Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/37382e32342e3132322e302f32342d3234203d3e20323033333633.roa
File: 37382e32342e3132322e302f32342d3234203d3e20323033333633.roa (raw, json)
Hash identifier: 3qNTRnJXKWp+2vquFBm4USXgJoiHHqFDxcC9+4blMps=
Subject key identifier: BF:73:5D:E4:C3:3E:F1:30:81:78:F1:3F:BD:70:9A:A1:41:85:3D:13
Certificate issuer: /CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444
Certificate serial: 3EFDF1BFE27EF7F5EF81DC07EBE97D361B9325DC
Authority key identifier: D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/37382e32342e3132322e302f32342d3234203d3e20323033333633.roa
Signing time: Mon 02 Oct 2023 14:12:57 +0000
ROA not before: Mon 02 Oct 2023 14:07:57 +0000
ROA not after: Mon 30 Sep 2024 14:12:57 +0000
asID: 203363
IP address blocks: 78.24.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl
rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft
rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:fd:f1:bf:e2:7e:f7:f5:ef:81:dc:07:eb:e9:7d:36:1b:93:25:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444
Validity
Not Before: Oct 2 14:07:57 2023 GMT
Not After : Sep 30 14:12:57 2024 GMT
Subject: CN=BF735DE4C33EF1308178F13FBD709AA141853D13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6c:a7:54:9c:07:45:73:be:61:f9:ba:18:39:
99:16:bf:c5:5d:6f:0d:eb:a9:2e:7d:91:4f:ad:fb:
86:81:0d:88:d8:30:76:98:dd:fa:e5:23:86:e3:ee:
52:01:29:7e:4c:b2:94:df:ef:2b:12:7d:43:56:8a:
05:27:ae:22:91:9a:d0:57:0e:63:e2:bb:52:2f:6f:
4b:fa:41:e7:c5:70:3b:3c:69:b7:b0:8a:19:fe:70:
9a:8d:56:45:f7:99:29:47:4a:0f:55:7e:b3:37:e5:
77:11:cb:c1:ef:6f:34:8e:ce:ba:81:85:3c:ae:14:
2b:b3:40:50:4b:3d:5a:54:2c:24:9c:f3:97:50:c6:
96:34:7c:d7:f8:c0:52:0a:96:48:54:3a:25:45:c9:
ab:c3:cb:76:44:d5:cb:5e:9e:1e:67:8e:98:ee:e4:
d9:7c:08:bd:02:7c:25:85:01:f5:25:b0:5f:28:0d:
2e:98:b0:67:c7:b8:a3:8c:55:77:31:f8:f2:65:1b:
8e:20:15:23:50:00:70:76:df:87:22:c6:2f:bd:5b:
ab:ba:ff:04:55:a7:01:00:ab:3d:2c:6a:2d:b1:5b:
06:d9:62:87:0f:94:b7:65:ce:d1:1b:63:f4:12:aa:
bd:61:5f:01:af:b4:08:9e:4a:18:4e:cc:9f:92:42:
6d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:73:5D:E4:C3:3E:F1:30:81:78:F1:3F:BD:70:9A:A1:41:85:3D:13
X509v3 Authority Key Identifier:
keyid:D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/37382e32342e3132322e302f32342d3234203d3e20323033333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.122.0/24
Signature Algorithm: sha256WithRSAEncryption
49:a3:94:dc:be:82:22:3c:75:c6:29:29:35:61:37:4f:17:59:
fe:f0:ca:87:d4:9e:74:0a:59:a6:2a:19:b1:16:01:81:4c:db:
02:84:cf:a2:44:eb:c5:c3:31:8d:33:d7:9f:f2:5c:f7:b5:2c:
3f:42:ef:11:3c:1d:37:4c:53:ed:10:6e:96:89:69:d5:f9:7b:
6c:4f:7f:3d:ab:35:5f:d6:87:e9:bd:63:c9:ce:e8:be:04:3b:
7c:be:56:25:11:22:ce:8a:5c:86:28:22:12:d0:a7:c2:59:50:
bb:ce:1f:81:f0:10:2d:3a:c7:f7:fd:1d:23:71:8e:68:4b:fa:
dd:bf:77:f5:32:9a:a0:48:33:c9:6e:c2:ab:8a:67:c9:2d:78:
26:bf:9f:c6:33:1e:3a:a9:30:fc:d3:d5:3a:53:6b:84:56:84:
df:2b:c6:42:02:18:17:7a:b6:09:cb:c5:32:83:f3:a0:d7:51:
ba:94:c6:b4:ca:c8:c3:c0:cb:97:35:75:ff:f0:ea:b4:94:64:
58:3f:72:f8:ec:3b:2c:d2:2a:d6:d9:95:53:dc:dd:85:36:80:
2c:bb:09:a7:ea:57:cf:47:f4:55:9a:7d:cd:47:fd:0f:77:8c:
5b:33:d6:bf:cb:5e:7a:54:9a:fc:20:96:6e:d1:a5:37:77:42:
c4:2b:c7:4a
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUPv3xv+J+9/XvgdwH6+l9NhuTJdwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDAxYmEwMTNiYzFlNmQ4NmYwZDZkNThlYWZhNTRlMjdm
YWRhMzQ0NDAeFw0yMzEwMDIxNDA3NTdaFw0yNDA5MzAxNDEyNTdaMDMxMTAvBgNV
BAMTKEJGNzM1REU0QzMzRUYxMzA4MTc4RjEzRkJENzA5QUExNDE4NTNEMTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgbKdUnAdFc75h+boYOZkWv8Vd
bw3rqS59kU+t+4aBDYjYMHaY3frlI4bj7lIBKX5MspTf7ysSfUNWigUnriKRmtBX
DmPiu1Ivb0v6QefFcDs8abewihn+cJqNVkX3mSlHSg9VfrM35XcRy8HvbzSOzrqB
hTyuFCuzQFBLPVpULCSc85dQxpY0fNf4wFIKlkhUOiVFyavDy3ZE1ctenh5njpju
5Nl8CL0CfCWFAfUlsF8oDS6YsGfHuKOMVXcx+PJlG44gFSNQAHB234cixi+9W6u6
/wRVpwEAqz0sai2xWwbZYocPlLdlztEbY/QSqr1hXwGvtAieShhOzJ+SQm0bAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUv3Nd5MM+8TCBePE/vXCaoUGFPRMwHwYDVR0j
BBgwFoAU0BugE7webYbw1tWOr6VOJ/raNEQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTUyMmE1MmYtNjUzNC00MTY1LWE2YTctZWY5Zjc0ZWY5
NDMxLzEvRDAxQkEwMTNCQzFFNkQ4NkYwRDZENThFQUZBNTRFMjdGQURBMzQ0NC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBCdWdFN3dlYllidzF0V09yNlZPSl9y
YU5FUS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTUyMmE1MmYt
NjUzNC00MTY1LWE2YTctZWY5Zjc0ZWY5NDMxLzEvMzczODJlMzIzNDJlMzEzMjMy
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMDMzMzMzNjMzLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
Thh6MA0GCSqGSIb3DQEBCwUAA4IBAQBJo5TcvoIiPHXGKSk1YTdPF1n+8MqH1J50
ClmmKhmxFgGBTNsChM+iROvFwzGNM9ef8lz3tSw/Qu8RPB03TFPtEG6WiWnV+Xts
T389qzVf1ofpvWPJzui+BDt8vlYlESLOilyGKCIS0KfCWVC7zh+B8BAtOsf3/R0j
cY5oS/rdv3f1MpqgSDPJbsKrimfJLXgmv5/GMx46qTD809U6U2uEVoTfK8ZCAhgX
erYJy8Uyg/Og11G6lMa0ysjDwMuXNXX/8Oq0lGRYP3L47Dss0irW2ZVT3N2FNoAs
uwmn6lfPR/RVmn3NR/0Pd4xbM9a/y156VJr8IJZu0aU3d0LEK8dK
-----END CERTIFICATE-----
Generated at Thu Apr 25 23:51:48 2024 by rpki-client on console-ams.rpki-client.org