Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3230322e3134342e302f32342d3234203d3e203630343538.roa
File: 3138352e3230322e3134342e302f32342d3234203d3e203630343538.roa (raw, json)
Hash identifier: nTWIhHKDKvd18QYfwUQFRg+IAgFhDPtfdSMnKe9+keE=
Subject key identifier: 35:51:01:E6:03:59:D8:DE:79:70:86:35:B8:A3:73:B0:3F:26:18:6A
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 7DEAE0DC1933C4950DEE4B1301AF5A6F308D00CB
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3230322e3134342e302f32342d3234203d3e203630343538.roa
Signing time: Mon 03 Jul 2023 05:42:08 +0000
ROA not before: Mon 03 Jul 2023 05:37:08 +0000
ROA not after: Mon 01 Jul 2024 05:42:08 +0000
asID: 60458
IP address blocks: 185.202.144.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:ea:e0:dc:19:33:c4:95:0d:ee:4b:13:01:af:5a:6f:30:8d:00:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jul 3 05:37:08 2023 GMT
Not After : Jul 1 05:42:08 2024 GMT
Subject: CN=355101E60359D8DE79708635B8A373B03F26186A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:bf:9e:09:6d:1a:2d:1c:30:8e:a3:25:b3:04:
f6:48:d2:73:a9:d0:12:8d:ad:95:16:4e:11:1a:bf:
0a:09:76:6c:a2:fe:63:2c:04:aa:db:0e:c9:40:12:
97:af:28:fc:cc:18:82:29:cc:6d:10:dc:ad:c3:e8:
fb:4d:12:fb:c4:ac:29:d5:3e:17:9f:3f:04:79:49:
1b:e2:a9:84:1b:00:6d:39:f3:29:0c:b5:ba:9d:dc:
a2:80:18:15:e2:b1:d7:d3:b8:ba:53:f5:95:3a:86:
96:41:9a:e8:b0:eb:3d:ed:d0:d7:e9:8a:f1:67:69:
29:ce:72:e0:a3:f5:e4:d4:3d:3f:b2:37:d9:a5:be:
48:03:1b:7b:de:e1:54:69:12:81:c7:15:78:ed:80:
cc:70:2a:98:d5:ac:93:cc:b1:9c:fa:94:51:a3:cc:
04:89:58:d8:ae:78:cf:fa:67:a8:ae:d0:ac:5d:7b:
ae:2e:7c:30:5b:ff:db:4b:fb:b9:a4:3e:7b:f5:eb:
f0:23:30:29:0d:3d:d6:fa:37:5b:a1:4b:32:72:77:
10:bf:93:a4:2e:11:8b:92:25:fe:44:64:85:c6:46:
bf:84:0f:1a:a2:bf:7d:aa:3e:29:ca:ce:43:ff:8d:
ed:25:11:89:b3:c5:ac:8a:63:03:30:aa:5b:a8:a5:
78:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:51:01:E6:03:59:D8:DE:79:70:86:35:B8:A3:73:B0:3F:26:18:6A
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3230322e3134342e302f32342d3234203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.144.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:1f:70:4c:37:83:34:9d:44:c5:bb:16:36:08:c1:ca:64:94:
c0:37:29:27:4f:15:2b:66:84:7a:d7:76:65:24:fe:e6:6b:18:
68:e2:c2:69:cf:1e:e2:e4:c1:70:9f:50:78:b5:c5:6a:9a:0b:
dd:a3:39:dd:c9:07:f5:02:d4:af:c3:ac:12:30:cd:ec:bd:fe:
d1:cc:97:6d:b6:6d:df:8f:91:5f:ca:6c:98:45:f7:78:31:19:
db:eb:f0:f9:fc:c4:d7:c1:88:ae:0b:ff:4d:ee:4d:63:53:e1:
43:aa:f8:20:b6:8b:8c:d0:8f:58:ea:0c:d7:11:5b:25:5a:e1:
0b:6e:f9:a1:0f:5a:1e:bf:2d:90:13:d3:ec:31:7a:a2:de:cb:
dc:b1:9d:8c:ff:9e:7b:b3:d7:fd:5e:dd:25:ae:ac:31:0e:24:
69:1f:46:b7:7c:9d:6b:75:cd:bb:50:cb:e8:f0:0d:fc:b2:dc:
f6:23:af:7b:67:f9:95:7d:74:21:f6:a9:ca:10:3d:e7:6d:29:
94:c7:a8:36:fe:e8:09:33:52:e8:7b:6f:5e:04:c2:dd:70:1a:
df:52:ad:33:a7:1e:50:b1:95:f8:03:f2:d4:a2:b6:4a:8c:e5:
b1:24:40:e0:6a:a1:3f:7d:54:eb:3b:80:19:71:9e:b9:d3:3c:
6e:db:56:f2
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUferg3BkzxJUN7ksTAa9abzCNAMswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjAxNzBhYmRjOTU1YWExNzZiZTJhZjI2Mjk5Njc4ZjJm
N2M5YWNhMDAeFw0yMzA3MDMwNTM3MDhaFw0yNDA3MDEwNTQyMDhaMDMxMTAvBgNV
BAMTKDM1NTEwMUU2MDM1OUQ4REU3OTcwODYzNUI4QTM3M0IwM0YyNjE4NkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyv54JbRotHDCOoyWzBPZI0nOp
0BKNrZUWThEavwoJdmyi/mMsBKrbDslAEpevKPzMGIIpzG0Q3K3D6PtNEvvErCnV
PhefPwR5SRviqYQbAG058ykMtbqd3KKAGBXisdfTuLpT9ZU6hpZBmuiw6z3t0Nfp
ivFnaSnOcuCj9eTUPT+yN9mlvkgDG3ve4VRpEoHHFXjtgMxwKpjVrJPMsZz6lFGj
zASJWNiueM/6Z6iu0Kxde64ufDBb/9tL+7mkPnv16/AjMCkNPdb6N1uhSzJydxC/
k6QuEYuSJf5EZIXGRr+EDxqiv32qPinKzkP/je0lEYmzxayKYwMwqluopXidAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUNVEB5gNZ2N55cIY1uKNzsD8mGGowHwYDVR0j
BBgwFoAUsBcKvclVqhdr4q8mKZZ48vfJrKAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2E3ODllODctZjQ4NC00MjNkLWExZDctMmMyZDU4NjBk
MmVjLzAvQjAxNzBBQkRDOTU1QUExNzZCRTJBRjI2Mjk5Njc4RjJGN0M5QUNBMC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3NCY0t2Y2xWcWhkcjRxOG1LWlo0OHZm
SnJLQS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvN2E3ODllODct
ZjQ4NC00MjNkLWExZDctMmMyZDU4NjBkMmVjLzAvMzEzODM1MmUzMjMwMzIyZTMx
MzQzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM2MzAzNDM1Mzgucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC5ypAwDQYJKoZIhvcNAQELBQADggEBACwfcEw3gzSdRMW7FjYIwcpklMA3KSdP
FStmhHrXdmUk/uZrGGjiwmnPHuLkwXCfUHi1xWqaC92jOd3JB/UC1K/DrBIwzey9
/tHMl222bd+PkV/KbJhF93gxGdvr8Pn8xNfBiK4L/03uTWNT4UOq+CC2i4zQj1jq
DNcRWyVa4Qtu+aEPWh6/LZAT0+wxeqLey9yxnYz/nnuz1/1e3SWurDEOJGkfRrd8
nWt1zbtQy+jwDfyy3PYjr3tn+ZV9dCH2qcoQPedtKZTHqDb+6AkzUuh7b14Ewt1w
Gt9SrTOnHlCxlfgD8tSitkqM5bEkQOBqoT99VOs7gBlxnrnTPG7bVvI=
-----END CERTIFICATE-----
Generated at Mon May 6 01:02:59 2024 by rpki-client on console-ams.rpki-client.org