Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32322d3234203d3e203631333137.roa
File: 38332e3135302e3231362e302f32322d3234203d3e203631333137.roa (raw, json)
Hash identifier: jbVhNHB0ZHZs6ckL9vuzjHCnniEYeSr/hN2jw5TlTMk=
Subject key identifier: 16:B1:99:15:14:94:4D:CC:40:E8:CE:E2:D2:3D:40:12:87:4D:72:E3
Certificate issuer: /CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Certificate serial: 78709E9C317DD8E6F47B41DE5B8BD48FC1B1E800
Authority key identifier: 5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32322d3234203d3e203631333137.roa
Signing time: Thu 07 Dec 2023 17:05:08 +0000
ROA not before: Thu 07 Dec 2023 17:00:08 +0000
ROA not after: Thu 05 Dec 2024 17:05:08 +0000
asID: 61317
IP address blocks: 83.150.216.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:70:9e:9c:31:7d:d8:e6:f4:7b:41:de:5b:8b:d4:8f:c1:b1:e8:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Validity
Not Before: Dec 7 17:00:08 2023 GMT
Not After : Dec 5 17:05:08 2024 GMT
Subject: CN=16B1991514944DCC40E8CEE2D23D4012874D72E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d3:9c:5d:5d:ea:02:67:e7:a1:53:42:43:f0:
9e:1a:9e:54:c3:0b:a4:d4:16:3d:0f:f3:03:96:05:
5b:83:a3:b7:46:7a:31:99:7d:45:33:db:82:28:10:
f5:a7:e2:6f:6d:8c:6e:bc:cd:63:7a:49:18:0a:99:
20:75:92:46:36:d2:fe:78:36:61:98:70:d4:16:b1:
85:7e:bf:5f:ae:44:15:f1:d1:7d:ca:4b:63:c5:d6:
95:b5:5e:de:21:13:4d:89:d2:75:3a:11:86:6f:a7:
21:b2:45:ab:a0:c4:26:4d:4c:72:81:3f:72:ca:aa:
1c:92:6a:4f:1c:bc:3c:5e:18:dc:d1:42:7e:31:01:
fb:e3:0e:d1:47:b2:22:a9:1d:a8:e5:01:e6:72:b5:
24:8b:2e:33:a7:8e:2f:e5:a7:30:ff:81:c9:d8:cd:
a0:a1:29:a4:30:23:a7:38:2e:08:7e:a6:24:c7:02:
48:f9:25:64:ef:81:3c:07:e0:78:bb:d0:7e:9c:58:
b1:2a:4b:6d:1b:52:b7:fb:67:c3:ec:7b:dd:e5:15:
20:93:6c:d0:12:36:0d:d9:8a:95:a6:f5:8e:f4:6a:
4f:cd:92:72:c4:11:46:6e:54:ca:a7:24:01:f5:58:
8c:f4:84:4f:20:a8:2d:a1:77:ec:c8:2e:2d:c6:3b:
fe:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:B1:99:15:14:94:4D:CC:40:E8:CE:E2:D2:3D:40:12:87:4D:72:E3
X509v3 Authority Key Identifier:
keyid:5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231362e302f32322d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.216.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:a1:3e:08:6b:9b:81:44:ba:37:98:c4:c4:3d:c1:b6:14:53:
de:ce:21:ef:41:36:aa:1a:ad:19:ca:a6:a2:7e:8d:ed:8b:36:
28:39:71:da:c0:d3:81:93:5e:23:c1:68:c9:6d:aa:97:d9:bd:
af:12:4c:6a:80:fb:45:3c:6e:97:e3:68:6f:43:12:81:4f:c0:
4b:7b:3a:ac:f3:6d:dd:e6:ee:73:e1:b5:12:60:26:43:9b:e1:
e8:0e:bb:fd:ee:fa:c0:90:c1:94:95:a9:00:9c:92:70:bf:83:
97:d1:49:45:98:59:ce:a3:61:0a:e6:5c:0e:1e:dc:11:c4:08:
bc:f5:8a:bb:cb:c5:1f:9d:ce:a8:7f:a5:d1:b9:72:ad:6e:9d:
fd:f9:08:2a:e5:23:9b:bf:4e:35:c6:8a:b8:8c:30:ac:fb:cd:
71:71:ed:67:e2:8f:45:e4:54:3f:12:2b:4a:7d:9e:06:68:ab:
c0:80:ee:e3:ca:ae:14:09:67:0b:78:2c:77:51:76:c5:fa:d4:
49:5b:2c:81:fd:90:7a:7c:0b:53:e4:a6:12:11:01:82:e3:f2:
88:f9:41:4c:79:7f:b9:59:7f:91:0f:9b:46:1b:86:e7:c2:6a:
c0:e6:fd:cf:75:9d:53:9d:1f:16:c3:84:2e:18:96:f2:84:96:
e3:4a:f4:22
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUeHCenDF92Ob0e0HeW4vUj8Gx6AAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWU1MTc5YmIxNzU3MDY4ZDcwMjg1MTBmZWViMTE3N2Fh
N2NjODgxODAeFw0yMzEyMDcxNzAwMDhaFw0yNDEyMDUxNzA1MDhaMDMxMTAvBgNV
BAMTKDE2QjE5OTE1MTQ5NDREQ0M0MEU4Q0VFMkQyM0Q0MDEyODc0RDcyRTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv05xdXeoCZ+ehU0JD8J4anlTD
C6TUFj0P8wOWBVuDo7dGejGZfUUz24IoEPWn4m9tjG68zWN6SRgKmSB1kkY20v54
NmGYcNQWsYV+v1+uRBXx0X3KS2PF1pW1Xt4hE02J0nU6EYZvpyGyRaugxCZNTHKB
P3LKqhySak8cvDxeGNzRQn4xAfvjDtFHsiKpHajlAeZytSSLLjOnji/lpzD/gcnY
zaChKaQwI6c4Lgh+piTHAkj5JWTvgTwH4Hi70H6cWLEqS20bUrf7Z8Pse93lFSCT
bNASNg3ZipWm9Y70ak/NknLEEUZuVMqnJAH1WIz0hE8gqC2hd+zILi3GO/4tAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUFrGZFRSUTcxA6M7i0j1AEodNcuMwHwYDVR0j
BBgwFoAUXlF5uxdXBo1wKFEP7rEXeqfMiBgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODNlNDc1N2YtZDM3Zi00ZmQ2LWE2OWItZDc0YmRkNmI4
N2RjLzAvNUU1MTc5QkIxNzU3MDY4RDcwMjg1MTBGRUVCMTE3N0FBN0NDODgxOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hsRjV1eGRYQm8xd0tGRVA3ckVYZXFm
TWlCZy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODNlNDc1N2Yt
ZDM3Zi00ZmQ2LWE2OWItZDc0YmRkNmI4N2RjLzAvMzgzMzJlMzEzNTMwMmUzMjMx
MzYyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC
U5bYMA0GCSqGSIb3DQEBCwUAA4IBAQC2oT4Ia5uBRLo3mMTEPcG2FFPeziHvQTaq
Gq0Zyqaifo3tizYoOXHawNOBk14jwWjJbaqX2b2vEkxqgPtFPG6X42hvQxKBT8BL
ezqs823d5u5z4bUSYCZDm+HoDrv97vrAkMGUlakAnJJwv4OX0UlFmFnOo2EK5lwO
HtwRxAi89Yq7y8Ufnc6of6XRuXKtbp39+Qgq5SObv041xoq4jDCs+81xce1n4o9F
5FQ/EitKfZ4GaKvAgO7jyq4UCWcLeCx3UXbF+tRJWyyB/ZB6fAtT5KYSEQGC4/KI
+UFMeX+5WX+RD5tGG4bnwmrA5v3PdZ1TnR8Ww4QuGJbyhJbjSvQi
-----END CERTIFICATE-----
Generated at Sat May 4 01:11:17 2024 by rpki-client on console-ams.rpki-client.org