Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/3138352e31332e3232342e302f32342d3234203d3e20313335333931.roa
File: 3138352e31332e3232342e302f32342d3234203d3e20313335333931.roa (raw, json)
Hash identifier: k6qvY6qYLtrsDEyi8J+SScxT9enfuaIRYNZH2IHqC8o=
Subject key identifier: D2:91:4C:0D:99:52:B7:85:0C:73:C0:E4:DB:D4:30:12:42:5C:6E:7D
Certificate issuer: /CN=4c189e42f35c944d463d9ea6501f093eb62ba785
Certificate serial: 4562CEAABA1ECEA2D4D3E55BA3709B929981BAFB
Authority key identifier: 4C:18:9E:42:F3:5C:94:4D:46:3D:9E:A6:50:1F:09:3E:B6:2B:A7:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TBieQvNclE1GPZ6mUB8JPrYrp4U.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/3138352e31332e3232342e302f32342d3234203d3e20313335333931.roa
Signing time: Fri 23 Aug 2024 06:47:44 +0000
ROA not before: Fri 23 Aug 2024 06:42:44 +0000
ROA not after: Fri 22 Aug 2025 06:47:44 +0000
asID: 135391
IP address blocks: 185.13.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/4C189E42F35C944D463D9EA6501F093EB62BA785.crl
rsync://rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/4C189E42F35C944D463D9EA6501F093EB62BA785.mft
rsync://rpki.ripe.net/repository/DEFAULT/TBieQvNclE1GPZ6mUB8JPrYrp4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:62:ce:aa:ba:1e:ce:a2:d4:d3:e5:5b:a3:70:9b:92:99:81:ba:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c189e42f35c944d463d9ea6501f093eb62ba785
Validity
Not Before: Aug 23 06:42:44 2024 GMT
Not After : Aug 22 06:47:44 2025 GMT
Subject: CN=D2914C0D9952B7850C73C0E4DBD43012425C6E7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9d:72:e2:9c:59:a4:7e:3a:8a:da:02:ba:a0:
3f:f1:8d:76:d6:ad:59:c6:29:fb:fe:e4:1d:6a:1f:
8b:59:08:bb:1d:c8:cf:5e:ce:02:48:b3:00:86:5c:
32:59:40:89:c9:12:bc:80:3e:bc:d9:e8:ec:50:6a:
c9:e1:a5:98:6c:56:b6:60:46:74:cc:77:a6:fd:b7:
0e:bb:12:33:44:47:34:7a:26:42:0d:90:c6:46:ad:
1b:64:48:3f:8a:a9:1a:f3:15:30:ba:2d:ed:ea:45:
c2:63:12:79:ac:03:39:ca:36:60:b7:4d:8c:3e:db:
f0:ae:a1:e5:fe:15:8a:16:4a:20:cf:de:0b:7b:56:
2d:bb:3b:92:e0:37:b7:e0:3b:fd:5d:84:8d:8c:3a:
6d:b3:94:d3:d9:33:99:61:28:d1:b5:9b:2e:bf:ae:
08:a4:d8:ff:27:e6:22:ed:f2:89:39:8d:06:fb:15:
05:40:02:31:91:55:36:5e:99:50:e7:11:9e:91:20:
c2:8f:e4:39:8c:77:04:39:83:31:16:22:11:9f:a2:
26:db:83:f7:1c:6d:50:0b:2d:f7:12:d6:34:0c:c5:
13:8c:14:b6:48:ac:0b:ad:8c:ca:d8:70:27:9f:43:
a6:e0:28:73:6f:30:ba:39:fc:fb:52:1e:6a:01:3e:
44:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:91:4C:0D:99:52:B7:85:0C:73:C0:E4:DB:D4:30:12:42:5C:6E:7D
X509v3 Authority Key Identifier:
keyid:4C:18:9E:42:F3:5C:94:4D:46:3D:9E:A6:50:1F:09:3E:B6:2B:A7:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/4C189E42F35C944D463D9EA6501F093EB62BA785.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TBieQvNclE1GPZ6mUB8JPrYrp4U.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ce510e17-31fa-414b-989e-026dbb6fdf51/0/3138352e31332e3232342e302f32342d3234203d3e20313335333931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.224.0/24
Signature Algorithm: sha256WithRSAEncryption
09:bd:5e:e7:63:75:05:64:8a:74:60:8b:03:0e:c4:6b:fe:71:
15:71:88:89:56:7e:b8:d4:6d:d1:a0:59:fc:23:cf:d5:fd:9d:
1f:aa:15:6c:05:20:ae:88:e9:1c:66:69:6f:34:49:ad:04:fa:
93:77:c9:a6:5b:38:5a:88:68:fd:16:2c:27:b4:15:bf:ff:31:
f9:36:38:a1:5e:8a:89:e5:92:96:f2:f2:19:06:f3:53:d9:e8:
1d:d2:55:2e:81:9b:da:e0:2a:09:9a:f8:a4:75:af:c0:86:dc:
14:d8:52:a5:0c:e6:75:aa:fa:c9:96:b4:54:08:5b:75:bb:3c:
02:c5:91:c8:be:f1:d4:18:8e:b8:70:9c:f7:b1:1d:e5:23:70:
48:47:31:0f:42:11:88:36:29:4b:eb:18:a6:16:9f:af:74:ef:
83:23:3d:ae:e2:bb:66:e6:38:37:13:5a:62:62:4a:df:0e:23:
9b:f4:63:2a:c6:1d:fd:87:ec:c1:43:30:85:46:c1:e6:39:48:
d1:54:2a:fe:e7:15:41:d4:3e:64:72:09:c5:a7:25:d8:09:b9:
33:c0:15:83:85:2e:e0:e8:c8:05:03:2f:6e:4d:c0:46:dc:ca:
ee:52:f0:53:86:3c:2b:8d:c4:39:1d:0d:a4:fb:bf:61:dc:ed:
ed:4f:2a:23
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIURWLOqroezqLU0+Vbo3CbkpmBuvswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGMxODllNDJmMzVjOTQ0ZDQ2M2Q5ZWE2NTAxZjA5M2Vi
NjJiYTc4NTAeFw0yNDA4MjMwNjQyNDRaFw0yNTA4MjIwNjQ3NDRaMDMxMTAvBgNV
BAMTKEQyOTE0QzBEOTk1MkI3ODUwQzczQzBFNERCRDQzMDEyNDI1QzZFN0QwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCanXLinFmkfjqK2gK6oD/xjXbW
rVnGKfv+5B1qH4tZCLsdyM9ezgJIswCGXDJZQInJEryAPrzZ6OxQasnhpZhsVrZg
RnTMd6b9tw67EjNERzR6JkINkMZGrRtkSD+KqRrzFTC6Le3qRcJjEnmsAznKNmC3
TYw+2/CuoeX+FYoWSiDP3gt7Vi27O5LgN7fgO/1dhI2MOm2zlNPZM5lhKNG1my6/
rgik2P8n5iLt8ok5jQb7FQVAAjGRVTZemVDnEZ6RIMKP5DmMdwQ5gzEWIhGfoibb
g/ccbVALLfcS1jQMxROMFLZIrAutjMrYcCefQ6bgKHNvMLo5/PtSHmoBPkQpAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU0pFMDZlSt4UMc8Dk29QwEkJcbn0wHwYDVR0j
BBgwFoAUTBieQvNclE1GPZ6mUB8JPrYrp4UwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvY2U1MTBlMTctMzFmYS00MTRiLTk4OWUtMDI2ZGJiNmZk
ZjUxLzAvNEMxODlFNDJGMzVDOTQ0RDQ2M0Q5RUE2NTAxRjA5M0VCNjJCQTc4NS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1RCaWVRdk5jbEUxR1BaNm1VQjhKUHJZ
cnA0VS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvY2U1MTBlMTct
MzFmYS00MTRiLTk4OWUtMDI2ZGJiNmZkZjUxLzAvMzEzODM1MmUzMTMzMmUzMjMy
MzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzMzM5MzEucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC5DeAwDQYJKoZIhvcNAQELBQADggEBAAm9XudjdQVkinRgiwMOxGv+cRVxiIlW
frjUbdGgWfwjz9X9nR+qFWwFIK6I6RxmaW80Sa0E+pN3yaZbOFqIaP0WLCe0Fb//
Mfk2OKFeionlkpby8hkG81PZ6B3SVS6Bm9rgKgma+KR1r8CG3BTYUqUM5nWq+smW
tFQIW3W7PALFkci+8dQYjrhwnPexHeUjcEhHMQ9CEYg2KUvrGKYWn69074MjPa7i
u2bmODcTWmJiSt8OI5v0YyrGHf2H7MFDMIVGweY5SNFUKv7nFUHUPmRyCcWnJdgJ
uTPAFYOFLuDoyAUDL25NwEbcyu5S8FOGPCuNxDkdDaT7v2Hc7e1PKiM=
-----END CERTIFICATE-----
Generated at Fri Nov 22 06:41:51 2024 by rpki-client on console-ams.rpki-client.org