Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231382e3132342e302f32332d3332203d3e203531313637.roa
File: 3138352e3231382e3132342e302f32332d3332203d3e203531313637.roa (raw, json)
Hash identifier: rJWTEql0u4pyzX786gKiaeVbsWe9FVLJ99jfedZMHeY=
Subject key identifier: 82:CD:97:3B:25:5D:A5:3E:3A:45:A3:E9:69:C1:F7:B4:2E:3A:0A:F4
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 2D34767C1B8CE4D90B8C016986D354B973C03BB7
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231382e3132342e302f32332d3332203d3e203531313637.roa
Signing time: Fri 20 Oct 2023 13:41:47 +0000
ROA not before: Fri 20 Oct 2023 13:36:47 +0000
ROA not after: Fri 18 Oct 2024 13:41:47 +0000
asID: 51167
IP address blocks: 185.218.124.0/23 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 16:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:34:76:7c:1b:8c:e4:d9:0b:8c:01:69:86:d3:54:b9:73:c0:3b:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:47 2023 GMT
Not After : Oct 18 13:41:47 2024 GMT
Subject: CN=82CD973B255DA53E3A45A3E969C1F7B42E3A0AF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9c:0d:3e:45:7d:eb:a0:ec:f6:2b:28:03:66:
c5:76:e5:37:4a:ef:24:77:01:77:7d:79:b5:f2:55:
e4:66:1b:4d:c9:b2:1a:55:6a:64:e6:9c:39:98:0d:
90:21:17:0a:18:02:dc:ce:4b:41:bf:35:ba:da:8b:
ce:f7:ff:25:22:9d:d0:36:ca:4d:03:ac:e1:0b:89:
78:ef:e5:3a:9d:1a:0a:2d:74:45:44:5f:90:e7:46:
53:86:eb:76:7c:09:ca:e2:e4:13:dd:fb:97:80:54:
85:2a:be:fd:49:a0:70:94:69:fc:3b:66:b6:70:68:
5f:21:12:d1:f4:07:62:78:b6:67:22:20:24:32:63:
ec:f6:97:c7:2b:97:cd:c7:01:55:d0:87:93:4d:7e:
80:5b:6b:74:4b:69:ee:a4:45:49:c9:fa:61:c9:68:
fc:8f:ee:7a:d7:87:01:3f:50:f9:b1:75:37:5f:a8:
86:d6:88:48:d6:73:fa:8d:81:67:a9:fd:ad:b6:d0:
76:93:b4:d7:d8:41:a2:8d:c9:f3:c1:18:96:9c:af:
d5:17:17:f2:1c:97:d3:d4:d9:67:8a:a4:ed:db:77:
ee:2b:22:dd:9e:68:80:03:66:be:78:8e:62:50:f3:
8c:19:c4:bb:4c:a7:ae:fd:fe:77:0f:16:53:f4:3b:
49:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:CD:97:3B:25:5D:A5:3E:3A:45:A3:E9:69:C1:F7:B4:2E:3A:0A:F4
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231382e3132342e302f32332d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.124.0/23
Signature Algorithm: sha256WithRSAEncryption
63:01:20:e4:44:8f:e1:fc:71:5b:3b:bf:cb:3b:0c:92:80:84:
18:39:dc:3b:f4:9f:60:e7:7c:4b:9c:46:cd:38:e3:60:15:2d:
a9:75:e0:9f:c2:3b:6e:6c:2f:f9:f8:4e:06:37:dd:6f:a0:68:
7c:bd:88:3e:85:b3:2a:60:3c:5d:5c:ba:59:7c:39:0e:d8:3a:
f0:6d:f4:bc:08:55:99:91:20:f1:c7:14:b8:f7:ea:b7:e8:ed:
22:a1:25:71:4d:88:60:85:f1:45:54:83:fb:23:8e:23:18:ae:
0c:a1:00:cc:67:d6:ca:5e:51:a9:ac:c7:b3:3d:00:fc:b9:a7:
64:98:86:7a:41:bf:98:91:38:73:d4:d8:c3:06:60:ed:76:c0:
15:2a:1b:fe:98:e4:ac:cd:7a:cb:d1:d8:1f:79:ed:4b:2f:72:
b3:d3:05:3b:fa:0e:b8:7f:40:a9:08:41:0e:19:a2:24:00:f5:
e7:1b:a1:00:7f:2c:be:27:56:9b:22:19:0d:f6:25:bd:86:81:
8e:73:24:b5:eb:66:02:2e:a7:b6:78:d9:a2:fd:0e:48:b9:f8:
85:ee:95:06:1e:35:84:27:c1:d7:ba:38:8d:8b:c2:8c:cc:c5:
fe:f8:8e:d2:1e:d4:79:a2:ea:26:4d:6e:ba:e0:8c:ff:a9:f2:
24:ca:66:20
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIULTR2fBuM5NkLjAFphtNUuXPAO7cwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yMzEwMjAxMzM2NDdaFw0yNDEwMTgxMzQxNDdaMDMxMTAvBgNV
BAMTKDgyQ0Q5NzNCMjU1REE1M0UzQTQ1QTNFOTY5QzFGN0I0MkUzQTBBRjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHnA0+RX3roOz2KygDZsV25TdK
7yR3AXd9ebXyVeRmG03JshpVamTmnDmYDZAhFwoYAtzOS0G/Nbrai873/yUindA2
yk0DrOELiXjv5TqdGgotdEVEX5DnRlOG63Z8Ccri5BPd+5eAVIUqvv1JoHCUafw7
ZrZwaF8hEtH0B2J4tmciICQyY+z2l8crl83HAVXQh5NNfoBba3RLae6kRUnJ+mHJ
aPyP7nrXhwE/UPmxdTdfqIbWiEjWc/qNgWep/a220HaTtNfYQaKNyfPBGJacr9UX
F/Icl9PU2WeKpO3bd+4rIt2eaIADZr54jmJQ84wZxLtMp679/ncPFlP0O0nhAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUgs2XOyVdpT46RaPpacH3tC46CvQwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMxMzgyZTMx
MzIzNDJlMzAyZjMyMzMyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAG52nwwDQYJKoZIhvcNAQELBQADggEBAGMBIOREj+H8cVs7v8s7DJKAhBg53Dv0
n2DnfEucRs0442AVLal14J/CO25sL/n4TgY33W+gaHy9iD6FsypgPF1cull8OQ7Y
OvBt9LwIVZmRIPHHFLj36rfo7SKhJXFNiGCF8UVUg/sjjiMYrgyhAMxn1speUams
x7M9APy5p2SYhnpBv5iROHPU2MMGYO12wBUqG/6Y5KzNesvR2B957UsvcrPTBTv6
Drh/QKkIQQ4ZoiQA9ecboQB/LL4nVpsiGQ32Jb2GgY5zJLXrZgIup7Z42aL9Dki5
+IXulQYeNYQnwde6OI2LwozMxf74jtIe1Hmi6iZNbrrgjP+p8iTKZiA=
-----END CERTIFICATE-----
Generated at Mon May 20 20:18:10 2024 by rpki-client on console-ams.rpki-client.org