Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3133392e32342e302f32342d3234203d3e20313335333931.roa
File: 3138352e3133392e32342e302f32342d3234203d3e20313335333931.roa (raw, json)
Hash identifier: 6unbJzI0pXJmBTAq/v0aR5puibAMLG7zqrekmRh6A1k=
Subject key identifier: BA:78:C4:3E:17:E6:A4:93:0F:13:93:07:9D:79:BD:ED:F3:62:88:A6
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 19770E5E0DB620232CBE9F755E4DA91A6BF78B20
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3133392e32342e302f32342d3234203d3e20313335333931.roa
Signing time: Wed 26 Jun 2024 06:53:12 +0000
ROA not before: Wed 26 Jun 2024 06:48:12 +0000
ROA not after: Wed 25 Jun 2025 06:53:12 +0000
asID: 135391
IP address blocks: 185.139.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:77:0e:5e:0d:b6:20:23:2c:be:9f:75:5e:4d:a9:1a:6b:f7:8b:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Jun 26 06:48:12 2024 GMT
Not After : Jun 25 06:53:12 2025 GMT
Subject: CN=BA78C43E17E6A4930F1393079D79BDEDF36288A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e7:7b:c0:8b:1f:00:87:b8:30:de:63:6b:01:
0c:6f:a9:37:8f:5f:45:c4:82:57:57:c8:dd:f9:53:
cd:48:f8:c5:75:e7:ef:71:87:e9:bc:21:f3:64:44:
15:3f:28:1b:8a:24:f4:88:83:fd:3e:df:b9:b8:14:
0b:59:83:70:1f:a4:de:8e:ca:10:8d:90:e6:48:bc:
30:70:ad:89:26:a8:4f:4b:3e:5f:9b:21:08:e8:f1:
b1:44:f8:77:16:ec:6c:1f:57:69:9a:78:db:d7:46:
ff:ee:6c:6e:fb:eb:7a:aa:52:47:df:10:50:d3:68:
65:b0:66:6e:1e:61:a2:7c:2c:32:fc:8f:5a:d8:be:
44:22:6d:b7:f4:2e:a4:64:b3:56:43:74:d6:e7:6d:
71:2a:11:6d:8a:1c:5c:5c:55:72:93:5a:c6:a3:4c:
cc:4c:d6:37:1e:52:19:97:5f:aa:42:96:13:63:13:
58:65:a8:9a:fc:05:2b:19:94:41:36:2b:a0:77:bb:
45:8a:4b:5f:cd:71:22:9c:a1:d8:61:b9:90:5d:74:
6c:7c:e9:b8:6e:04:d4:68:10:0d:6c:9c:57:11:69:
6c:e4:76:2d:0e:2d:76:83:59:80:0d:dd:60:b9:00:
8b:76:d2:49:2f:73:1f:f3:0b:3f:05:fd:8d:83:da:
58:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:78:C4:3E:17:E6:A4:93:0F:13:93:07:9D:79:BD:ED:F3:62:88:A6
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3133392e32342e302f32342d3234203d3e20313335333931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.24.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:38:80:c7:7e:3e:11:54:4f:6f:61:45:ff:fd:e9:37:86:db:
bc:83:3e:1c:11:25:bb:f8:d1:30:7e:d5:f2:8a:9a:32:6e:d8:
a0:74:f9:21:b9:2f:d2:88:b9:e4:bf:87:0d:be:a7:af:0e:2c:
5d:17:96:67:d7:65:f7:79:46:fb:36:e4:0f:ad:d3:9b:5c:11:
86:f4:f6:91:17:b9:ee:59:3d:34:4e:fe:88:49:2a:ca:ac:78:
11:71:74:fc:bf:91:5b:55:c0:64:6b:4d:b5:a9:97:88:00:0f:
a3:51:09:a6:a0:6c:b8:82:46:ac:bc:e3:16:8c:6a:7d:de:a8:
29:cd:4e:ec:a5:d5:6e:f5:e9:37:da:a1:63:dc:56:6b:3a:0b:
2e:4b:66:e1:4e:a6:24:0e:90:78:3f:6b:8e:6f:b8:df:87:fd:
75:c2:65:65:0f:ed:8b:be:ce:d1:5d:4d:b3:40:ea:6f:96:7c:
57:8c:ef:6a:4e:c4:7e:8d:3c:50:6f:fd:74:86:45:12:b6:58:
50:43:ea:09:18:97:81:45:44:9b:06:a6:2b:98:b2:8b:3f:a7:
67:64:23:35:24:93:84:e9:c7:71:12:46:cb:8d:1c:90:b9:cf:
7a:31:b8:5b:b1:ea:69:8e:cd:ce:45:4a:97:4e:f0:6d:ef:bd:
4d:ae:18:0e
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUGXcOXg22ICMsvp91Xk2pGmv3iyAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZGM5NDNjYzJhN2NkYzM3OGEzNzcwMjU3M2JiNGY4MjEx
NzBiNTMwZDAeFw0yNDA2MjYwNjQ4MTJaFw0yNTA2MjUwNjUzMTJaMDMxMTAvBgNV
BAMTKEJBNzhDNDNFMTdFNkE0OTMwRjEzOTMwNzlENzlCREVERjM2Mjg4QTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC253vAix8Ah7gw3mNrAQxvqTeP
X0XEgldXyN35U81I+MV15+9xh+m8IfNkRBU/KBuKJPSIg/0+37m4FAtZg3AfpN6O
yhCNkOZIvDBwrYkmqE9LPl+bIQjo8bFE+HcW7GwfV2maeNvXRv/ubG7763qqUkff
EFDTaGWwZm4eYaJ8LDL8j1rYvkQibbf0LqRks1ZDdNbnbXEqEW2KHFxcVXKTWsaj
TMxM1jceUhmXX6pClhNjE1hlqJr8BSsZlEE2K6B3u0WKS1/NcSKcodhhuZBddGx8
6bhuBNRoEA1snFcRaWzkdi0OLXaDWYAN3WC5AIt20kkvcx/zCz8F/Y2D2ljpAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUunjEPhfmpJMPE5MHnXm97fNiiKYwHwYDVR0j
BBgwFoAU3JQ8wqfNw3ijdwJXO7T4IRcLUw0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNmFiMDcyMmYtNjRkOC00Y2E5LTkyNjctNGU1MTU0NDM0
MTAxLzAvREM5NDNDQzJBN0NEQzM3OEEzNzcwMjU3M0JCNEY4MjExNzBCNTMwRC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNKUTh3cWZOdzNpamR3SlhPN1Q0SVJj
TFV3MC5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNmFiMDcyMmYt
NjRkOC00Y2E5LTkyNjctNGU1MTU0NDM0MTAxLzAvMzEzODM1MmUzMTMzMzkyZTMy
MzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzMzM5MzEucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC5ixgwDQYJKoZIhvcNAQELBQADggEBAFs4gMd+PhFUT29hRf/96TeG27yDPhwR
Jbv40TB+1fKKmjJu2KB0+SG5L9KIueS/hw2+p68OLF0XlmfXZfd5Rvs25A+t05tc
EYb09pEXue5ZPTRO/ohJKsqseBFxdPy/kVtVwGRrTbWpl4gAD6NRCaagbLiCRqy8
4xaMan3eqCnNTuyl1W716TfaoWPcVms6Cy5LZuFOpiQOkHg/a45vuN+H/XXCZWUP
7Yu+ztFdTbNA6m+WfFeM72pOxH6NPFBv/XSGRRK2WFBD6gkYl4FFRJsGpiuYsos/
p2dkIzUkk4Tpx3ESRsuNHJC5z3oxuFux6mmOzc5FSpdO8G3vvU2uGA4=
-----END CERTIFICATE-----
Generated at Fri Nov 22 08:14:20 2024 by rpki-client on console-ams.rpki-client.org