Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231342e302f32342d3234203d3e203631333137.roa
File: 38352e3233372e3231342e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: 3Tbzy8msOFR+CKrossgOJmIfxKzvLnR6dXCk+0mYOq4=
Subject key identifier: 24:A9:63:36:0F:90:6E:3F:D4:E4:99:C6:BF:F7:E7:DF:CF:74:D4:BB
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 750E8061CFF87B5921FA18FE2ADC26977632203B
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231342e302f32342d3234203d3e203631333137.roa
Signing time: Wed 08 Nov 2023 09:21:52 +0000
ROA not before: Wed 08 Nov 2023 09:16:52 +0000
ROA not after: Wed 06 Nov 2024 09:21:52 +0000
asID: 61317
IP address blocks: 85.237.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:0e:80:61:cf:f8:7b:59:21:fa:18:fe:2a:dc:26:97:76:32:20:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Nov 8 09:16:52 2023 GMT
Not After : Nov 6 09:21:52 2024 GMT
Subject: CN=24A963360F906E3FD4E499C6BFF7E7DFCF74D4BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:38:f4:60:bc:0c:a1:86:14:3c:11:8e:7e:c4:
64:fa:7f:96:09:17:bf:a0:d7:2d:97:df:d8:f7:56:
f6:97:b0:6c:ba:ff:cf:38:15:6d:0f:c2:de:72:99:
4f:84:49:59:2c:65:2f:ac:7d:b9:5b:90:b6:17:e1:
e3:14:89:73:34:37:6a:c6:d4:98:69:d5:4f:3b:d4:
0f:96:b8:3f:1a:d4:06:3b:4c:03:97:31:11:11:62:
7c:ab:62:1b:8b:2c:ca:45:f0:54:95:dd:96:33:9e:
d6:dd:f8:57:77:bc:b4:af:01:eb:ea:d1:81:9f:26:
cc:cd:80:3c:8f:1f:d8:34:17:aa:7e:d3:b6:c3:bd:
0a:b6:0f:a5:23:be:30:48:f0:6d:1b:80:26:ee:57:
70:b2:5a:8a:fd:ff:04:43:59:71:8d:9e:22:7c:e8:
87:07:8c:21:5b:c9:8b:82:fe:10:3f:10:fa:84:b4:
93:f7:44:e3:5d:66:0f:96:f3:5b:5d:2f:e6:ef:6c:
4d:8c:38:a4:11:b0:15:bf:a1:91:d0:21:96:c9:3c:
a1:87:20:5c:87:af:7c:66:23:94:a0:ed:45:3d:a8:
01:76:2b:57:37:17:91:a3:1b:d2:81:27:03:04:4a:
08:95:0b:4a:87:e4:51:19:dc:ac:56:d0:9b:f4:34:
31:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A9:63:36:0F:90:6E:3F:D4:E4:99:C6:BF:F7:E7:DF:CF:74:D4:BB
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231342e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.214.0/24
Signature Algorithm: sha256WithRSAEncryption
01:61:ab:81:29:db:b5:5a:4f:34:29:93:23:c4:b9:18:25:76:
1c:22:e6:1f:fe:b7:f5:7d:24:26:cf:bb:f3:6e:48:60:bf:40:
0d:58:c2:98:9f:ce:f1:fa:aa:9c:97:fc:ac:d3:6b:5d:19:e4:
4b:f8:65:ec:b6:a8:87:98:35:b7:f3:a1:30:65:77:2e:ff:cf:
28:95:05:39:68:71:9d:72:4d:c8:78:9f:a1:d6:90:f6:d3:8e:
49:04:bd:1d:a0:ad:32:06:b2:2c:2c:1c:7e:10:11:26:2a:02:
cc:49:bf:0c:e4:77:77:c7:72:38:70:27:b4:65:a0:20:83:db:
ba:c2:6b:d9:b6:65:c0:53:72:e6:62:33:87:ef:29:9e:9a:7d:
d3:f4:86:5d:a5:02:0a:ae:7f:a7:9e:54:26:fa:9d:ed:28:7a:
f5:61:8a:de:a4:45:91:fe:7f:ed:55:2c:72:3b:2b:15:cf:5c:
ea:e1:0d:7c:16:fa:d0:3f:fa:ab:39:7b:ba:36:da:65:a8:77:
25:de:1d:92:2b:d6:57:0d:39:26:75:2c:7d:5b:cd:85:98:c5:
89:15:84:c3:ee:83:31:b1:a6:fe:ab:b3:83:a4:be:1e:22:c3:
db:d6:00:a9:01:01:e0:ec:94:05:8b:3f:5f:13:c0:47:14:fa:
de:29:eb:27
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUdQ6AYc/4e1kh+hj+Ktwml3YyIDswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZGM5NDNjYzJhN2NkYzM3OGEzNzcwMjU3M2JiNGY4MjEx
NzBiNTMwZDAeFw0yMzExMDgwOTE2NTJaFw0yNDExMDYwOTIxNTJaMDMxMTAvBgNV
BAMTKDI0QTk2MzM2MEY5MDZFM0ZENEU0OTlDNkJGRjdFN0RGQ0Y3NEQ0QkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkOPRgvAyhhhQ8EY5+xGT6f5YJ
F7+g1y2X39j3VvaXsGy6/884FW0Pwt5ymU+ESVksZS+sfblbkLYX4eMUiXM0N2rG
1Jhp1U871A+WuD8a1AY7TAOXMRERYnyrYhuLLMpF8FSV3ZYzntbd+Fd3vLSvAevq
0YGfJszNgDyPH9g0F6p+07bDvQq2D6UjvjBI8G0bgCbuV3CyWor9/wRDWXGNniJ8
6IcHjCFbyYuC/hA/EPqEtJP3RONdZg+W81tdL+bvbE2MOKQRsBW/oZHQIZbJPKGH
IFyHr3xmI5Sg7UU9qAF2K1c3F5GjG9KBJwMESgiVC0qH5FEZ3KxW0Jv0NDHnAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUJKljNg+Qbj/U5JnGv/fn38901LswHwYDVR0j
BBgwFoAU3JQ8wqfNw3ijdwJXO7T4IRcLUw0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNmFiMDcyMmYtNjRkOC00Y2E5LTkyNjctNGU1MTU0NDM0
MTAxLzAvREM5NDNDQzJBN0NEQzM3OEEzNzcwMjU3M0JCNEY4MjExNzBCNTMwRC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNKUTh3cWZOdzNpamR3SlhPN1Q0SVJj
TFV3MC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNmFiMDcyMmYt
NjRkOC00Y2E5LTkyNjctNGU1MTU0NDM0MTAxLzAvMzgzNTJlMzIzMzM3MmUzMjMx
MzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
Ve3WMA0GCSqGSIb3DQEBCwUAA4IBAQABYauBKdu1Wk80KZMjxLkYJXYcIuYf/rf1
fSQmz7vzbkhgv0ANWMKYn87x+qqcl/ys02tdGeRL+GXstqiHmDW386EwZXcu/88o
lQU5aHGdck3IeJ+h1pD2045JBL0doK0yBrIsLBx+EBEmKgLMSb8M5Hd3x3I4cCe0
ZaAgg9u6wmvZtmXAU3LmYjOH7ymemn3T9IZdpQIKrn+nnlQm+p3tKHr1YYrepEWR
/n/tVSxyOysVz1zq4Q18FvrQP/qrOXu6NtplqHcl3h2SK9ZXDTkmdSx9W82FmMWJ
FYTD7oMxsab+q7ODpL4eIsPb1gCpAQHg7JQFiz9fE8BHFPreKesn
-----END CERTIFICATE-----
Generated at Sat May 4 11:36:52 2024 by rpki-client on console-fra.rpki-client.org