Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3230322e3134362e302f32342d3234203d3e203630343538.roa
File: 3138352e3230322e3134362e302f32342d3234203d3e203630343538.roa (raw, json)
Hash identifier: 5FH4knvUcGHuZYPYzt33R1oOuC7nZ8KD5zo2m6pDXqU=
Subject key identifier: E2:77:F4:16:9B:D8:4F:5C:CA:97:F1:77:D8:E8:7E:CB:BD:85:C1:AC
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 5E67828E60DFC585C1E3D51F7D828F07B38DCD51
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3230322e3134362e302f32342d3234203d3e203630343538.roa
Signing time: Mon 03 Jul 2023 05:42:09 +0000
ROA not before: Mon 03 Jul 2023 05:37:09 +0000
ROA not after: Mon 01 Jul 2024 05:42:09 +0000
asID: 60458
IP address blocks: 185.202.146.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 20:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:67:82:8e:60:df:c5:85:c1:e3:d5:1f:7d:82:8f:07:b3:8d:cd:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jul 3 05:37:09 2023 GMT
Not After : Jul 1 05:42:09 2024 GMT
Subject: CN=E277F4169BD84F5CCA97F177D8E87ECBBD85C1AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:cb:b2:f8:a0:22:8e:96:26:a8:6f:c5:e9:e7:
0a:14:85:ad:1d:8a:2b:d3:c6:d3:52:b8:a3:bf:72:
82:15:68:a0:8c:46:f3:96:6e:30:38:1d:7b:58:0b:
29:73:90:1d:89:44:3c:3a:39:e3:14:f7:4e:b9:49:
b2:de:6e:f6:60:2e:bc:1e:28:64:3c:20:51:58:fc:
31:86:19:c4:4b:92:40:33:a1:48:40:30:d6:43:6e:
e4:12:f8:86:b8:76:06:ab:55:fc:98:12:65:5e:cb:
d0:76:c9:79:7f:58:2b:4c:f0:30:f6:20:60:a0:e2:
ce:54:de:3e:fe:c0:dd:18:1e:34:45:63:04:76:06:
5b:bd:dd:d6:d8:66:75:9e:40:68:0d:f8:3d:bb:42:
99:81:98:25:4d:67:9d:c9:7e:92:ec:eb:ba:74:8e:
99:e8:6d:90:ce:eb:80:2c:f2:73:c5:f5:8c:e6:b3:
6e:46:36:aa:52:cc:63:81:65:24:2b:f6:f2:d9:31:
8b:11:b9:a6:90:44:e3:7c:c5:35:09:80:c9:3e:22:
30:78:17:e9:fe:3c:30:dd:51:14:1b:17:5b:04:53:
6e:c9:c6:35:1f:ef:0f:11:b6:cd:d1:7d:b5:8a:39:
19:e5:5a:9f:e1:38:bc:78:40:13:b9:bc:c4:26:c8:
bf:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:77:F4:16:9B:D8:4F:5C:CA:97:F1:77:D8:E8:7E:CB:BD:85:C1:AC
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3230322e3134362e302f32342d3234203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.146.0/24
Signature Algorithm: sha256WithRSAEncryption
94:aa:72:7b:0f:f2:47:17:58:28:10:ac:74:98:0b:42:ce:98:
b4:d1:77:60:8c:e2:3d:fe:e7:9f:ef:5a:0f:f7:0f:bb:34:9f:
f2:6b:fa:40:27:26:71:1e:ed:cc:3d:a1:01:72:2d:7b:f5:28:
e7:27:41:81:36:62:fb:b3:70:6c:d4:35:17:7b:47:10:3d:86:
a4:54:4c:6c:00:27:61:ea:e6:a5:19:4c:47:3c:c8:af:26:ef:
2d:df:36:35:be:c2:b1:1f:f9:9b:11:88:97:4c:86:00:28:af:
af:34:2b:a6:c5:2a:1b:2f:d2:cb:f1:18:a8:24:46:cb:78:7c:
ed:9a:81:43:ad:f7:9e:31:89:14:ae:5d:34:a9:8b:59:dd:5e:
37:b8:5a:cb:8d:6c:4b:59:00:bd:13:b8:54:e3:10:b1:65:cc:
77:e5:d3:14:c5:46:60:07:ce:cd:3b:85:e1:37:6d:a0:b4:1d:
7f:8b:4c:36:a7:4f:44:2d:ec:08:c7:21:fd:32:36:5b:1b:18:
1e:6d:07:57:84:b0:45:cf:34:d6:07:86:b8:11:b6:77:96:67:
2d:02:24:cc:c9:57:5b:ca:d0:bb:02:e3:19:b7:90:d4:da:b1:
98:b5:61:a8:f2:d8:50:a8:81:ab:49:1b:21:c7:25:a7:7c:c1:
38:14:f6:ef
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUXmeCjmDfxYXB49UffYKPB7ONzVEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjAxNzBhYmRjOTU1YWExNzZiZTJhZjI2Mjk5Njc4ZjJm
N2M5YWNhMDAeFw0yMzA3MDMwNTM3MDlaFw0yNDA3MDEwNTQyMDlaMDMxMTAvBgNV
BAMTKEUyNzdGNDE2OUJEODRGNUNDQTk3RjE3N0Q4RTg3RUNCQkQ4NUMxQUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCy7L4oCKOliaob8Xp5woUha0d
iivTxtNSuKO/coIVaKCMRvOWbjA4HXtYCylzkB2JRDw6OeMU9065SbLebvZgLrwe
KGQ8IFFY/DGGGcRLkkAzoUhAMNZDbuQS+Ia4dgarVfyYEmVey9B2yXl/WCtM8DD2
IGCg4s5U3j7+wN0YHjRFYwR2Blu93dbYZnWeQGgN+D27QpmBmCVNZ53JfpLs67p0
jpnobZDO64As8nPF9Yzms25GNqpSzGOBZSQr9vLZMYsRuaaQRON8xTUJgMk+IjB4
F+n+PDDdURQbF1sEU27JxjUf7w8Rts3RfbWKORnlWp/hOLx4QBO5vMQmyL9TAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU4nf0FpvYT1zKl/F32Oh+y72FwawwHwYDVR0j
BBgwFoAUsBcKvclVqhdr4q8mKZZ48vfJrKAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2E3ODllODctZjQ4NC00MjNkLWExZDctMmMyZDU4NjBk
MmVjLzAvQjAxNzBBQkRDOTU1QUExNzZCRTJBRjI2Mjk5Njc4RjJGN0M5QUNBMC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3NCY0t2Y2xWcWhkcjRxOG1LWlo0OHZm
SnJLQS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvN2E3ODllODct
ZjQ4NC00MjNkLWExZDctMmMyZDU4NjBkMmVjLzAvMzEzODM1MmUzMjMwMzIyZTMx
MzQzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM2MzAzNDM1Mzgucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC5ypIwDQYJKoZIhvcNAQELBQADggEBAJSqcnsP8kcXWCgQrHSYC0LOmLTRd2CM
4j3+55/vWg/3D7s0n/Jr+kAnJnEe7cw9oQFyLXv1KOcnQYE2YvuzcGzUNRd7RxA9
hqRUTGwAJ2Hq5qUZTEc8yK8m7y3fNjW+wrEf+ZsRiJdMhgAor680K6bFKhsv0svx
GKgkRst4fO2agUOt954xiRSuXTSpi1ndXje4WsuNbEtZAL0TuFTjELFlzHfl0xTF
RmAHzs07heE3baC0HX+LTDanT0Qt7AjHIf0yNlsbGB5tB1eEsEXPNNYHhrgRtneW
Zy0CJMzJV1vK0LsC4xm3kNTasZi1Yajy2FCogatJGyHHJad8wTgU9u8=
-----END CERTIFICATE-----
Generated at Sun May 5 05:30:57 2024 by rpki-client on console-ams.rpki-client.org