Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231332e302f32342d3234203d3e20323131333733.roa
File: 38352e3233372e3231332e302f32342d3234203d3e20323131333733.roa (raw, json)
Hash identifier: Ku242WRqfLGDFzop1OyZDhBpj879u4XNCgmUHBm/pbg=
Subject key identifier: 2E:14:66:84:01:04:E8:BC:9A:4F:B8:4E:3D:56:CA:13:E1:67:46:5B
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 400D994FF7191821EC5B858DBAEA5C51920657DE
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231332e302f32342d3234203d3e20323131333733.roa
Signing time: Wed 08 Nov 2023 09:23:47 +0000
ROA not before: Wed 08 Nov 2023 09:18:47 +0000
ROA not after: Wed 06 Nov 2024 09:23:47 +0000
asID: 211373
IP address blocks: 85.237.213.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.mft
rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 20:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:0d:99:4f:f7:19:18:21:ec:5b:85:8d:ba:ea:5c:51:92:06:57:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Nov 8 09:18:47 2023 GMT
Not After : Nov 6 09:23:47 2024 GMT
Subject: CN=2E1466840104E8BC9A4FB84E3D56CA13E167465B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:77:26:6d:8f:e4:65:9d:de:fe:66:75:0b:62:
7f:43:a8:c0:57:2b:20:da:fb:3d:5e:4c:7e:54:e4:
5e:5c:61:62:27:11:89:62:96:0c:d4:b4:69:fa:27:
cf:6b:f5:0e:fe:99:1f:69:f2:a0:f4:36:0e:63:b7:
24:5c:0f:71:be:e2:0c:6a:f5:6a:b6:52:62:30:d4:
78:5c:91:8d:1f:6c:82:eb:ee:1c:87:e0:f9:8d:ec:
de:95:5f:d3:d0:48:75:b8:45:1c:65:b9:e8:a5:10:
86:bd:32:af:77:0c:19:f6:9a:75:17:ed:32:9a:9b:
7b:82:fe:5c:79:95:46:4a:9c:0b:4a:40:8e:41:78:
48:54:72:dd:73:72:04:2b:78:4d:26:9a:aa:e2:5f:
21:3c:20:f3:58:1f:4a:02:a3:e4:03:2d:66:3a:2d:
51:a4:77:a0:77:b3:9f:ea:51:f8:16:71:67:99:af:
a0:e5:9c:f4:09:a7:1a:50:62:ff:54:66:86:96:61:
db:e3:63:5c:9f:85:cc:fc:f5:b2:f8:a3:81:18:0b:
40:ef:28:96:0b:00:2a:65:82:78:21:3b:17:e7:58:
2b:bd:cb:98:1e:cf:da:09:5e:26:26:64:6d:ea:40:
8d:cf:95:ef:58:bc:2c:69:fd:8c:d9:49:e9:cf:47:
a8:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:14:66:84:01:04:E8:BC:9A:4F:B8:4E:3D:56:CA:13:E1:67:46:5B
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231332e302f32342d3234203d3e20323131333733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.213.0/24
Signature Algorithm: sha256WithRSAEncryption
79:f7:da:8b:b7:9d:ab:af:45:9d:ba:cd:89:5e:60:07:f6:0c:
b6:23:a8:bc:c8:b7:68:4e:eb:d2:05:83:2f:6f:95:19:63:96:
b1:a0:d6:71:3b:be:6a:7c:ca:89:e8:90:85:01:0b:83:bc:53:
7a:79:5f:ad:a1:43:2e:45:db:e6:9a:60:97:04:44:8c:71:62:
99:99:a9:d4:df:ab:e7:10:d0:80:cb:d1:9c:26:34:78:aa:08:
c9:89:30:d2:b3:d9:ab:df:95:a9:31:da:33:be:1b:b3:5a:1b:
42:4a:bc:73:45:ed:89:23:2f:43:78:3e:72:b5:2f:17:0a:30:
c0:f9:ef:8c:09:39:00:96:c8:2b:0a:86:f1:79:8a:a0:e8:7f:
88:eb:3c:e0:c9:17:f2:0b:c5:3d:86:ff:40:04:61:5a:03:ee:
6c:24:22:99:28:af:be:36:6a:30:60:96:3d:69:65:8a:55:01:
de:1e:35:bd:27:0c:b5:31:ff:9b:b1:eb:a8:02:e2:2b:8e:a2:
6b:96:7e:0b:c7:18:d8:dc:75:86:c0:11:3e:f3:bb:60:78:b7:
78:94:be:b7:64:c2:68:c4:2a:28:27:0a:2c:dc:5c:e3:1c:7c:
92:8d:ce:8f:66:b6:c5:d5:09:73:59:16:92:10:79:7f:94:4d:
ff:92:84:f7
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUQA2ZT/cZGCHsW4WNuupcUZIGV94wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZGM5NDNjYzJhN2NkYzM3OGEzNzcwMjU3M2JiNGY4MjEx
NzBiNTMwZDAeFw0yMzExMDgwOTE4NDdaFw0yNDExMDYwOTIzNDdaMDMxMTAvBgNV
BAMTKDJFMTQ2Njg0MDEwNEU4QkM5QTRGQjg0RTNENTZDQTEzRTE2NzQ2NUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmdyZtj+Rlnd7+ZnULYn9DqMBX
KyDa+z1eTH5U5F5cYWInEYlilgzUtGn6J89r9Q7+mR9p8qD0Ng5jtyRcD3G+4gxq
9Wq2UmIw1HhckY0fbILr7hyH4PmN7N6VX9PQSHW4RRxlueilEIa9Mq93DBn2mnUX
7TKam3uC/lx5lUZKnAtKQI5BeEhUct1zcgQreE0mmqriXyE8IPNYH0oCo+QDLWY6
LVGkd6B3s5/qUfgWcWeZr6DlnPQJpxpQYv9UZoaWYdvjY1yfhcz89bL4o4EYC0Dv
KJYLACplgnghOxfnWCu9y5gez9oJXiYmZG3qQI3Ple9YvCxp/YzZSenPR6i9AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQULhRmhAEE6LyaT7hOPVbKE+FnRlswHwYDVR0j
BBgwFoAU3JQ8wqfNw3ijdwJXO7T4IRcLUw0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNmFiMDcyMmYtNjRkOC00Y2E5LTkyNjctNGU1MTU0NDM0
MTAxLzAvREM5NDNDQzJBN0NEQzM3OEEzNzcwMjU3M0JCNEY4MjExNzBCNTMwRC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNKUTh3cWZOdzNpamR3SlhPN1Q0SVJj
TFV3MC5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNmFiMDcyMmYt
NjRkOC00Y2E5LTkyNjctNGU1MTU0NDM0MTAxLzAvMzgzNTJlMzIzMzM3MmUzMjMx
MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMxMzEzMzM3MzMucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BABV7dUwDQYJKoZIhvcNAQELBQADggEBAHn32ou3nauvRZ26zYleYAf2DLYjqLzI
t2hO69IFgy9vlRljlrGg1nE7vmp8yonokIUBC4O8U3p5X62hQy5F2+aaYJcERIxx
YpmZqdTfq+cQ0IDL0ZwmNHiqCMmJMNKz2avflakx2jO+G7NaG0JKvHNF7YkjL0N4
PnK1LxcKMMD574wJOQCWyCsKhvF5iqDof4jrPODJF/ILxT2G/0AEYVoD7mwkIpko
r742ajBglj1pZYpVAd4eNb0nDLUx/5ux66gC4iuOomuWfgvHGNjcdYbAET7zu2B4
t3iUvrdkwmjEKignCizcXOMcfJKNzo9mtsXVCXNZFpIQeX+UTf+ShPc=
-----END CERTIFICATE-----
Generated at Sat May 18 23:30:57 2024 by rpki-client on console-fra.rpki-client.org