Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231382e302f32342d3234203d3e20313939343135.roa
File: 38332e3135302e3231382e302f32342d3234203d3e20313939343135.roa (raw, json)
Hash identifier: vDoe8Hhjyyet0Hh61ZC94slZ5F6QMtjRY3TMU4qEb3Y=
Subject key identifier: 64:E9:46:DD:5B:DA:38:A3:52:03:87:42:F2:50:24:79:23:C7:89:E1
Certificate issuer: /CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Certificate serial: 4AE9775E01C75E83932D70F11CC254AB8FD8077A
Authority key identifier: 5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231382e302f32342d3234203d3e20313939343135.roa
Signing time: Sun 06 Aug 2023 10:42:06 +0000
ROA not before: Sun 06 Aug 2023 10:37:06 +0000
ROA not after: Sun 04 Aug 2024 10:42:06 +0000
asID: 199415
IP address blocks: 83.150.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 04:53:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:e9:77:5e:01:c7:5e:83:93:2d:70:f1:1c:c2:54:ab:8f:d8:07:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Validity
Not Before: Aug 6 10:37:06 2023 GMT
Not After : Aug 4 10:42:06 2024 GMT
Subject: CN=64E946DD5BDA38A352038742F250247923C789E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:fd:ba:5e:3f:7d:b2:5d:77:9f:cb:9e:dd:ab:
50:e5:40:05:01:4e:bd:56:a6:eb:47:4f:91:47:53:
5d:99:70:54:48:ba:5b:97:70:a6:68:fd:26:5e:c2:
a8:fc:1c:7d:d0:1b:25:78:f7:ec:3e:de:88:45:b6:
4b:38:e9:1b:97:1c:0b:c2:dc:96:2e:d3:69:f6:2d:
08:b4:67:2a:ab:b3:16:2e:2c:f9:8e:b5:3c:e0:59:
63:5d:87:fa:1f:a9:bb:d3:49:db:68:b0:9f:6c:7c:
67:f7:e3:76:e0:46:99:60:53:6b:82:fe:92:41:62:
b0:c3:c6:33:23:d9:e6:05:6f:67:cc:16:d1:44:3b:
2d:78:a9:af:8f:86:3e:5c:6a:37:21:20:1a:76:37:
91:5a:5e:69:7b:8a:2d:96:7b:bd:c1:6b:51:18:55:
33:c6:53:ac:50:5b:af:7f:90:e0:03:c5:c1:ca:5a:
f6:37:06:a9:f3:36:c9:03:94:cb:a0:fc:c1:62:67:
85:44:01:06:17:0c:87:96:af:d0:15:d8:c8:33:b4:
2c:64:ba:ce:0e:37:07:f6:83:ba:4c:5a:b1:28:97:
c9:ed:12:44:d0:d2:ad:61:80:d9:c4:d2:df:ec:80:
17:8f:81:d0:da:00:03:39:e0:73:cc:4e:4a:58:ee:
01:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:E9:46:DD:5B:DA:38:A3:52:03:87:42:F2:50:24:79:23:C7:89:E1
X509v3 Authority Key Identifier:
keyid:5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231382e302f32342d3234203d3e20313939343135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.218.0/24
Signature Algorithm: sha256WithRSAEncryption
99:f5:ed:97:97:a2:b5:43:3d:27:c3:dd:36:da:5c:ca:c7:04:
b7:0b:32:0e:28:50:4c:0e:d2:9b:a8:58:f0:83:3d:f1:97:57:
e1:0e:64:58:a6:73:60:41:1e:0d:30:47:4c:1b:54:a9:a9:5c:
d9:a4:30:ee:42:68:7d:f0:c8:d3:2d:87:51:5e:51:ee:3f:c7:
0e:24:98:54:3e:6b:5a:96:b9:04:b4:60:45:cc:38:eb:db:84:
95:00:78:f1:64:b1:6b:c2:6d:35:e8:3a:66:25:b4:2d:ea:0d:
2f:9a:8e:a0:0e:71:db:0b:b0:36:9e:d3:3b:07:e5:cf:19:fe:
43:70:71:36:65:e1:9c:c0:6e:f2:84:e3:b1:17:06:2a:a9:fe:
9d:0e:7f:6e:c3:1f:7e:0b:ce:d3:c1:54:b8:64:c6:f9:11:a2:
e3:ed:bb:d0:60:0e:76:42:02:52:cb:d4:b8:f6:f2:e0:88:47:
ef:ac:86:68:36:7e:f2:17:2f:a0:e7:00:86:3b:56:39:cf:87:
83:46:4b:8f:96:fc:52:7b:23:a5:5e:88:0c:07:6c:dd:af:44:
70:dd:7d:ba:e3:03:85:3b:53:30:39:69:50:92:a5:03:9f:0a:
e2:1b:cd:ef:a8:5c:e3:57:5f:40:0a:5d:11:6d:a8:33:f8:ef:
14:15:6a:2f
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUSul3XgHHXoOTLXDxHMJUq4/YB3owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWU1MTc5YmIxNzU3MDY4ZDcwMjg1MTBmZWViMTE3N2Fh
N2NjODgxODAeFw0yMzA4MDYxMDM3MDZaFw0yNDA4MDQxMDQyMDZaMDMxMTAvBgNV
BAMTKDY0RTk0NkRENUJEQTM4QTM1MjAzODc0MkYyNTAyNDc5MjNDNzg5RTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCO/bpeP32yXXefy57dq1DlQAUB
Tr1WputHT5FHU12ZcFRIuluXcKZo/SZewqj8HH3QGyV49+w+3ohFtks46RuXHAvC
3JYu02n2LQi0ZyqrsxYuLPmOtTzgWWNdh/ofqbvTSdtosJ9sfGf343bgRplgU2uC
/pJBYrDDxjMj2eYFb2fMFtFEOy14qa+Phj5cajchIBp2N5FaXml7ii2We73Ba1EY
VTPGU6xQW69/kOADxcHKWvY3BqnzNskDlMug/MFiZ4VEAQYXDIeWr9AV2MgztCxk
us4ONwf2g7pMWrEol8ntEkTQ0q1hgNnE0t/sgBePgdDaAAM54HPMTkpY7gHrAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUZOlG3VvaOKNSA4dC8lAkeSPHieEwHwYDVR0j
BBgwFoAUXlF5uxdXBo1wKFEP7rEXeqfMiBgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODNlNDc1N2YtZDM3Zi00ZmQ2LWE2OWItZDc0YmRkNmI4
N2RjLzAvNUU1MTc5QkIxNzU3MDY4RDcwMjg1MTBGRUVCMTE3N0FBN0NDODgxOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hsRjV1eGRYQm8xd0tGRVA3ckVYZXFm
TWlCZy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODNlNDc1N2Yt
ZDM3Zi00ZmQ2LWE2OWItZDc0YmRkNmI4N2RjLzAvMzgzMzJlMzEzNTMwMmUzMjMx
MzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM5MzkzNDMxMzUucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BABTltowDQYJKoZIhvcNAQELBQADggEBAJn17ZeXorVDPSfD3TbaXMrHBLcLMg4o
UEwO0puoWPCDPfGXV+EOZFimc2BBHg0wR0wbVKmpXNmkMO5CaH3wyNMth1FeUe4/
xw4kmFQ+a1qWuQS0YEXMOOvbhJUAePFksWvCbTXoOmYltC3qDS+ajqAOcdsLsDae
0zsH5c8Z/kNwcTZl4ZzAbvKE47EXBiqp/p0Of27DH34LztPBVLhkxvkRouPtu9Bg
DnZCAlLL1Lj28uCIR++shmg2fvIXL6DnAIY7VjnPh4NGS4+W/FJ7I6VeiAwHbN2v
RHDdfbrjA4U7UzA5aVCSpQOfCuIbze+oXONXX0AKXRFtqDP47xQVai8=
-----END CERTIFICATE-----
Generated at Sun May 19 07:51:41 2024 by rpki-client on console-fra.rpki-client.org