Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138332e302f32342d3234203d3e20333937363330.roa
File: 3137382e3230382e3138332e302f32342d3234203d3e20333937363330.roa (raw, json)
Hash identifier: /kuc/IJSXuVsJIx41xDp8NP+Q3UImfJLbSC9htmIKuo=
Subject key identifier: 8C:B7:76:89:E7:F2:66:16:9E:0E:88:1E:E9:AA:DA:73:7C:05:0B:9D
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 5626D81181044059336784EE5B1D5AEDC5B15760
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138332e302f32342d3234203d3e20333937363330.roa
Signing time: Tue 14 Nov 2023 15:02:27 +0000
ROA not before: Tue 14 Nov 2023 14:57:27 +0000
ROA not after: Tue 12 Nov 2024 15:02:27 +0000
asID: 397630
IP address blocks: 178.208.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:26:d8:11:81:04:40:59:33:67:84:ee:5b:1d:5a:ed:c5:b1:57:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Nov 14 14:57:27 2023 GMT
Not After : Nov 12 15:02:27 2024 GMT
Subject: CN=8CB77689E7F266169E0E881EE9AADA737C050B9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:68:08:75:35:73:91:b5:e5:c1:e1:2c:6c:a5:
eb:6e:c7:4b:3c:00:55:8a:b2:a1:c4:06:94:85:73:
3a:15:4d:53:09:aa:67:2a:25:39:39:3d:6a:94:5e:
68:7f:5a:8d:da:65:ab:ca:3c:0f:fe:7f:b3:af:fe:
6e:c3:20:36:5b:cb:5b:8e:4d:31:06:7d:30:3f:f0:
cd:f1:68:dd:f8:c7:7c:af:2f:36:8b:a4:07:24:15:
04:1e:08:75:b2:d4:1f:86:47:cc:78:1e:60:a1:2e:
89:76:e1:df:4e:01:b4:c6:10:d1:9f:08:ca:49:42:
e4:86:24:63:de:0c:7a:8a:d1:05:8f:37:3e:8b:9d:
7a:7b:34:96:8b:7e:af:bd:97:72:77:47:85:76:cc:
ce:15:ee:49:7a:39:bd:66:88:98:f8:8b:1d:11:62:
05:1d:ea:5f:8a:fe:4b:2a:4e:96:f7:c9:44:f3:aa:
f4:56:1a:60:f5:98:3f:45:bb:8f:6b:6e:4b:71:cf:
cf:fb:13:69:d0:46:6d:46:17:d1:61:9e:b4:da:36:
35:79:e0:6e:90:a7:95:dc:58:a2:af:8a:8e:2d:4c:
6f:52:83:92:07:60:90:4c:fb:04:46:0f:45:12:81:
77:4b:70:d1:26:9d:53:a5:d9:b1:01:5e:13:fb:9e:
39:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:B7:76:89:E7:F2:66:16:9E:0E:88:1E:E9:AA:DA:73:7C:05:0B:9D
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138332e302f32342d3234203d3e20333937363330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.183.0/24
Signature Algorithm: sha256WithRSAEncryption
50:7d:39:af:45:40:f4:00:fd:a9:01:96:88:18:e3:5e:2b:29:
f5:06:9b:dc:85:3f:d9:72:d3:a4:be:e5:f0:73:79:b5:ea:b0:
cf:03:5a:e7:fb:99:0a:b5:92:b7:0a:e9:a3:bd:70:92:95:bb:
23:7c:0b:ce:81:47:65:46:f1:9f:1a:23:92:64:c7:e5:d2:98:
84:3b:68:8a:b1:e7:94:71:7f:23:f9:10:bb:75:19:21:74:de:
23:59:4d:60:9b:e6:bb:15:62:8e:db:af:0a:16:67:da:7f:5b:
3d:5a:ea:b1:34:9a:56:7b:81:21:0b:99:1c:be:5b:2c:7b:48:
30:70:12:d9:46:f0:de:70:da:ae:02:a8:fd:bc:10:eb:cd:84:
b3:86:ec:1a:51:9d:7e:ee:a0:b8:19:27:55:3e:06:c6:7f:84:
c8:19:7c:9d:e6:46:91:c4:de:9e:ed:45:95:b3:1f:b5:75:ca:
29:3d:ad:0b:9e:4a:c3:d4:a2:79:46:d7:1c:e2:08:bb:a2:7a:
43:6e:c0:2d:3d:20:81:eb:54:58:06:78:ed:9a:87:23:11:cf:
d2:da:44:c0:92:47:bc:1b:53:f9:be:54:80:c9:81:94:28:e9:
79:f0:65:76:0e:0d:9b:36:53:0a:74:6d:66:88:7e:90:29:f6:
a8:e8:43:1b
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUVibYEYEEQFkzZ4TuWx1a7cWxV2AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDQ4YWY2NjViZjhiMTg2YjcwMjIwNzU5ZDI2YzU3OGY0
MGI1ZjNlMzAeFw0yMzExMTQxNDU3MjdaFw0yNDExMTIxNTAyMjdaMDMxMTAvBgNV
BAMTKDhDQjc3Njg5RTdGMjY2MTY5RTBFODgxRUU5QUFEQTczN0MwNTBCOUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtaAh1NXORteXB4Sxspetux0s8
AFWKsqHEBpSFczoVTVMJqmcqJTk5PWqUXmh/Wo3aZavKPA/+f7Ov/m7DIDZby1uO
TTEGfTA/8M3xaN34x3yvLzaLpAckFQQeCHWy1B+GR8x4HmChLol24d9OAbTGENGf
CMpJQuSGJGPeDHqK0QWPNz6LnXp7NJaLfq+9l3J3R4V2zM4V7kl6Ob1miJj4ix0R
YgUd6l+K/ksqTpb3yUTzqvRWGmD1mD9Fu49rbktxz8/7E2nQRm1GF9FhnrTaNjV5
4G6Qp5XcWKKvio4tTG9Sg5IHYJBM+wRGD0USgXdLcNEmnVOl2bEBXhP7njnZAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQUjLd2iefyZhaeDoge6arac3wFC50wHwYDVR0j
BBgwFoAUBIr2Zb+LGGtwIgdZ0mxXj0C18+MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODJhOWJmNWItMzljMS00MDUwLWIwNzMtNDgwNzViODYx
ZDg3LzAvMDQ4QUY2NjVCRjhCMTg2QjcwMjIwNzU5RDI2QzU3OEY0MEI1RjNFMy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0JJcjJaYi1MR0d0d0lnZFowbXhYajBD
MTgtTS5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODJhOWJmNWIt
MzljMS00MDUwLWIwNzMtNDgwNzViODYxZDg3LzAvMzEzNzM4MmUzMjMwMzgyZTMx
MzgzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMzMzkzNzM2MzMzMC5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEALLQtzANBgkqhkiG9w0BAQsFAAOCAQEAUH05r0VA9AD9qQGWiBjjXisp9Qab
3IU/2XLTpL7l8HN5teqwzwNa5/uZCrWStwrpo71wkpW7I3wLzoFHZUbxnxojkmTH
5dKYhDtoirHnlHF/I/kQu3UZIXTeI1lNYJvmuxVijtuvChZn2n9bPVrqsTSaVnuB
IQuZHL5bLHtIMHAS2Ubw3nDargKo/bwQ682Es4bsGlGdfu6guBknVT4Gxn+EyBl8
neZGkcTenu1FlbMftXXKKT2tC55Kw9SieUbXHOIIu6J6Q27ALT0ggetUWAZ47ZqH
IxHP0tpEwJJHvBtT+b5UgMmBlCjpefBldg4NmzZTCnRtZoh+kCn2qOhDGw==
-----END CERTIFICATE-----
Generated at Tue May 7 10:45:37 2024 by rpki-client on console-ams.rpki-client.org