Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135352e302f32342d3234203d3e203631333137.roa
File: 3138382e3136342e3135352e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: syHLKUCrrSL202GrGJ3NuZac54E/qY4STX4RLb/6uOw=
Subject key identifier: F1:F7:1E:5E:ED:96:CC:CD:A8:90:C6:FB:02:BB:EC:AF:FA:64:7C:EE
Certificate issuer: /CN=8b9ba9adde9635777bf586fd493e14cd30f7c4ca
Certificate serial: 3C81525C05DAD3F561552F5BBACA9DD95B1363E9
Authority key identifier: 8B:9B:A9:AD:DE:96:35:77:7B:F5:86:FD:49:3E:14:CD:30:F7:C4:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135352e302f32342d3234203d3e203631333137.roa
Signing time: Tue 01 Aug 2023 14:00:34 +0000
ROA not before: Tue 01 Aug 2023 13:55:34 +0000
ROA not after: Tue 30 Jul 2024 14:00:34 +0000
asID: 61317
IP address blocks: 188.164.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.crl
rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.mft
rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:81:52:5c:05:da:d3:f5:61:55:2f:5b:ba:ca:9d:d9:5b:13:63:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b9ba9adde9635777bf586fd493e14cd30f7c4ca
Validity
Not Before: Aug 1 13:55:34 2023 GMT
Not After : Jul 30 14:00:34 2024 GMT
Subject: CN=F1F71E5EED96CCCDA890C6FB02BBECAFFA647CEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:50:b3:ac:47:65:a9:ce:76:f2:dd:a5:77:20:
e2:39:a3:b5:77:32:94:12:e4:61:41:66:46:36:1d:
4b:cd:82:13:25:a9:ce:50:aa:21:87:dc:54:cd:6e:
72:a8:75:3d:78:23:bb:be:b6:b5:aa:36:90:76:66:
10:ff:7a:d9:86:7c:c0:c2:4b:e2:06:07:44:a5:ed:
a1:d1:83:2c:68:0c:45:e3:28:af:0a:5f:b9:3a:91:
d6:c0:79:63:40:ee:d9:24:aa:92:2a:99:c4:94:0b:
0e:01:c6:7b:53:a5:2f:cc:f1:22:88:e2:ca:74:7c:
fb:96:19:01:ea:82:ed:90:1b:8e:9c:4e:ad:de:0b:
5a:d1:06:12:d4:5f:dc:79:d0:24:61:69:5a:1e:82:
47:73:92:13:6a:67:55:18:12:4a:17:3d:9a:33:0a:
54:57:bd:cd:07:53:15:ce:16:b0:d2:b7:09:56:7c:
19:20:cb:04:e8:29:bd:85:e1:54:48:f0:17:8e:a9:
f8:ca:fc:3f:e9:94:84:c5:80:9a:58:b3:cc:39:f1:
cb:a5:3f:cc:6a:f1:02:f6:31:c8:d0:f1:ee:5c:24:
81:d3:90:9c:26:77:be:3f:38:f6:2f:0e:84:28:5f:
77:ea:c9:dc:1c:54:7c:a0:8a:7a:12:56:56:53:da:
a6:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F7:1E:5E:ED:96:CC:CD:A8:90:C6:FB:02:BB:EC:AF:FA:64:7C:EE
X509v3 Authority Key Identifier:
keyid:8B:9B:A9:AD:DE:96:35:77:7B:F5:86:FD:49:3E:14:CD:30:F7:C4:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135352e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.164.155.0/24
Signature Algorithm: sha256WithRSAEncryption
90:f3:23:46:87:a4:f6:d3:70:ec:ba:32:2e:f4:77:9b:e7:70:
21:f0:0c:4a:5f:d6:64:44:28:40:d2:fe:2d:12:f5:67:89:f3:
2f:76:74:72:50:62:ac:54:51:7d:83:16:66:96:f0:df:bc:b6:
71:8e:0f:47:f9:98:53:28:75:f7:4e:43:78:b0:b3:f3:67:10:
1b:c3:c2:db:f6:ee:4b:a3:33:3f:21:90:77:b0:a2:59:1b:89:
51:49:7c:7d:a0:4a:45:e1:94:25:ac:27:da:68:f2:f1:5c:e4:
ae:bf:5d:3b:47:97:c1:cc:44:19:27:15:52:a2:a2:af:20:e0:
05:0b:15:ff:a5:05:10:58:90:8c:a8:dd:b0:58:43:8d:92:c7:
76:e3:e7:c3:10:b2:a6:62:e8:7c:50:fe:65:db:89:d0:15:4f:
ec:0d:f6:6c:7c:59:ee:30:ec:01:69:10:5e:78:17:ef:c9:f3:
9e:6c:39:10:7a:eb:45:42:fb:ca:62:3f:02:69:1a:d9:93:75:
e1:8d:f8:6c:52:9e:22:08:ac:74:f0:68:44:89:34:e0:5e:d9:
f5:03:b6:aa:0b:ba:1f:77:ef:59:18:9a:23:03:5e:4d:98:3f:
14:c4:7d:fb:a5:5f:8a:bd:0b:ae:da:81:92:bf:ca:aa:ff:aa:
80:8e:6c:c5
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUPIFSXAXa0/VhVS9busqd2VsTY+kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI5YmE5YWRkZTk2MzU3NzdiZjU4NmZkNDkzZTE0Y2Qz
MGY3YzRjYTAeFw0yMzA4MDExMzU1MzRaFw0yNDA3MzAxNDAwMzRaMDMxMTAvBgNV
BAMTKEYxRjcxRTVFRUQ5NkNDQ0RBODkwQzZGQjAyQkJFQ0FGRkE2NDdDRUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcULOsR2Wpznby3aV3IOI5o7V3
MpQS5GFBZkY2HUvNghMlqc5QqiGH3FTNbnKodT14I7u+trWqNpB2ZhD/etmGfMDC
S+IGB0Sl7aHRgyxoDEXjKK8KX7k6kdbAeWNA7tkkqpIqmcSUCw4BxntTpS/M8SKI
4sp0fPuWGQHqgu2QG46cTq3eC1rRBhLUX9x50CRhaVoegkdzkhNqZ1UYEkoXPZoz
ClRXvc0HUxXOFrDStwlWfBkgywToKb2F4VRI8BeOqfjK/D/plITFgJpYs8w58cul
P8xq8QL2McjQ8e5cJIHTkJwmd74/OPYvDoQoX3fqydwcVHyginoSVlZT2qbXAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU8fceXu2WzM2okMb7Arvsr/pkfO4wHwYDVR0j
BBgwFoAUi5uprd6WNXd79Yb9ST4UzTD3xMowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNmMwMzA4OTAtZjZlMC00MTBjLWJjOTktYWYwOTIxZDFj
M2E0LzAvOEI5QkE5QURERTk2MzU3NzdCRjU4NkZENDkzRTE0Q0QzMEY3QzRDQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2k1dXByZDZXTlhkNzlZYjlTVDRVelRE
M3hNby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNmMwMzA4OTAt
ZjZlMC00MTBjLWJjOTktYWYwOTIxZDFjM2E0LzAvMzEzODM4MmUzMTM2MzQyZTMx
MzUzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM2MzEzMzMxMzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC8pJswDQYJKoZIhvcNAQELBQADggEBAJDzI0aHpPbTcOy6Mi70d5vncCHwDEpf
1mREKEDS/i0S9WeJ8y92dHJQYqxUUX2DFmaW8N+8tnGOD0f5mFModfdOQ3iws/Nn
EBvDwtv27kujMz8hkHewolkbiVFJfH2gSkXhlCWsJ9po8vFc5K6/XTtHl8HMRBkn
FVKioq8g4AULFf+lBRBYkIyo3bBYQ42Sx3bj58MQsqZi6HxQ/mXbidAVT+wN9mx8
We4w7AFpEF54F+/J855sORB660VC+8piPwJpGtmTdeGN+GxSniIIrHTwaESJNOBe
2fUDtqoLuh9371kYmiMDXk2YPxTEffulX4q9C67agZK/yqr/qoCObMU=
-----END CERTIFICATE-----
Generated at Sat May 4 11:29:12 2024 by rpki-client on console-ams.rpki-client.org