Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231392e302f32342d3234203d3e203533333430.roa
File: 38332e3135302e3231392e302f32342d3234203d3e203533333430.roa (raw, json)
Hash identifier: y/bnf1+5nMN2EwClW1H/iEcEe4qmMNbPy5OZJDNqm9Y=
Subject key identifier: D3:14:FA:33:F6:ED:46:91:07:4B:AF:D0:AB:B7:C4:3F:7E:EE:08:91
Certificate issuer: /CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Certificate serial: 6C4434EFC9ECDE6B6C96E9EABE388D4BDFA4FC77
Authority key identifier: 5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231392e302f32342d3234203d3e203533333430.roa
Signing time: Thu 07 Dec 2023 17:05:08 +0000
ROA not before: Thu 07 Dec 2023 17:00:08 +0000
ROA not after: Thu 05 Dec 2024 17:05:08 +0000
asID: 53340
IP address blocks: 83.150.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:44:34:ef:c9:ec:de:6b:6c:96:e9:ea:be:38:8d:4b:df:a4:fc:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5179bb1757068d7028510feeb1177aa7cc8818
Validity
Not Before: Dec 7 17:00:08 2023 GMT
Not After : Dec 5 17:05:08 2024 GMT
Subject: CN=D314FA33F6ED4691074BAFD0ABB7C43F7EEE0891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:aa:b6:20:6a:33:dd:6e:fa:da:51:b0:69:06:
f0:9b:a7:23:46:a0:0f:ee:15:b3:90:dd:3e:67:29:
eb:d0:52:61:b4:f5:58:eb:92:83:1f:6c:b3:9b:19:
7a:ce:e5:07:c0:f1:3d:5c:b0:53:be:54:19:2c:e9:
f5:6c:3f:53:8a:24:cf:57:3a:11:35:ad:63:07:3c:
a1:a1:58:86:0e:a7:9b:04:2a:eb:42:06:d9:80:65:
26:62:20:f7:0b:1e:3d:34:15:93:73:76:37:96:9c:
00:7f:64:4b:0f:00:07:2a:28:bd:f6:44:59:c5:b2:
97:b4:b9:7d:2e:52:fb:39:00:95:e1:46:5b:3c:8b:
49:74:0b:8b:08:cc:c7:ed:61:a7:26:e7:1e:f2:74:
20:bb:81:b5:57:c2:84:c0:2d:fe:87:a3:df:2b:d0:
37:d2:82:f8:37:bf:1d:87:0e:e7:96:5b:e8:06:9e:
34:1a:42:16:96:d0:41:18:44:68:d9:0f:ec:ad:09:
8b:c1:40:54:e7:79:99:cf:08:40:15:18:1f:88:f8:
15:87:cf:12:f0:21:b4:9b:0e:56:0b:73:28:3b:6e:
05:0e:07:e4:6e:2e:a5:d2:48:21:f2:6e:1d:f4:63:
4c:58:fe:dd:64:9a:a2:16:07:b1:28:70:5a:94:6c:
58:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:14:FA:33:F6:ED:46:91:07:4B:AF:D0:AB:B7:C4:3F:7E:EE:08:91
X509v3 Authority Key Identifier:
keyid:5E:51:79:BB:17:57:06:8D:70:28:51:0F:EE:B1:17:7A:A7:CC:88:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/5E5179BB1757068D7028510FEEB1177AA7CC8818.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlF5uxdXBo1wKFEP7rEXeqfMiBg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/83e4757f-d37f-4fd6-a69b-d74bdd6b87dc/0/38332e3135302e3231392e302f32342d3234203d3e203533333430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.219.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:27:16:62:95:2c:cd:9a:a3:f2:20:df:d3:67:ae:fc:70:5e:
8e:e8:55:59:50:df:f5:ca:9f:d2:00:1d:fe:df:48:7d:9f:6d:
f4:46:d9:ab:83:a0:c2:57:d0:6d:09:b5:4d:0b:bc:51:39:69:
d9:b2:ed:e3:ef:c9:2d:12:8a:a7:f5:7b:83:a3:ff:da:79:0a:
b9:d1:f6:f3:6b:48:29:47:39:9d:19:f0:bc:d2:81:ca:47:dc:
ff:db:d7:e6:f7:9b:08:89:e2:73:a0:cc:71:78:f9:19:8a:94:
0c:c4:35:a9:28:86:c2:b2:38:f3:27:ef:75:34:46:bc:6c:3d:
71:03:b5:6c:13:6d:dd:72:c8:77:80:5e:bc:e6:0b:1d:36:f9:
9f:ba:c8:d5:63:74:71:48:20:c6:97:da:66:5a:55:2f:c2:65:
c3:a5:9e:4b:88:09:19:9b:5c:88:5d:92:11:e0:17:c7:29:79:
e0:af:d9:4c:bb:08:cc:7d:d4:70:f4:07:49:c6:ec:23:10:e5:
55:dd:0d:87:c6:4a:9f:7c:7c:e4:29:f3:bb:5a:3e:7e:4b:e2:
04:4e:01:ea:82:5a:16:e2:50:9c:c2:14:4b:57:8c:11:25:09:
78:38:53:20:51:fa:ca:3f:92:b4:ae:b3:8c:94:3d:8f:22:de:
84:dc:50:cd
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUbEQ078ns3mtslunqvjiNS9+k/HcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWU1MTc5YmIxNzU3MDY4ZDcwMjg1MTBmZWViMTE3N2Fh
N2NjODgxODAeFw0yMzEyMDcxNzAwMDhaFw0yNDEyMDUxNzA1MDhaMDMxMTAvBgNV
BAMTKEQzMTRGQTMzRjZFRDQ2OTEwNzRCQUZEMEFCQjdDNDNGN0VFRTA4OTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiqrYgajPdbvraUbBpBvCbpyNG
oA/uFbOQ3T5nKevQUmG09VjrkoMfbLObGXrO5QfA8T1csFO+VBks6fVsP1OKJM9X
OhE1rWMHPKGhWIYOp5sEKutCBtmAZSZiIPcLHj00FZNzdjeWnAB/ZEsPAAcqKL32
RFnFspe0uX0uUvs5AJXhRls8i0l0C4sIzMftYacm5x7ydCC7gbVXwoTALf6Ho98r
0DfSgvg3vx2HDueWW+gGnjQaQhaW0EEYRGjZD+ytCYvBQFTneZnPCEAVGB+I+BWH
zxLwIbSbDlYLcyg7bgUOB+RuLqXSSCHybh30Y0xY/t1kmqIWB7EocFqUbFjNAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU0xT6M/btRpEHS6/Qq7fEP37uCJEwHwYDVR0j
BBgwFoAUXlF5uxdXBo1wKFEP7rEXeqfMiBgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODNlNDc1N2YtZDM3Zi00ZmQ2LWE2OWItZDc0YmRkNmI4
N2RjLzAvNUU1MTc5QkIxNzU3MDY4RDcwMjg1MTBGRUVCMTE3N0FBN0NDODgxOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hsRjV1eGRYQm8xd0tGRVA3ckVYZXFm
TWlCZy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODNlNDc1N2Yt
ZDM3Zi00ZmQ2LWE2OWItZDc0YmRkNmI4N2RjLzAvMzgzMzJlMzEzNTMwMmUzMjMx
MzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNTMzMzMzNDMwLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
U5bbMA0GCSqGSIb3DQEBCwUAA4IBAQAfJxZilSzNmqPyIN/TZ678cF6O6FVZUN/1
yp/SAB3+30h9n230Rtmrg6DCV9BtCbVNC7xROWnZsu3j78ktEoqn9XuDo//aeQq5
0fbza0gpRzmdGfC80oHKR9z/29fm95sIieJzoMxxePkZipQMxDWpKIbCsjjzJ+91
NEa8bD1xA7VsE23dcsh3gF685gsdNvmfusjVY3RxSCDGl9pmWlUvwmXDpZ5LiAkZ
m1yIXZIR4BfHKXngr9lMuwjMfdRw9AdJxuwjEOVV3Q2HxkqffHzkKfO7Wj5+S+IE
TgHqgloW4lCcwhRLV4wRJQl4OFMgUfrKP5K0rrOMlD2PIt6E3FDN
-----END CERTIFICATE-----
Generated at Fri Apr 26 00:05:12 2024 by rpki-client on console-fra.rpki-client.org