Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/3138352e33372e3231362e302f32332d3234203d3e20323132323338.roa
File: 3138352e33372e3231362e302f32332d3234203d3e20323132323338.roa (raw, json)
Hash identifier: yiBtmTjnRKXHJq5A9F2Nv4U2Oe6llhm24TC0e/6krKA=
Subject key identifier: 73:DE:8D:51:35:79:43:14:1A:AB:4C:08:DD:3B:D7:76:3B:7C:3D:4A
Certificate issuer: /CN=edb9f3e6d8e4b57c49301aa621ef1f90389e057a
Certificate serial: 14EE2DDB2D8E2A9DE7C930541785A5894C2DB909
Authority key identifier: ED:B9:F3:E6:D8:E4:B5:7C:49:30:1A:A6:21:EF:1F:90:38:9E:05:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bnz5tjktXxJMBqmIe8fkDieBXo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/3138352e33372e3231362e302f32332d3234203d3e20323132323338.roa
Signing time: Thu 21 Sep 2023 14:10:16 +0000
ROA not before: Thu 21 Sep 2023 14:05:16 +0000
ROA not after: Thu 19 Sep 2024 14:10:16 +0000
asID: 212238
IP address blocks: 185.37.216.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/EDB9F3E6D8E4B57C49301AA621EF1F90389E057A.crl
rsync://rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/EDB9F3E6D8E4B57C49301AA621EF1F90389E057A.mft
rsync://rpki.ripe.net/repository/DEFAULT/7bnz5tjktXxJMBqmIe8fkDieBXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:ee:2d:db:2d:8e:2a:9d:e7:c9:30:54:17:85:a5:89:4c:2d:b9:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb9f3e6d8e4b57c49301aa621ef1f90389e057a
Validity
Not Before: Sep 21 14:05:16 2023 GMT
Not After : Sep 19 14:10:16 2024 GMT
Subject: CN=73DE8D51357943141AAB4C08DD3BD7763B7C3D4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:89:cd:91:3b:8a:fa:b3:6c:5b:37:0e:3c:d9:
01:1e:64:14:de:8e:cb:6d:72:aa:dd:3d:8c:95:08:
26:c5:19:01:6b:c4:74:36:00:f2:4d:d8:f1:6d:33:
38:a1:1e:d4:d3:b2:91:38:6b:54:b9:95:0c:38:ea:
65:2e:a9:bf:10:a1:10:99:41:d9:a1:fc:5a:8a:4a:
81:eb:bb:72:6a:13:ae:f2:37:8b:24:35:34:b5:03:
98:4f:20:72:4c:0d:da:b3:74:ec:80:0c:62:e7:fb:
2a:fc:61:9b:96:91:d4:73:15:60:7e:7b:f9:47:93:
3c:2c:dd:29:fb:dd:0b:d1:82:a1:d6:80:ac:5c:71:
f3:b7:ee:26:85:de:ce:3c:65:1d:e6:73:69:54:1b:
ee:c9:aa:cd:25:c8:9c:0e:80:06:e1:4f:c3:7b:37:
a3:21:52:21:24:48:4f:4b:18:f4:d2:21:03:a2:f8:
1a:31:ea:9e:26:6e:55:46:ca:d9:f6:52:22:e6:02:
e1:a0:2f:97:bf:d3:ff:73:5d:65:18:41:f9:a7:71:
58:03:3b:c4:34:b1:eb:48:64:7d:56:81:3b:00:ca:
5f:a1:a3:3d:67:ad:ee:99:6c:a2:67:8c:ae:82:24:
1d:a9:2c:2a:62:59:33:f0:bb:90:34:3f:c1:ee:48:
da:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:DE:8D:51:35:79:43:14:1A:AB:4C:08:DD:3B:D7:76:3B:7C:3D:4A
X509v3 Authority Key Identifier:
keyid:ED:B9:F3:E6:D8:E4:B5:7C:49:30:1A:A6:21:EF:1F:90:38:9E:05:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/EDB9F3E6D8E4B57C49301AA621EF1F90389E057A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bnz5tjktXxJMBqmIe8fkDieBXo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6cfa4a2c-e145-414d-a62f-09a3f9b575fd/0/3138352e33372e3231362e302f32332d3234203d3e20323132323338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.216.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:6e:da:07:40:11:33:0c:02:02:48:fd:39:78:8f:d5:39:61:
b3:df:8b:d9:6e:c3:31:89:0f:8c:b5:c0:38:7f:6c:de:57:a6:
64:49:d4:c2:32:04:e1:58:07:79:59:52:10:95:28:8b:38:7c:
4f:01:c3:b8:22:97:42:2b:88:7e:7e:8f:c7:5b:a6:4f:03:0a:
36:c6:33:96:d6:ee:e1:a8:84:38:81:25:ba:64:09:1e:21:46:
25:fa:2e:98:ea:a5:8e:ea:d3:cd:d8:62:c0:29:28:62:eb:d5:
c1:b0:46:43:9b:11:ef:70:af:56:bf:25:12:dc:a4:1a:8b:f3:
dd:8f:b5:f1:90:71:9a:73:22:dd:ab:0e:c6:3a:6a:f8:9e:d4:
5a:26:19:a3:58:f4:f4:40:78:9b:7a:cc:30:07:4f:83:bd:d9:
4a:56:75:ed:f1:1a:7f:9e:8a:2e:98:30:cd:fc:af:93:bf:34:
72:a3:02:ee:8b:13:01:15:44:e4:8e:73:85:41:56:46:94:23:
fa:c9:32:32:7f:40:3c:77:c7:66:15:3b:01:7e:f9:d4:65:c7:
0b:46:22:47:97:d8:1b:c4:41:c2:c2:bb:2a:38:10:71:bd:51:
f4:96:ce:c2:55:54:3e:96:ae:4d:e7:42:c8:e4:06:7b:01:f3:
e8:5b:fc:56
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUFO4t2y2OKp3nyTBUF4WliUwtuQkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZWRiOWYzZTZkOGU0YjU3YzQ5MzAxYWE2MjFlZjFmOTAz
ODllMDU3YTAeFw0yMzA5MjExNDA1MTZaFw0yNDA5MTkxNDEwMTZaMDMxMTAvBgNV
BAMTKDczREU4RDUxMzU3OTQzMTQxQUFCNEMwOEREM0JENzc2M0I3QzNENEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9ic2RO4r6s2xbNw482QEeZBTe
jsttcqrdPYyVCCbFGQFrxHQ2APJN2PFtMzihHtTTspE4a1S5lQw46mUuqb8QoRCZ
Qdmh/FqKSoHru3JqE67yN4skNTS1A5hPIHJMDdqzdOyADGLn+yr8YZuWkdRzFWB+
e/lHkzws3Sn73QvRgqHWgKxccfO37iaF3s48ZR3mc2lUG+7Jqs0lyJwOgAbhT8N7
N6MhUiEkSE9LGPTSIQOi+Box6p4mblVGytn2UiLmAuGgL5e/0/9zXWUYQfmncVgD
O8Q0setIZH1WgTsAyl+hoz1nre6ZbKJnjK6CJB2pLCpiWTPwu5A0P8HuSNr5AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUc96NUTV5QxQaq0wI3TvXdjt8PUowHwYDVR0j
BBgwFoAU7bnz5tjktXxJMBqmIe8fkDieBXowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNmNmYTRhMmMtZTE0NS00MTRkLWE2MmYtMDlhM2Y5YjU3
NWZkLzAvRURCOUYzRTZEOEU0QjU3QzQ5MzAxQUE2MjFFRjFGOTAzODlFMDU3QS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzdibno1dGprdFh4Sk1CcW1JZThma0Rp
ZUJYby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNmNmYTRhMmMt
ZTE0NS00MTRkLWE2MmYtMDlhM2Y5YjU3NWZkLzAvMzEzODM1MmUzMzM3MmUzMjMx
MzYyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMjMxMzIzMjMzMzgucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAG5JdgwDQYJKoZIhvcNAQELBQADggEBAG5u2gdAETMMAgJI/Tl4j9U5YbPfi9lu
wzGJD4y1wDh/bN5XpmRJ1MIyBOFYB3lZUhCVKIs4fE8Bw7gil0IriH5+j8dbpk8D
CjbGM5bW7uGohDiBJbpkCR4hRiX6LpjqpY7q083YYsApKGLr1cGwRkObEe9wr1a/
JRLcpBqL892PtfGQcZpzIt2rDsY6avie1FomGaNY9PRAeJt6zDAHT4O92UpWde3x
Gn+eii6YMM38r5O/NHKjAu6LEwEVROSOc4VBVkaUI/rJMjJ/QDx3x2YVOwF++dRl
xwtGIkeX2BvEQcLCuyo4EHG9UfSWzsJVVD6Wrk3nQsjkBnsB8+hb/FY=
-----END CERTIFICATE-----
Generated at Wed May 8 03:59:19 2024 by rpki-client on console-fra.rpki-client.org