mon 26 Feb 2024 08:48:39 +0000
ROA not after: Mon 24 Feb 2025 08:53:39 +0000
asID: 51167
IP address blocks: 185.249.227.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 20:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:b5:99:12:ec:6e:3c:4a:e5:a5:c7:ce:07:4c:78:13:68:3b:e0:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 26 08:48:39 2024 GMT
Not After : Feb 24 08:53:39 2025 GMT
Subject: CN=C652EE5919FF4BE88DFCA38535C49EEE241376A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:19:13:9b:a3:29:41:4f:bf:ae:d2:74:04:cc:
b9:c9:f9:fc:51:30:5b:fe:31:d9:aa:6a:92:96:75:
62:53:15:cf:1a:59:d5:bb:04:4c:d3:99:65:a7:32:
a2:10:2e:29:9e:36:b0:f9:17:ac:0d:01:a8:8e:de:
88:05:04:99:7b:ab:66:36:b3:2d:0e:df:4c:2a:19:
c2:89:44:04:03:96:7a:95:f6:67:b9:09:f7:b5:1e:
4c:72:b2:97:92:4f:c4:54:0f:86:a6:b0:a6:cb:7f:
08:54:0f:13:24:3e:85:c6:d3:0c:b5:c9:0b:a1:d6:
3d:56:15:df:e1:c5:e9:98:99:3a:67:42:92:85:dd:
7f:60:bd:20:3b:32:fa:a5:b9:c3:89:47:ae:31:2c:
56:a2:a0:fd:db:2b:89:8e:84:40:4b:54:4b:4d:81:
a9:9c:4c:a4:ae:17:16:c7:ad:09:67:9d:ef:7b:e7:
f4:be:7b:02:df:4d:05:7e:ad:22:fa:d8:4d:e2:e9:
ab:87:6f:9c:6e:d6:a6:c5:5c:dc:96:3d:8b:f2:ee:
69:39:1f:f8:8b:2a:dd:44:66:17:73:58:67:e5:ec:
0c:0f:9a:73:4f:99:74:83:4e:9e:19:42:36:eb:09:
9f:47:71:09:7a:68:b2:71:ef:dd:93:dd:a4:55:10:
95:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:52:EE:59:19:FF:4B:E8:8D:FC:A3:85:35:C4:9E:EE:24:13:76:A1
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3234392e3232372e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.227.0/24
Signature Algorithm: sha256WithRSAEncryption
40:e6:7d:34:69:33:d8:c7:4b:7c:15:7c:30:da:d6:b9:a6:fb:
c5:2b:a9:1d:14:71:82:ba:89:f3:b0:91:2f:04:39:41:0d:ab:
80:17:46:f2:4b:3c:23:11:87:21:ef:46:80:8f:51:36:dd:b0:
6a:b8:69:0c:f2:f5:a3:f7:52:b6:45:4a:6e:a6:87:84:55:4c:
09:b1:85:31:ed:40:3e:d6:d5:54:78:c4:07:c3:6f:5c:14:12:
4e:66:53:5e:04:37:de:f2:1b:a4:f4:3b:5b:04:8a:fa:99:10:
bc:ce:4e:31:8d:92:d2:3a:be:20:c8:95:8c:27:ea:68:a4:59:
84:c2:7d:98:8a:f5:83:41:3f:a5:e4:31:07:85:ad:e4:54:66:
e3:2d:b2:13:b9:e2:ee:99:cc:83:52:d3:65:44:4a:57:06:00:
f7:04:66:0f:1d:65:b3:b2:7c:59:3b:c6:51:36:bf:a7:2a:4a:
56:cf:f2:b2:be:c6:bd:ae:9d:a8:e2:aa:1c:3c:b2:eb:80:c2:
59:5a:ee:09:fc:f7:45:ff:dd:e5:81:ab:7e:f5:f5:47:e1:39:
16:50:3c:63:39:4d:da:d2:18:66:4d:77:10:b9:6b:02:6e:df:
71:05:5c:e8:ae:d5:cb:d3:22:35:bd:86:a3:72:4e:da:c2:aa:
0d:cf:73:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 23:46:05 2024 by rpki-client on console-ams.rpki-client.org