Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135342e302f32342d3234203d3e2037303138.roa
File: 3138352e3232362e3135342e302f32342d3234203d3e2037303138.roa (raw, json)
Hash identifier: bQT+a1bE7EzT4cb66w7JBQ/Mp3HmLfDbOYxXbiq0Qm0=
Subject key identifier: 5E:40:8C:12:23:0A:02:8C:A7:70:85:08:8B:00:A5:43:30:65:A3:EF
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 600D0916E93A8F661F1EC895F7F88A27DE4AEEDE
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135342e302f32342d3234203d3e2037303138.roa
Signing time: Mon 26 Feb 2024 07:29:34 +0000
ROA not before: Mon 26 Feb 2024 07:24:34 +0000
ROA not after: Mon 24 Feb 2025 07:29:34 +0000
asID: 7018
IP address blocks: 185.226.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:0d:09:16:e9:3a:8f:66:1f:1e:c8:95:f7:f8:8a:27:de:4a:ee:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Feb 26 07:24:34 2024 GMT
Not After : Feb 24 07:29:34 2025 GMT
Subject: CN=5E408C12230A028CA77085088B00A5433065A3EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1d:e8:26:c3:fa:82:4e:ba:3c:bd:e0:8e:f9:
96:0c:cf:38:9d:9f:b2:c7:4b:2e:a5:a1:c1:74:fc:
be:75:5e:77:ea:c6:cc:ba:8c:ea:a1:1d:5e:e8:e8:
62:30:cf:b8:46:25:a8:ce:ef:03:41:bb:b4:50:2c:
a6:ec:1c:71:17:3d:e3:4e:6d:76:bc:8d:15:88:98:
98:20:77:6e:bf:16:50:14:a7:e5:ea:c9:53:80:d2:
b8:53:74:5a:e8:5f:f5:3d:ff:a7:61:24:07:c1:1a:
87:67:7d:b1:f3:a2:d8:1a:4b:92:c3:7e:3e:be:ac:
40:bb:e3:a7:73:de:26:ec:0d:a5:68:d7:be:8e:2b:
fc:27:c9:52:30:bc:bb:8e:ce:c9:1c:72:75:aa:6b:
48:e5:f9:88:b1:a5:e6:6f:6e:b5:67:cb:10:ec:2a:
06:b0:31:54:0c:a0:65:b8:22:b3:ca:76:c9:a4:be:
44:31:0a:8a:e9:4d:cf:a9:42:5e:40:36:6e:90:ac:
b2:92:9b:1f:26:34:6c:b8:05:08:4a:50:64:92:6f:
f4:06:68:c2:33:77:e8:d5:d9:ec:15:77:42:60:35:
7a:67:69:61:e8:09:d6:e1:3a:9a:73:9b:dc:75:78:
e7:b2:c4:a5:b9:f8:96:71:c4:f7:f9:9a:8f:ce:3b:
32:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:40:8C:12:23:0A:02:8C:A7:70:85:08:8B:00:A5:43:30:65:A3:EF
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135342e302f32342d3234203d3e2037303138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.154.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:d8:b3:d1:4e:a2:88:ac:0d:1d:a4:91:27:55:56:7c:2a:1b:
43:83:24:23:b9:23:52:a1:46:c4:9f:f3:7d:30:bc:b4:cb:7f:
b7:cf:d0:31:30:d4:da:96:92:90:19:b4:2c:27:a7:d6:92:44:
1a:b0:d7:81:9c:17:51:1f:9e:a4:c5:e8:19:de:21:65:46:e6:
c3:f1:35:0f:92:58:ee:17:a8:53:7d:97:e2:e2:c3:b1:b7:04:
73:02:53:5a:5c:ca:59:6d:d0:64:ab:01:ff:ff:52:fa:76:06:
5f:ca:e4:33:01:85:4f:ee:81:e9:f8:07:22:36:f4:99:2e:d4:
a0:af:18:d2:49:5f:41:46:60:06:84:b8:97:b7:63:36:c2:23:
27:73:7f:91:e5:f8:db:65:23:16:7b:9f:82:54:ee:70:52:aa:
a5:6a:b8:6e:f8:54:e2:f9:03:53:5d:a9:94:e6:79:03:85:69:
b1:37:1c:a5:68:9f:65:15:09:41:39:ba:ea:0e:6a:22:bf:d8:
d1:aa:28:b1:a5:fc:c4:3d:6f:cd:28:1e:58:bb:fa:e8:70:89:
ff:bf:54:b0:65:11:20:26:eb:07:73:b6:28:7c:6f:78:69:54:
3a:02:d4:29:09:7d:61:55:cf:79:61:c1:ef:00:9c:8d:b7:6d:
c8:8f:d6:c0
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUYA0JFuk6j2YfHsiV9/iKJ95K7t4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjAxNzBhYmRjOTU1YWExNzZiZTJhZjI2Mjk5Njc4ZjJm
N2M5YWNhMDAeFw0yNDAyMjYwNzI0MzRaFw0yNTAyMjQwNzI5MzRaMDMxMTAvBgNV
BAMTKDVFNDA4QzEyMjMwQTAyOENBNzcwODUwODhCMDBBNTQzMzA2NUEzRUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfHegmw/qCTro8veCO+ZYMzzid
n7LHSy6locF0/L51Xnfqxsy6jOqhHV7o6GIwz7hGJajO7wNBu7RQLKbsHHEXPeNO
bXa8jRWImJggd26/FlAUp+XqyVOA0rhTdFroX/U9/6dhJAfBGodnfbHzotgaS5LD
fj6+rEC746dz3ibsDaVo176OK/wnyVIwvLuOzskccnWqa0jl+YixpeZvbrVnyxDs
KgawMVQMoGW4IrPKdsmkvkQxCorpTc+pQl5ANm6QrLKSmx8mNGy4BQhKUGSSb/QG
aMIzd+jV2ewVd0JgNXpnaWHoCdbhOppzm9x1eOeyxKW5+JZxxPf5mo/OOzIRAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUXkCMEiMKAoyncIUIiwClQzBlo+8wHwYDVR0j
BBgwFoAUsBcKvclVqhdr4q8mKZZ48vfJrKAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2E3ODllODctZjQ4NC00MjNkLWExZDctMmMyZDU4NjBk
MmVjLzAvQjAxNzBBQkRDOTU1QUExNzZCRTJBRjI2Mjk5Njc4RjJGN0M5QUNBMC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3NCY0t2Y2xWcWhkcjRxOG1LWlo0OHZm
SnJLQS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvN2E3ODllODct
ZjQ4NC00MjNkLWExZDctMmMyZDU4NjBkMmVjLzAvMzEzODM1MmUzMjMyMzYyZTMx
MzUzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM3MzAzMTM4LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
ueKaMA0GCSqGSIb3DQEBCwUAA4IBAQC12LPRTqKIrA0dpJEnVVZ8KhtDgyQjuSNS
oUbEn/N9MLy0y3+3z9AxMNTalpKQGbQsJ6fWkkQasNeBnBdRH56kxegZ3iFlRubD
8TUPkljuF6hTfZfi4sOxtwRzAlNaXMpZbdBkqwH//1L6dgZfyuQzAYVP7oHp+Aci
NvSZLtSgrxjSSV9BRmAGhLiXt2M2wiMnc3+R5fjbZSMWe5+CVO5wUqqlarhu+FTi
+QNTXamU5nkDhWmxNxylaJ9lFQlBObrqDmoiv9jRqiixpfzEPW/NKB5Yu/rocIn/
v1SwZREgJusHc7YofG94aVQ6AtQpCX1hVc95YcHvAJyNt23Ij9bA
-----END CERTIFICATE-----
Generated at Fri May 3 19:20:30 2024 by rpki-client on console-ams.rpki-client.org