Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138342e302f32342d3234203d3e203538303631.roa
File: 3137382e3230382e3138342e302f32342d3234203d3e203538303631.roa (raw, json)
Hash identifier: jr8nkMjpIc1PEf7u0X/8j5PMgCQ7eBOg+n9qwPW4Kug=
Subject key identifier: DC:CC:1B:E7:BA:C6:72:CB:9C:93:7B:AB:6A:75:C6:B2:46:31:E2:1E
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 33F0F07085D4C8041E9C7A76E9A7427B60895D51
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138342e302f32342d3234203d3e203538303631.roa
Signing time: Fri 23 Feb 2024 18:32:03 +0000
ROA not before: Fri 23 Feb 2024 18:27:03 +0000
ROA not after: Fri 21 Feb 2025 18:32:03 +0000
asID: 58061
IP address blocks: 178.208.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:f0:f0:70:85:d4:c8:04:1e:9c:7a:76:e9:a7:42:7b:60:89:5d:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Feb 23 18:27:03 2024 GMT
Not After : Feb 21 18:32:03 2025 GMT
Subject: CN=DCCC1BE7BAC672CB9C937BAB6A75C6B24631E21E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:91:75:6d:19:6d:5b:5a:ec:a8:80:20:62:b9:
ed:6b:5e:d6:1b:52:82:2a:d1:aa:a1:66:71:9b:a4:
c8:28:a3:b2:51:02:72:c0:88:f7:cb:f8:96:fd:69:
41:d6:c7:00:ce:1f:cf:9d:f1:e0:d7:e2:ac:96:24:
7e:21:a9:38:9a:7c:69:47:79:7d:71:d1:33:f2:38:
7b:4c:df:38:34:a8:18:5f:63:a6:44:b4:8e:dd:f1:
16:76:bb:17:8f:e6:af:6a:a5:4f:f5:96:5c:bb:f6:
b2:7f:02:01:1c:53:0d:74:97:4b:0a:51:48:17:1e:
ee:a8:4c:f6:3f:7c:29:cd:4b:9c:a7:c1:26:f8:a4:
73:4c:4b:2f:46:1c:4d:5e:eb:39:6a:a8:a8:a5:b3:
7a:49:4e:a0:f0:e4:50:da:83:fd:69:ef:8b:b3:b6:
9e:5d:54:d4:d1:4c:57:dd:31:9a:40:22:06:98:34:
ec:46:7f:f5:16:19:0c:b1:b8:20:4b:2a:a6:cd:1c:
2a:29:e4:66:ff:aa:27:46:22:88:bb:71:48:19:ca:
b9:01:61:57:c2:ae:20:20:f6:a5:3d:08:25:e6:a2:
0a:2d:b6:ae:3d:de:30:f7:d2:bb:6e:29:ed:45:71:
cb:df:94:1e:06:27:bc:66:ea:5d:2d:1c:3b:6f:00:
c3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:CC:1B:E7:BA:C6:72:CB:9C:93:7B:AB:6A:75:C6:B2:46:31:E2:1E
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138342e302f32342d3234203d3e203538303631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.184.0/24
Signature Algorithm: sha256WithRSAEncryption
20:f8:26:3e:90:ea:73:87:52:a6:00:ea:02:c3:b9:47:fc:0a:
c5:a0:b3:19:6d:a0:77:7f:74:90:85:19:fa:2e:e4:9f:54:c5:
fc:7c:ff:49:1e:46:42:c4:2e:f3:89:22:ad:95:dd:7d:82:cb:
04:f0:8b:f7:d9:12:54:eb:7f:4e:56:f4:75:45:cc:49:46:92:
df:b1:09:04:4d:da:9c:7b:48:8c:6d:1c:d3:c0:b9:51:72:59:
0a:9b:bf:ac:63:76:df:2b:a2:e1:db:9b:8e:54:70:c1:56:32:
ee:64:1a:60:f3:3f:0f:90:f5:21:68:30:ae:98:86:a9:15:8e:
b5:08:33:e7:95:44:fc:24:ee:8c:69:a3:be:41:29:b7:08:4a:
aa:4b:a2:df:96:23:c4:64:c6:98:8f:2b:9a:f5:b2:a8:0b:34:
2e:8b:ae:d7:74:1d:6c:1d:c3:60:c0:0d:1c:1b:69:16:69:92:
e9:95:41:a5:77:36:7e:2e:36:fd:1c:fa:1c:63:49:77:cc:dc:
ae:24:86:ac:07:a0:17:5b:59:70:a3:f2:09:6e:f7:23:1b:93:
c5:dc:b2:34:1e:24:62:ec:8a:95:5c:e9:66:44:ad:b1:35:0a:
0b:f4:70:a8:ab:40:9a:c1:52:84:5d:01:d9:dd:25:c5:76:e2:
47:36:98:c2
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUM/DwcIXUyAQenHp26adCe2CJXVEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDQ4YWY2NjViZjhiMTg2YjcwMjIwNzU5ZDI2YzU3OGY0
MGI1ZjNlMzAeFw0yNDAyMjMxODI3MDNaFw0yNTAyMjExODMyMDNaMDMxMTAvBgNV
BAMTKERDQ0MxQkU3QkFDNjcyQ0I5QzkzN0JBQjZBNzVDNkIyNDYzMUUyMUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxkXVtGW1bWuyogCBiue1rXtYb
UoIq0aqhZnGbpMgoo7JRAnLAiPfL+Jb9aUHWxwDOH8+d8eDX4qyWJH4hqTiafGlH
eX1x0TPyOHtM3zg0qBhfY6ZEtI7d8RZ2uxeP5q9qpU/1lly79rJ/AgEcUw10l0sK
UUgXHu6oTPY/fCnNS5ynwSb4pHNMSy9GHE1e6zlqqKils3pJTqDw5FDag/1p74uz
tp5dVNTRTFfdMZpAIgaYNOxGf/UWGQyxuCBLKqbNHCop5Gb/qidGIoi7cUgZyrkB
YVfCriAg9qU9CCXmogottq493jD30rtuKe1FccvflB4GJ7xm6l0tHDtvAMMdAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU3Mwb57rGcsuck3uranXGskYx4h4wHwYDVR0j
BBgwFoAUBIr2Zb+LGGtwIgdZ0mxXj0C18+MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODJhOWJmNWItMzljMS00MDUwLWIwNzMtNDgwNzViODYx
ZDg3LzAvMDQ4QUY2NjVCRjhCMTg2QjcwMjIwNzU5RDI2QzU3OEY0MEI1RjNFMy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0JJcjJaYi1MR0d0d0lnZFowbXhYajBD
MTgtTS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODJhOWJmNWIt
MzljMS00MDUwLWIwNzMtNDgwNzViODYxZDg3LzAvMzEzNzM4MmUzMjMwMzgyZTMx
MzgzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM1MzgzMDM2MzEucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACy0LgwDQYJKoZIhvcNAQELBQADggEBACD4Jj6Q6nOHUqYA6gLDuUf8CsWgsxlt
oHd/dJCFGfou5J9Uxfx8/0keRkLELvOJIq2V3X2CywTwi/fZElTrf05W9HVFzElG
kt+xCQRN2px7SIxtHNPAuVFyWQqbv6xjdt8rouHbm45UcMFWMu5kGmDzPw+Q9SFo
MK6YhqkVjrUIM+eVRPwk7oxpo75BKbcISqpLot+WI8RkxpiPK5r1sqgLNC6Lrtd0
HWwdw2DADRwbaRZpkumVQaV3Nn4uNv0c+hxjSXfM3K4khqwHoBdbWXCj8glu9yMb
k8XcsjQeJGLsipVc6WZErbE1Cgv0cKirQJrBUoRdAdndJcV24kc2mMI=
-----END CERTIFICATE-----
Generated at Mon Nov 25 07:54:59 2024 by rpki-client on console-ams.rpki-client.org