Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e39332e33342e302f32342d3234203d3e203631333137.roa
File: 3138352e39332e33342e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: zyDceDf5/zLlUDf0nJL5Ry9vVpfZepBqjOHQtYtNEgk=
Subject key identifier: AD:BA:AB:5D:21:1C:74:A2:52:E8:B6:0C:CF:A6:E5:9F:E5:60:58:36
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 2A680788C345A51DEAD41BF566A5988422A16D1A
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e39332e33342e302f32342d3234203d3e203631333137.roa
Signing time: Wed 08 Nov 2023 09:22:09 +0000
ROA not before: Wed 08 Nov 2023 09:17:09 +0000
ROA not after: Wed 06 Nov 2024 09:22:09 +0000
asID: 61317
IP address blocks: 185.93.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:68:07:88:c3:45:a5:1d:ea:d4:1b:f5:66:a5:98:84:22:a1:6d:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Nov 8 09:17:09 2023 GMT
Not After : Nov 6 09:22:09 2024 GMT
Subject: CN=ADBAAB5D211C74A252E8B60CCFA6E59FE5605836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:8a:07:9b:11:76:5a:d3:58:e5:31:0e:2c:bb:
61:34:30:67:22:be:ab:5c:5c:ab:91:ea:e2:3d:95:
d0:56:4c:c3:67:de:56:f3:da:a3:15:45:ef:a7:67:
4e:93:57:41:7a:dc:3d:e3:0d:e8:bd:bc:e0:53:5e:
71:0f:02:33:47:39:42:d4:62:fe:1d:db:7b:c9:27:
34:6a:8d:56:02:25:32:2f:34:38:af:d6:c8:eb:d6:
ea:a4:13:fe:a4:f0:d0:79:ca:3a:48:60:90:2a:27:
82:af:25:60:12:c8:c6:87:7b:a2:76:de:eb:84:85:
fd:91:e3:53:73:8a:c4:5c:ca:b2:a5:37:30:18:10:
06:4e:5b:1c:eb:2c:4a:f3:5d:2f:64:fb:5e:82:44:
9f:81:17:91:bc:e1:dd:63:78:d7:a2:d1:0b:06:47:
f3:9f:eb:25:7f:76:2f:aa:11:61:c5:8e:86:34:8f:
2b:30:63:93:8e:24:ea:8d:bf:d2:f1:1f:2f:31:73:
a1:6b:aa:60:34:4b:dc:7b:86:34:3f:a9:98:03:c4:
5d:c1:4e:71:68:43:63:f4:94:ce:0f:5e:fa:61:3c:
58:cc:a8:7b:4c:1f:e0:eb:e4:90:5b:91:d4:11:5e:
11:a5:3a:53:c7:22:15:05:da:54:50:c5:45:d5:08:
8a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:BA:AB:5D:21:1C:74:A2:52:E8:B6:0C:CF:A6:E5:9F:E5:60:58:36
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e39332e33342e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.34.0/24
Signature Algorithm: sha256WithRSAEncryption
73:4a:f9:17:9f:d3:37:b5:b0:73:43:8c:09:e9:34:36:a3:f2:
f9:ea:b9:6e:f7:c7:f8:0c:98:cd:7f:91:8c:76:3b:38:5b:c1:
55:ed:21:2c:68:c7:d6:b9:28:a1:c3:40:37:4f:55:a9:e8:ef:
1a:80:51:86:93:46:67:ca:36:2c:fb:c9:c0:ed:8d:f2:1b:d8:
43:5b:6f:e8:3a:e2:bb:41:c9:c1:c7:2f:c7:8a:58:67:a9:7a:
48:0d:e9:5c:ce:39:35:a3:06:de:34:df:44:34:6c:39:a1:f0:
b4:c5:f6:8c:de:5f:41:c0:f4:c4:29:8b:46:f9:a1:17:2f:ee:
94:9b:32:04:88:6e:a2:e6:ff:80:23:78:35:40:43:d1:ef:d5:
64:9a:62:0c:c6:40:db:4b:16:a0:c0:bf:bb:27:6b:75:48:04:
03:94:65:8c:45:81:fc:cb:e6:ea:a6:77:f1:24:48:26:72:71:
91:7d:08:22:24:ea:24:a0:ef:77:0f:1f:25:4e:74:78:38:1c:
02:1a:90:54:b7:80:f1:db:e2:47:0a:10:cd:ed:5a:33:3a:a4:
72:32:55:13:3f:87:f0:86:b9:9a:fa:4a:d7:e3:b8:93:cb:2c:
2e:82:50:0a:bf:fd:b5:e6:97:06:ad:b8:a9:25:91:24:40:18:
eb:bf:66:8c
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUKmgHiMNFpR3q1Bv1ZqWYhCKhbRowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZGM5NDNjYzJhN2NkYzM3OGEzNzcwMjU3M2JiNGY4MjEx
NzBiNTMwZDAeFw0yMzExMDgwOTE3MDlaFw0yNDExMDYwOTIyMDlaMDMxMTAvBgNV
BAMTKEFEQkFBQjVEMjExQzc0QTI1MkU4QjYwQ0NGQTZFNTlGRTU2MDU4MzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVigebEXZa01jlMQ4su2E0MGci
vqtcXKuR6uI9ldBWTMNn3lbz2qMVRe+nZ06TV0F63D3jDei9vOBTXnEPAjNHOULU
Yv4d23vJJzRqjVYCJTIvNDiv1sjr1uqkE/6k8NB5yjpIYJAqJ4KvJWASyMaHe6J2
3uuEhf2R41NzisRcyrKlNzAYEAZOWxzrLErzXS9k+16CRJ+BF5G84d1jeNei0QsG
R/Of6yV/di+qEWHFjoY0jyswY5OOJOqNv9LxHy8xc6FrqmA0S9x7hjQ/qZgDxF3B
TnFoQ2P0lM4PXvphPFjMqHtMH+Dr5JBbkdQRXhGlOlPHIhUF2lRQxUXVCIrpAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUrbqrXSEcdKJS6LYMz6bln+VgWDYwHwYDVR0j
BBgwFoAU3JQ8wqfNw3ijdwJXO7T4IRcLUw0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNmFiMDcyMmYtNjRkOC00Y2E5LTkyNjctNGU1MTU0NDM0
MTAxLzAvREM5NDNDQzJBN0NEQzM3OEEzNzcwMjU3M0JCNEY4MjExNzBCNTMwRC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNKUTh3cWZOdzNpamR3SlhPN1Q0SVJj
TFV3MC5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNmFiMDcyMmYt
NjRkOC00Y2E5LTkyNjctNGU1MTU0NDM0MTAxLzAvMzEzODM1MmUzOTMzMmUzMzM0
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMTMzMzEzNy5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALld
IjANBgkqhkiG9w0BAQsFAAOCAQEAc0r5F5/TN7Wwc0OMCek0NqPy+eq5bvfH+AyY
zX+RjHY7OFvBVe0hLGjH1rkoocNAN09VqejvGoBRhpNGZ8o2LPvJwO2N8hvYQ1tv
6Driu0HJwccvx4pYZ6l6SA3pXM45NaMG3jTfRDRsOaHwtMX2jN5fQcD0xCmLRvmh
Fy/ulJsyBIhuoub/gCN4NUBD0e/VZJpiDMZA20sWoMC/uydrdUgEA5RljEWB/Mvm
6qZ38SRIJnJxkX0IIiTqJKDvdw8fJU50eDgcAhqQVLeA8dviRwoQze1aMzqkcjJV
Ez+H8Ia5mvpK1+O4k8ssLoJQCr/9teaXBq24qSWRJEAY679mjA==
-----END CERTIFICATE-----
Generated at Fri May 3 21:05:38 2024 by rpki-client on console-fra.rpki-client.org