Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3139382e302f32342d3234203d3e20323030303838.roa
File: 38352e3233372e3139382e302f32342d3234203d3e20323030303838.roa (raw, json)
Hash identifier: MhFY0Wt86KDxE0b23+ei2fKbd9zWl73m+2nx8S/zZQw=
Subject key identifier: E4:65:47:96:6C:E3:4E:F8:01:27:FF:4D:D2:DC:B0:86:E7:26:AA:D3
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 0A50BC326CC7C5C93469092F0A39A7EBE8E20190
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3139382e302f32342d3234203d3e20323030303838.roa
Signing time: Wed 09 Oct 2024 09:43:23 +0000
ROA not before: Wed 09 Oct 2024 09:38:23 +0000
ROA not after: Wed 08 Oct 2025 09:43:23 +0000
asID: 200088
IP address blocks: 85.237.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:50:bc:32:6c:c7:c5:c9:34:69:09:2f:0a:39:a7:eb:e8:e2:01:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Oct 9 09:38:23 2024 GMT
Not After : Oct 8 09:43:23 2025 GMT
Subject: CN=E46547966CE34EF80127FF4DD2DCB086E726AAD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:94:1f:ef:94:8c:70:98:d5:e4:69:ce:5e:da:
c9:96:6e:45:d5:64:a2:5b:58:9d:6c:9b:72:32:97:
95:d0:f1:4f:c1:26:60:0a:90:5c:13:d9:bb:80:a4:
3e:37:3a:f4:62:18:1f:3a:28:8c:c8:73:55:bc:93:
06:52:31:b4:5a:e8:14:97:7f:c9:ef:d9:52:a0:30:
5c:99:76:5c:cb:ad:4d:ec:fa:6c:c9:4b:a8:af:c1:
5c:8a:a1:41:64:5f:1a:77:1f:1b:d9:0c:93:1e:46:
46:2c:ae:ec:2f:ce:06:e9:7e:20:69:13:0c:c2:77:
14:59:62:46:c6:3a:4b:5a:42:79:72:5c:ab:4f:fc:
63:92:d7:ab:be:7c:e0:32:b6:b5:41:2c:f2:e2:21:
30:69:cc:50:f9:26:1d:8b:ec:34:d8:f8:34:93:5b:
ce:15:58:99:9f:ed:47:22:86:7b:aa:bb:ef:3d:61:
34:51:1d:80:0a:d9:82:be:40:dc:68:59:e7:5e:ec:
8d:ae:45:79:ce:c2:29:14:37:02:e8:bf:57:4c:48:
dc:aa:90:69:2f:2d:cb:9f:6f:73:86:0d:93:97:86:
9a:22:4b:81:de:dc:dd:af:01:08:8c:a3:b3:6c:17:
3e:7f:d1:fe:35:85:29:e2:e1:ca:d5:8a:f6:3d:a9:
ae:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:65:47:96:6C:E3:4E:F8:01:27:FF:4D:D2:DC:B0:86:E7:26:AA:D3
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3139382e302f32342d3234203d3e20323030303838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.198.0/24
Signature Algorithm: sha256WithRSAEncryption
75:52:b4:50:06:62:3f:4f:77:ed:c7:34:a2:d9:99:3a:99:17:
99:e8:0f:da:0f:74:0f:da:2a:19:bf:a4:e0:66:5b:17:04:1e:
8b:ce:eb:90:06:1a:00:dd:dc:84:f0:3f:31:42:20:b7:25:c9:
1e:78:cc:fa:0b:bc:95:a8:f7:9c:83:3a:36:4a:ce:5b:71:9d:
90:27:83:d2:14:2d:a8:2d:6b:eb:19:c4:88:3f:fb:e1:60:2d:
01:ff:b3:1c:77:43:bd:b0:f9:30:6a:8f:98:76:86:f0:fd:62:
b3:69:08:9c:f5:b6:0a:32:ae:8a:e8:33:0a:a5:42:fb:85:82:
73:b3:55:f4:eb:a9:d7:03:9b:09:ec:18:9f:02:d7:31:a6:95:
91:d9:97:45:0a:30:82:d9:47:dc:73:f0:75:29:f1:7c:b0:4b:
01:48:63:b6:4e:fe:3e:a7:8b:1e:9f:ac:41:f6:b7:ef:8b:22:
94:e4:dd:2c:e1:17:c8:8b:f0:b0:f6:2e:f7:ae:47:c0:3a:de:
20:55:93:1f:92:9d:6e:3a:68:f0:1b:a4:3f:81:f7:bd:d7:86:
01:e6:0d:87:32:ac:c7:84:c0:73:ff:f7:04:a4:8a:ba:27:ba:
d8:9e:dc:e0:7a:9d:ac:58:d6:cf:da:90:02:8a:6a:2b:97:2e:
2a:13:94:0d
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUClC8MmzHxck0aQkvCjmn6+jiAZAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZGM5NDNjYzJhN2NkYzM3OGEzNzcwMjU3M2JiNGY4MjEx
NzBiNTMwZDAeFw0yNDEwMDkwOTM4MjNaFw0yNTEwMDgwOTQzMjNaMDMxMTAvBgNV
BAMTKEU0NjU0Nzk2NkNFMzRFRjgwMTI3RkY0REQyRENCMDg2RTcyNkFBRDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCelB/vlIxwmNXkac5e2smWbkXV
ZKJbWJ1sm3Iyl5XQ8U/BJmAKkFwT2buApD43OvRiGB86KIzIc1W8kwZSMbRa6BSX
f8nv2VKgMFyZdlzLrU3s+mzJS6ivwVyKoUFkXxp3HxvZDJMeRkYsruwvzgbpfiBp
EwzCdxRZYkbGOktaQnlyXKtP/GOS16u+fOAytrVBLPLiITBpzFD5Jh2L7DTY+DST
W84VWJmf7Ucihnuqu+89YTRRHYAK2YK+QNxoWede7I2uRXnOwikUNwLov1dMSNyq
kGkvLcufb3OGDZOXhpoiS4He3N2vAQiMo7NsFz5/0f41hSni4crVivY9qa73AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU5GVHlmzjTvgBJ/9N0tywhucmqtMwHwYDVR0j
BBgwFoAU3JQ8wqfNw3ijdwJXO7T4IRcLUw0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNmFiMDcyMmYtNjRkOC00Y2E5LTkyNjctNGU1MTU0NDM0
MTAxLzAvREM5NDNDQzJBN0NEQzM3OEEzNzcwMjU3M0JCNEY4MjExNzBCNTMwRC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNKUTh3cWZOdzNpamR3SlhPN1Q0SVJj
TFV3MC5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNmFiMDcyMmYt
NjRkOC00Y2E5LTkyNjctNGU1MTU0NDM0MTAxLzAvMzgzNTJlMzIzMzM3MmUzMTM5
MzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzAzMDM4Mzgucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BABV7cYwDQYJKoZIhvcNAQELBQADggEBAHVStFAGYj9Pd+3HNKLZmTqZF5noD9oP
dA/aKhm/pOBmWxcEHovO65AGGgDd3ITwPzFCILclyR54zPoLvJWo95yDOjZKzltx
nZAng9IULagta+sZxIg/++FgLQH/sxx3Q72w+TBqj5h2hvD9YrNpCJz1tgoyroro
MwqlQvuFgnOzVfTrqdcDmwnsGJ8C1zGmlZHZl0UKMILZR9xz8HUp8XywSwFIY7ZO
/j6nix6frEH2t++LIpTk3SzhF8iL8LD2LveuR8A63iBVkx+SnW46aPAbpD+B973X
hgHmDYcyrMeEwHP/9wSkironutie3OB6naxY1s/akAKKaiuXLioTlA0=
-----END CERTIFICATE-----
Generated at Fri Nov 22 08:14:20 2024 by rpki-client on console-ams.rpki-client.org