Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/3137302e36322e3139302e302f32342d3234203d3e20323135323837.roa
File: 3137302e36322e3139302e302f32342d3234203d3e20323135323837.roa (raw, json)
Hash identifier: OVhjuno5vKwBJe9vNELyjG0i4vKTAonnjc57lC48la8=
Subject key identifier: 6B:A7:2D:3A:1D:C4:DA:1F:FA:9D:2F:B3:80:FD:68:B8:C9:FB:1F:EF
Certificate issuer: /CN=5ecb4cadbbadd500f49ca697d566a2761e017608
Certificate serial: 1B74FA5F514C5A7D24E9E11AA63C9690CCFAA87D
Authority key identifier: 5E:CB:4C:AD:BB:AD:D5:00:F4:9C:A6:97:D5:66:A2:76:1E:01:76:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XstMrbut1QD0nKaX1Waidh4Bdgg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/3137302e36322e3139302e302f32342d3234203d3e20323135323837.roa
Signing time: Mon 11 Nov 2024 17:57:02 +0000
ROA not before: Mon 11 Nov 2024 17:52:02 +0000
ROA not after: Mon 10 Nov 2025 17:57:02 +0000
asID: 215287
IP address blocks: 170.62.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/5ECB4CADBBADD500F49CA697D566A2761E017608.crl
rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/5ECB4CADBBADD500F49CA697D566A2761E017608.mft
rsync://rpki.ripe.net/repository/DEFAULT/XstMrbut1QD0nKaX1Waidh4Bdgg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:74:fa:5f:51:4c:5a:7d:24:e9:e1:1a:a6:3c:96:90:cc:fa:a8:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ecb4cadbbadd500f49ca697d566a2761e017608
Validity
Not Before: Nov 11 17:52:02 2024 GMT
Not After : Nov 10 17:57:02 2025 GMT
Subject: CN=6BA72D3A1DC4DA1FFA9D2FB380FD68B8C9FB1FEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:78:e8:2f:90:a0:8f:79:8b:ed:5d:7d:44:de:
e6:31:b4:3a:41:53:d7:ce:54:f2:87:3b:15:89:94:
2b:7d:06:7f:e6:66:ab:a1:8d:0c:45:27:be:e3:85:
d1:70:3c:1d:5b:6f:28:31:c1:5e:29:ff:48:d9:f3:
ef:07:16:4f:02:59:3c:72:aa:61:43:67:2e:39:0b:
78:a0:7a:6f:6e:99:1e:16:32:05:05:bc:ab:20:65:
f6:29:cb:34:4d:27:53:45:bc:ff:a7:1c:4c:73:d9:
5e:bf:2d:21:77:7b:24:52:b8:a3:b0:3f:f4:6f:e0:
ba:ca:2a:76:a8:eb:09:ea:91:e2:71:f5:7a:4f:85:
e2:6d:6c:47:ab:ee:74:45:24:0f:86:44:01:f8:ed:
ef:79:23:8c:53:88:e7:d2:fc:99:19:f6:bd:3a:29:
5b:91:5d:95:04:05:c1:0b:5a:60:44:23:f1:6c:26:
02:05:0a:da:06:b2:6c:c5:ef:27:84:fc:0b:cc:e8:
b4:39:ef:5d:96:55:eb:f9:44:ca:7c:c6:77:22:63:
4f:97:84:79:2f:4d:50:3d:4e:71:a6:89:00:4e:ad:
ba:b5:74:d2:91:e4:19:74:91:99:b0:dc:86:0d:20:
b0:54:4a:72:49:a7:8f:58:69:1f:01:53:0d:df:5a:
3c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:A7:2D:3A:1D:C4:DA:1F:FA:9D:2F:B3:80:FD:68:B8:C9:FB:1F:EF
X509v3 Authority Key Identifier:
keyid:5E:CB:4C:AD:BB:AD:D5:00:F4:9C:A6:97:D5:66:A2:76:1E:01:76:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/5ECB4CADBBADD500F49CA697D566A2761E017608.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XstMrbut1QD0nKaX1Waidh4Bdgg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/3137302e36322e3139302e302f32342d3234203d3e20323135323837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.62.190.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:54:42:fa:3e:77:2f:46:ea:e0:eb:82:bd:5a:a0:18:8d:ed:
78:39:26:b3:77:0d:c4:60:b7:3b:78:34:bf:88:a8:5a:6f:7b:
f4:36:37:c7:71:b0:6f:58:02:6a:13:51:94:74:b0:3f:c2:25:
5f:9a:49:75:62:73:5e:7b:db:4d:26:b3:45:f6:40:47:93:af:
bc:f3:7a:f9:2a:05:02:b3:9d:85:50:95:3c:1f:72:04:ed:81:
6e:ab:20:09:ff:a5:44:31:6d:fe:70:0c:6f:ce:8a:3c:97:56:
f6:2d:82:d5:af:27:c4:8b:9f:17:3d:20:9e:85:65:12:fb:65:
e7:df:5f:1d:97:45:51:27:bc:82:c8:7f:fc:c8:34:1f:99:e7:
e4:67:4e:4e:f7:f9:03:24:16:3c:0f:f5:7b:d2:05:6d:6a:85:
34:92:4b:5d:60:a1:21:22:89:89:ce:74:ad:43:99:a0:e2:dc:
f0:39:cb:5c:69:07:a6:9d:3f:d9:89:b4:4f:6c:3a:8b:54:4f:
d7:5a:db:4a:f3:d5:5f:30:37:aa:f1:2f:d1:d9:23:b2:da:04:
f4:fc:a3:d0:86:30:f7:28:46:c1:73:6a:96:8a:a4:b4:b1:d2:
ac:0b:e2:a2:b4:6d:3f:ce:e8:43:29:e3:4a:ed:e2:57:39:56:
90:ec:6d:03
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUG3T6X1FMWn0k6eEapjyWkMz6qH0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWVjYjRjYWRiYmFkZDUwMGY0OWNhNjk3ZDU2NmEyNzYx
ZTAxNzYwODAeFw0yNDExMTExNzUyMDJaFw0yNTExMTAxNzU3MDJaMDMxMTAvBgNV
BAMTKDZCQTcyRDNBMURDNERBMUZGQTlEMkZCMzgwRkQ2OEI4QzlGQjFGRUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXeOgvkKCPeYvtXX1E3uYxtDpB
U9fOVPKHOxWJlCt9Bn/mZquhjQxFJ77jhdFwPB1bbygxwV4p/0jZ8+8HFk8CWTxy
qmFDZy45C3igem9umR4WMgUFvKsgZfYpyzRNJ1NFvP+nHExz2V6/LSF3eyRSuKOw
P/Rv4LrKKnao6wnqkeJx9XpPheJtbEer7nRFJA+GRAH47e95I4xTiOfS/JkZ9r06
KVuRXZUEBcELWmBEI/FsJgIFCtoGsmzF7yeE/AvM6LQ5712WVev5RMp8xnciY0+X
hHkvTVA9TnGmiQBOrbq1dNKR5Bl0kZmw3IYNILBUSnJJp49YaR8BUw3fWjy5AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUa6ctOh3E2h/6nS+zgP1ouMn7H+8wHwYDVR0j
BBgwFoAUXstMrbut1QD0nKaX1Waidh4BdggwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWMwZTEzZDgtYmZlMC00MjM1LWFmYjQtZDUzZWRmYmFj
ZGQyLzAvNUVDQjRDQURCQkFERDUwMEY0OUNBNjk3RDU2NkEyNzYxRTAxNzYwOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hzdE1yYnV0MVFEMG5LYVgxV2FpZGg0
QmRnZy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWMwZTEzZDgt
YmZlMC00MjM1LWFmYjQtZDUzZWRmYmFjZGQyLzAvMzEzNzMwMmUzNjMyMmUzMTM5
MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMxMzUzMjM4Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACqPr4wDQYJKoZIhvcNAQELBQADggEBAKBUQvo+dy9G6uDrgr1aoBiN7Xg5JrN3
DcRgtzt4NL+IqFpve/Q2N8dxsG9YAmoTUZR0sD/CJV+aSXVic157200ms0X2QEeT
r7zzevkqBQKznYVQlTwfcgTtgW6rIAn/pUQxbf5wDG/OijyXVvYtgtWvJ8SLnxc9
IJ6FZRL7ZeffXx2XRVEnvILIf/zINB+Z5+RnTk73+QMkFjwP9XvSBW1qhTSSS11g
oSEiiYnOdK1DmaDi3PA5y1xpB6adP9mJtE9sOotUT9da20rz1V8wN6rxL9HZI7La
BPT8o9CGMPcoRsFzapaKpLSx0qwL4qK0bT/O6EMp40rt4lc5VpDsbQM=
-----END CERTIFICATE-----
Generated at Fri Nov 22 05:53:32 2024 by rpki-client on console-fra.rpki-client.org