Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3130302e3231332e302f32342d3234203d3e20323038393439.roa
File: 3138352e3130302e3231332e302f32342d3234203d3e20323038393439.roa (raw, json)
Hash identifier: iiA9wBWbuM3Drbm29gQpSaXzLtnC5a+ye6JCXAkUn4s=
Subject key identifier: 0F:83:8B:4D:35:00:77:CB:F8:02:01:82:38:8C:CC:A4:5A:47:5B:F4
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 0B90AE22F5EA14E574DF477F633D182499E6DB93
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3130302e3231332e302f32342d3234203d3e20323038393439.roa
Signing time: Wed 08 Nov 2023 09:23:34 +0000
ROA not before: Wed 08 Nov 2023 09:18:34 +0000
ROA not after: Wed 06 Nov 2024 09:23:34 +0000
asID: 208949
IP address blocks: 185.100.213.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 14:49:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:90:ae:22:f5:ea:14:e5:74:df:47:7f:63:3d:18:24:99:e6:db:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Nov 8 09:18:34 2023 GMT
Not After : Nov 6 09:23:34 2024 GMT
Subject: CN=0F838B4D350077CBF8020182388CCCA45A475BF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:e3:0a:74:cd:d0:f1:21:30:a7:29:56:b5:64:
c2:51:9d:e2:97:7a:89:a9:f2:14:7d:c2:1a:6e:7b:
19:ff:fc:1c:63:7a:c0:70:f6:8f:f0:d1:98:a4:e7:
6a:ef:c3:33:0e:e2:29:96:a1:72:b5:59:b0:0a:2d:
84:db:54:08:4f:1b:68:e4:73:43:9f:1c:aa:42:3b:
92:bf:01:62:67:31:11:28:97:ad:ca:5e:98:09:52:
78:73:93:9b:d5:eb:a2:6d:36:29:ff:a8:05:cb:37:
9b:a3:bc:9c:40:4c:69:92:bd:c0:ad:88:7d:f6:ee:
7a:4d:f7:ed:77:f6:f7:91:88:e1:ef:41:ab:70:43:
2c:17:11:50:3b:e3:84:b6:1c:d7:dc:c4:f6:9d:45:
b3:73:76:fd:17:b1:30:29:c5:ee:30:90:56:29:6a:
2b:c6:21:22:17:8b:8e:a1:1d:c4:1a:12:16:56:7c:
75:fa:4a:09:06:f1:01:c5:22:6a:81:91:01:d9:cd:
0e:a0:7c:9a:e6:6e:85:09:cf:f0:08:72:64:cd:25:
4a:3d:b5:9d:81:c2:06:97:3b:2d:d6:fb:3a:de:5b:
cd:9a:51:9e:f5:bb:33:36:21:ef:b1:a6:4d:a9:17:
6d:99:16:14:95:cd:2a:75:3e:8f:75:28:21:61:66:
e8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:83:8B:4D:35:00:77:CB:F8:02:01:82:38:8C:CC:A4:5A:47:5B:F4
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3130302e3231332e302f32342d3234203d3e20323038393439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.213.0/24
Signature Algorithm: sha256WithRSAEncryption
18:7b:c7:91:69:a1:69:0d:13:48:7f:b1:91:80:53:2b:60:6b:
70:60:13:87:59:08:10:80:15:d9:74:af:9e:dd:a5:3e:92:2e:
20:59:a0:42:da:98:d2:ae:77:75:44:e6:5c:a2:7d:c0:a9:63:
d3:43:62:01:f2:01:e2:69:d6:2f:15:09:66:bb:a5:c3:6c:a9:
12:cf:67:ff:bf:33:f0:f9:9f:86:fe:72:1e:91:b8:93:97:2b:
6f:5e:c1:28:41:72:f5:ac:57:7b:92:df:c7:a5:a4:ed:61:22:
2d:53:08:fb:ce:91:ba:aa:b8:eb:a6:c2:61:41:5d:86:83:a3:
ec:cd:e9:a1:b5:af:bc:9a:65:21:5e:bc:e7:7f:44:9f:25:84:
5c:af:18:8a:ea:0a:1f:a0:e8:b0:06:92:5f:11:21:67:a0:78:
69:18:46:1f:22:c8:01:d5:c1:59:91:73:65:c8:a9:7f:26:89:
d8:c0:f2:cc:12:a1:1e:6e:a8:0f:2f:33:fc:b2:aa:b0:71:88:
a5:4f:4c:5d:7a:93:7b:54:80:0f:0f:7f:3b:33:6e:86:e0:e8:
74:e6:11:f7:cd:07:c6:f5:7c:5b:30:eb:92:9a:e1:1b:0e:8c:
2c:ca:53:c3:23:fb:98:99:b6:7a:d6:e6:5a:21:54:f9:0b:7d:
44:d2:d1:5b
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUC5CuIvXqFOV030d/Yz0YJJnm25MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZGM5NDNjYzJhN2NkYzM3OGEzNzcwMjU3M2JiNGY4MjEx
NzBiNTMwZDAeFw0yMzExMDgwOTE4MzRaFw0yNDExMDYwOTIzMzRaMDMxMTAvBgNV
BAMTKDBGODM4QjREMzUwMDc3Q0JGODAyMDE4MjM4OENDQ0E0NUE0NzVCRjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD14wp0zdDxITCnKVa1ZMJRneKX
eomp8hR9whpuexn//BxjesBw9o/w0Zik52rvwzMO4imWoXK1WbAKLYTbVAhPG2jk
c0OfHKpCO5K/AWJnMREol63KXpgJUnhzk5vV66JtNin/qAXLN5ujvJxATGmSvcCt
iH327npN9+139veRiOHvQatwQywXEVA744S2HNfcxPadRbNzdv0XsTApxe4wkFYp
aivGISIXi46hHcQaEhZWfHX6SgkG8QHFImqBkQHZzQ6gfJrmboUJz/AIcmTNJUo9
tZ2BwgaXOy3W+zreW82aUZ71uzM2Ie+xpk2pF22ZFhSVzSp1Po91KCFhZuh/AgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQUD4OLTTUAd8v4AgGCOIzMpFpHW/QwHwYDVR0j
BBgwFoAU3JQ8wqfNw3ijdwJXO7T4IRcLUw0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNmFiMDcyMmYtNjRkOC00Y2E5LTkyNjctNGU1MTU0NDM0
MTAxLzAvREM5NDNDQzJBN0NEQzM3OEEzNzcwMjU3M0JCNEY4MjExNzBCNTMwRC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNKUTh3cWZOdzNpamR3SlhPN1Q0SVJj
TFV3MC5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNmFiMDcyMmYt
NjRkOC00Y2E5LTkyNjctNGU1MTU0NDM0MTAxLzAvMzEzODM1MmUzMTMwMzAyZTMy
MzEzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzODM5MzQzOS5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEALlk1TANBgkqhkiG9w0BAQsFAAOCAQEAGHvHkWmhaQ0TSH+xkYBTK2BrcGAT
h1kIEIAV2XSvnt2lPpIuIFmgQtqY0q53dUTmXKJ9wKlj00NiAfIB4mnWLxUJZrul
w2ypEs9n/78z8Pmfhv5yHpG4k5crb17BKEFy9axXe5Lfx6Wk7WEiLVMI+86Ruqq4
66bCYUFdhoOj7M3pobWvvJplIV68539EnyWEXK8YiuoKH6DosAaSXxEhZ6B4aRhG
HyLIAdXBWZFzZcipfyaJ2MDyzBKhHm6oDy8z/LKqsHGIpU9MXXqTe1SADw9/OzNu
huDodOYR980HxvV8WzDrkprhGw6MLMpTwyP7mJm2etbmWiFU+Qt9RNLRWw==
-----END CERTIFICATE-----
Generated at Thu May 16 17:48:53 2024 by rpki-client on console-fra.rpki-client.org