Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3138352e3139332e31382e302f32342d3234203d3e20313336373837.roa
File: 3138352e3139332e31382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: baDkwN6xBxvvab5tiqOH0ot8iMV11VoRkjUGisxUFd4=
Subject key identifier: 26:45:62:18:4C:60:DA:81:54:F1:9D:21:56:A9:86:C3:9D:14:80:C5
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 1EE7AA3C5939A286CE83F670D0A02E2A00D7A657
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3138352e3139332e31382e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 08 Mar 2024 12:58:24 +0000
ROA not before: Fri 08 Mar 2024 12:53:24 +0000
ROA not after: Fri 07 Mar 2025 12:58:24 +0000
asID: 136787
IP address blocks: 185.193.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:e7:aa:3c:59:39:a2:86:ce:83:f6:70:d0:a0:2e:2a:00:d7:a6:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Mar 8 12:53:24 2024 GMT
Not After : Mar 7 12:58:24 2025 GMT
Subject: CN=264562184C60DA8154F19D2156A986C39D1480C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:be:3c:8f:f3:ad:77:bd:a5:67:00:f1:3e:4b:
64:99:42:db:c4:75:2c:ef:af:a6:0d:ae:74:db:60:
7c:20:8a:4e:f9:08:a7:38:bf:d0:64:b2:b8:16:fa:
d8:ea:88:c4:92:09:62:69:b0:5f:32:75:a6:47:2b:
96:85:e1:73:72:0d:cb:61:5f:1c:15:80:5f:0a:76:
91:8c:92:cf:3a:da:c3:69:64:c4:b2:c3:8b:eb:63:
44:79:fc:5b:2c:35:8a:d4:bc:19:d9:d9:f0:15:9c:
4d:f3:5b:26:26:48:3c:61:fe:9f:d1:32:2e:1e:36:
80:ca:5c:d4:bd:71:1a:29:88:f9:5a:c9:04:16:f9:
18:4a:36:2b:1e:06:50:7b:c1:cd:3e:bf:e1:8a:84:
e6:c4:92:d0:f1:52:df:ce:0a:66:ec:45:be:7b:32:
f3:df:9f:f5:b4:10:69:22:a0:60:d2:35:7f:0f:23:
66:5c:a5:29:8e:93:12:8b:ae:96:78:00:5d:f6:c5:
2d:b4:70:c1:dc:d8:38:92:f7:02:df:f6:9d:c2:2f:
43:7d:a5:fe:cf:13:c7:cc:c5:ad:d6:c8:8f:bf:30:
30:35:10:4b:45:c0:99:2e:63:f3:dd:74:f4:c7:e1:
e6:ba:e6:de:de:3e:5e:9a:ae:1c:98:f8:93:28:e4:
3f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:45:62:18:4C:60:DA:81:54:F1:9D:21:56:A9:86:C3:9D:14:80:C5
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3138352e3139332e31382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.18.0/24
Signature Algorithm: sha256WithRSAEncryption
18:f7:6d:64:9d:47:1f:28:bf:76:4e:2c:d8:77:61:55:f4:af:
49:5c:80:a5:b5:88:f1:78:7e:4d:e8:77:b7:af:20:13:60:18:
64:51:b6:48:e4:d9:bd:12:58:04:0a:99:0c:66:f1:7a:e7:4e:
98:cf:2d:cb:7b:66:3d:20:69:a5:56:d8:f4:25:85:08:ab:15:
d4:77:21:2a:a8:7a:e1:24:6f:f8:d8:cc:0d:94:e9:d4:88:04:
9b:ff:e7:95:73:ed:9c:8f:a4:3e:29:b0:c6:32:02:30:60:63:
a9:fc:b2:0f:d2:9b:7a:43:a8:54:90:3e:d1:7e:e8:53:81:0b:
3a:79:7e:31:c8:fc:b4:41:d6:91:73:e2:8c:3b:99:d1:34:f8:
1d:8f:f0:cc:df:4f:31:0f:1c:04:b3:eb:93:67:e3:77:de:48:
d5:ec:cc:7b:b4:2c:6e:de:9e:31:b3:12:67:e9:16:c8:fd:43:
cf:24:9b:d0:d7:92:9c:5c:4f:44:cc:26:0b:68:7d:04:dc:2f:
f6:ad:77:40:2c:aa:e3:1f:0e:93:a9:2e:d4:b5:94:eb:9e:a0:
9c:d3:73:04:dd:81:3f:03:a9:48:b9:85:ad:3d:6b:a3:4e:cb:
14:b1:34:c0:6f:75:71:9c:e8:af:ff:c3:ee:0f:96:6f:20:3c:
c9:76:82:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org