Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136372e302f32342d3234203d3e203232333633.roa
File: 3138352e32392e3136372e302f32342d3234203d3e203232333633.roa (raw, json)
Hash identifier: EWLoT/XWT59ppbW5ARk+Z8s0H4leFj4nPGrLTqw1unU=
Subject key identifier: AC:8C:CB:4F:7C:EA:2E:4E:32:C8:E3:16:A2:DE:AA:8B:30:B0:6A:FC
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 37A8FB9F1A3D27E250684392C4ADBE1FFA661EC2
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136372e302f32342d3234203d3e203232333633.roa
Signing time: Mon 02 Oct 2023 05:23:25 +0000
ROA not before: Mon 02 Oct 2023 05:18:25 +0000
ROA not after: Mon 30 Sep 2024 05:23:25 +0000
asID: 22363
IP address blocks: 185.29.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:a8:fb:9f:1a:3d:27:e2:50:68:43:92:c4:ad:be:1f:fa:66:1e:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Oct 2 05:18:25 2023 GMT
Not After : Sep 30 05:23:25 2024 GMT
Subject: CN=AC8CCB4F7CEA2E4E32C8E316A2DEAA8B30B06AFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:6f:ac:2e:e9:f2:4b:8f:1d:66:37:d7:44:82:
a6:09:ae:b4:9d:a9:3e:be:74:ca:f7:fe:a2:c3:e7:
a0:5a:16:7a:9b:a6:90:7d:aa:d9:15:4d:ba:eb:0f:
a6:79:a7:12:e5:46:40:ec:dc:ed:a8:6c:54:21:89:
c7:92:56:a2:17:eb:19:eb:e1:54:49:0e:e3:bb:16:
b2:a9:01:4c:f1:66:a7:c3:71:c3:1c:8e:ef:0c:07:
41:cd:70:28:da:04:58:ea:be:c1:8f:8a:e2:9c:d1:
34:a5:71:23:86:38:90:75:2c:b9:8d:f8:91:83:9b:
d6:2b:77:d0:67:54:a4:82:a8:05:ca:06:40:f7:7c:
5e:85:d6:50:83:0c:8f:75:46:57:3a:04:e4:f4:bb:
18:63:d7:08:b9:f1:55:55:f8:70:94:4a:10:71:78:
5a:60:89:3a:5c:77:35:77:4f:89:c0:e5:98:aa:5d:
64:79:ff:55:0b:22:a8:6a:97:23:1c:a5:91:9b:11:
02:2f:e1:1e:90:98:7b:9b:b7:8c:e7:a0:54:29:7b:
ef:62:c7:a6:42:a6:df:08:c4:f6:49:9e:9d:e2:4c:
95:d2:63:c6:38:70:a3:9e:a3:cb:73:61:d7:1e:ea:
70:c7:db:fa:52:a0:67:9b:78:c2:e7:e8:44:d1:52:
5a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:8C:CB:4F:7C:EA:2E:4E:32:C8:E3:16:A2:DE:AA:8B:30:B0:6A:FC
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136372e302f32342d3234203d3e203232333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.29.167.0/24
Signature Algorithm: sha256WithRSAEncryption
47:43:5b:70:66:3c:ea:ad:97:3a:ed:a9:ca:7e:a1:40:a8:f4:
7a:68:db:f8:30:5e:48:18:1a:e0:85:19:15:8d:ea:0d:08:92:
b3:1d:70:a8:e7:eb:f5:84:40:29:b7:e8:21:bc:16:12:73:d7:
a9:61:ce:c1:1e:d8:2d:d8:47:91:71:c9:2d:86:e8:55:5f:8c:
13:90:62:05:31:da:e6:c3:6e:f3:f7:85:e9:3b:44:55:92:8c:
c8:62:c4:bb:32:b0:2e:e9:78:e9:31:23:30:5e:4e:d2:04:60:
ef:43:d5:1b:1a:8e:58:7f:47:e3:c1:e1:9c:87:ec:27:4d:58:
27:8b:9b:31:ba:0d:42:1f:56:39:4e:d1:ca:34:fb:d6:9e:75:
43:a2:c1:53:0e:b0:47:ff:8d:8d:5e:44:ba:1a:d7:16:d1:03:
fd:a1:8d:b8:76:a9:20:49:6c:44:24:2b:2b:9b:d5:e5:2b:30:
e1:33:5f:ab:dc:46:34:31:30:83:31:43:bc:63:b7:8b:bd:77:
42:26:fc:85:6c:f0:a3:35:8b:41:c6:d7:78:fe:c6:2f:d1:fb:
b0:90:5d:18:5f:b1:72:01:b3:ae:54:bc:9f:06:28:ec:aa:43:
0f:c9:75:a4:1f:0c:fd:0a:03:97:9c:72:b7:a8:a6:94:c3:70:
da:bf:73:76
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUN6j7nxo9J+JQaEOSxK2+H/pmHsIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDQ4YWY2NjViZjhiMTg2YjcwMjIwNzU5ZDI2YzU3OGY0
MGI1ZjNlMzAeFw0yMzEwMDIwNTE4MjVaFw0yNDA5MzAwNTIzMjVaMDMxMTAvBgNV
BAMTKEFDOENDQjRGN0NFQTJFNEUzMkM4RTMxNkEyREVBQThCMzBCMDZBRkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPb6wu6fJLjx1mN9dEgqYJrrSd
qT6+dMr3/qLD56BaFnqbppB9qtkVTbrrD6Z5pxLlRkDs3O2obFQhiceSVqIX6xnr
4VRJDuO7FrKpAUzxZqfDccMcju8MB0HNcCjaBFjqvsGPiuKc0TSlcSOGOJB1LLmN
+JGDm9Yrd9BnVKSCqAXKBkD3fF6F1lCDDI91Rlc6BOT0uxhj1wi58VVV+HCUShBx
eFpgiTpcdzV3T4nA5ZiqXWR5/1ULIqhqlyMcpZGbEQIv4R6QmHubt4znoFQpe+9i
x6ZCpt8IxPZJnp3iTJXSY8Y4cKOeo8tzYdce6nDH2/pSoGebeMLn6ETRUlqhAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUrIzLT3zqLk4yyOMWot6qizCwavwwHwYDVR0j
BBgwFoAUBIr2Zb+LGGtwIgdZ0mxXj0C18+MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODJhOWJmNWItMzljMS00MDUwLWIwNzMtNDgwNzViODYx
ZDg3LzAvMDQ4QUY2NjVCRjhCMTg2QjcwMjIwNzU5RDI2QzU3OEY0MEI1RjNFMy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0JJcjJaYi1MR0d0d0lnZFowbXhYajBD
MTgtTS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODJhOWJmNWIt
MzljMS00MDUwLWIwNzMtNDgwNzViODYxZDg3LzAvMzEzODM1MmUzMjM5MmUzMTM2
MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMyMzMzNjMzLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
uR2nMA0GCSqGSIb3DQEBCwUAA4IBAQBHQ1twZjzqrZc67anKfqFAqPR6aNv4MF5I
GBrghRkVjeoNCJKzHXCo5+v1hEApt+ghvBYSc9epYc7BHtgt2EeRcckthuhVX4wT
kGIFMdrmw27z94XpO0RVkozIYsS7MrAu6XjpMSMwXk7SBGDvQ9UbGo5Yf0fjweGc
h+wnTVgni5sxug1CH1Y5TtHKNPvWnnVDosFTDrBH/42NXkS6GtcW0QP9oY24dqkg
SWxEJCsrm9XlKzDhM1+r3EY0MTCDMUO8Y7eLvXdCJvyFbPCjNYtBxtd4/sYv0fuw
kF0YX7FyAbOuVLyfBijsqkMPyXWkHwz9CgOXnHK3qKaUw3Dav3N2
-----END CERTIFICATE-----
Generated at Sat Jun 1 00:49:43 2024 by rpki-client on console-ams.rpki-client.org