Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e6aff234-61c5-4290-8a6d-5f2b9027322f/0/3138352e3234322e3138312e302f32342d3234203d3e203431373230.roa
File: 3138352e3234322e3138312e302f32342d3234203d3e203431373230.roa (raw, json)
Hash identifier: Wm3IDAOfkV81JSuZK/Na7XnsHjZUJzGcxe64BY1WIhs=
Subject key identifier: 65:29:E1:2C:ED:5D:D0:36:6C:B1:2A:0B:1A:A6:D1:08:63:DA:34:82
Certificate issuer: /CN=88cdd9c193da9185a4ac15b2ade875fe97b6f491
Certificate serial: 111DD7D9D02D55B63BAFA0F36E46B0BD29D79128
Authority key identifier: 88:CD:D9:C1:93:DA:91:85:A4:AC:15:B2:AD:E8:75:FE:97:B6:F4:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iM3ZwZPakYWkrBWyreh1_pe29JE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e6aff234-61c5-4290-8a6d-5f2b9027322f/0/3138352e3234322e3138312e302f32342d3234203d3e203431373230.roa
Signing time: Thu 22 Aug 2024 15:50:03 +0000
ROA not before: Thu 22 Aug 2024 15:45:03 +0000
ROA not after: Thu 21 Aug 2025 15:50:03 +0000
asID: 41720
IP address blocks: 185.242.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e6aff234-61c5-4290-8a6d-5f2b9027322f/0/88CDD9C193DA9185A4AC15B2ADE875FE97B6F491.crl
rsync://rsync.paas.rpki.ripe.net/repository/e6aff234-61c5-4290-8a6d-5f2b9027322f/0/88CDD9C193DA9185A4AC15B2ADE875FE97B6F491.mft
rsync://rpki.ripe.net/repository/DEFAULT/iM3ZwZPakYWkrBWyreh1_pe29JE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Nov 2024 15:27:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:1d:d7:d9:d0:2d:55:b6:3b:af:a0:f3:6e:46:b0:bd:29:d7:91:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88cdd9c193da9185a4ac15b2ade875fe97b6f491
Validity
Not Before: Aug 22 15:45:03 2024 GMT
Not After : Aug 21 15:50:03 2025 GMT
Subject: CN=6529E12CED5DD0366CB12A0B1AA6D10863DA3482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:78:a3:9c:be:e6:1d:ae:e4:2a:43:c7:28:3d:
1b:94:77:e4:71:e2:85:32:1c:35:9b:ef:35:e3:af:
5e:aa:4b:96:ed:4e:03:9e:9a:6b:c8:27:f3:43:5a:
09:43:17:0a:04:93:c0:4b:d2:72:f3:fe:60:a5:8a:
d9:5c:d1:1f:90:66:c6:82:40:1b:94:25:17:8f:64:
3d:6a:2c:8e:f5:f1:13:b5:dc:f8:18:c4:ab:7c:44:
1b:67:08:d6:b1:24:a6:00:6d:1f:09:a6:ca:46:14:
cd:79:c0:bf:fe:73:42:f5:94:78:2e:0a:4e:b4:c6:
5d:5e:a8:28:e6:9f:c0:de:92:ee:ad:4a:05:a5:8f:
7a:19:ad:a2:90:9a:8f:47:eb:d2:02:f2:cc:49:b6:
a1:39:32:e2:66:6c:f3:39:2f:45:1b:53:b4:f4:e7:
31:75:08:e0:d5:3e:3f:59:f5:ac:0d:3e:ef:b4:4a:
57:db:f7:0c:f6:e8:e6:eb:a3:17:e7:39:a2:cb:22:
7d:9c:64:7a:80:2f:8f:73:fe:fc:73:ea:e7:d5:d0:
a8:40:18:ed:15:0f:38:f9:4c:3d:2b:19:39:01:f1:
7c:67:64:4d:fa:88:37:fc:09:d7:ab:cf:73:62:07:
67:89:7a:6e:09:8b:38:16:f2:e8:78:e5:03:d5:b1:
96:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:29:E1:2C:ED:5D:D0:36:6C:B1:2A:0B:1A:A6:D1:08:63:DA:34:82
X509v3 Authority Key Identifier:
keyid:88:CD:D9:C1:93:DA:91:85:A4:AC:15:B2:AD:E8:75:FE:97:B6:F4:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e6aff234-61c5-4290-8a6d-5f2b9027322f/0/88CDD9C193DA9185A4AC15B2ADE875FE97B6F491.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iM3ZwZPakYWkrBWyreh1_pe29JE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e6aff234-61c5-4290-8a6d-5f2b9027322f/0/3138352e3234322e3138312e302f32342d3234203d3e203431373230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.181.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:7a:e6:1c:9a:99:a1:9e:19:1f:db:8b:ce:51:e3:7a:55:a8:
8a:9e:c5:c0:89:9e:dd:13:df:7f:bf:54:87:32:6e:2d:2b:5f:
cf:94:df:53:d9:e7:e1:96:62:76:58:de:ba:45:b0:d0:a8:fc:
7c:f2:d9:ea:28:ff:3a:79:a5:bd:63:c1:f1:ff:9c:5d:ca:f0:
59:e8:c7:2a:b7:8b:7c:52:db:ff:7f:24:6a:71:4a:72:15:7c:
98:a0:5f:cd:f3:48:14:c3:7c:6e:e5:05:06:c1:3e:cd:3a:55:
72:66:39:c0:c7:a7:5f:b4:ed:44:60:ae:2f:00:29:c3:dc:1b:
c5:7f:6d:6b:4e:e2:b1:0f:df:63:c0:41:5e:91:00:ca:f5:a7:
26:bd:6e:20:c9:c7:be:2e:1a:c6:0e:4a:b8:13:a1:c4:7d:62:
80:18:ed:c9:66:31:7a:1d:1a:c1:0c:c6:08:14:f9:a0:1f:56:
a4:73:e6:e1:7f:58:4c:dd:4d:2e:ea:92:c2:28:c3:b5:42:2a:
41:bc:29:b1:17:bc:c8:06:78:fa:e8:10:72:af:06:01:9e:c3:
a2:fc:1e:9e:e4:e2:92:1e:de:58:f3:ea:9e:8f:9e:96:f4:b7:
af:7d:7e:67:83:f7:cb:91:0e:1a:99:e8:00:b1:52:43:ee:94:
60:0b:05:60
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUER3X2dAtVbY7r6DzbkawvSnXkSgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODhjZGQ5YzE5M2RhOTE4NWE0YWMxNWIyYWRlODc1ZmU5
N2I2ZjQ5MTAeFw0yNDA4MjIxNTQ1MDNaFw0yNTA4MjExNTUwMDNaMDMxMTAvBgNV
BAMTKDY1MjlFMTJDRUQ1REQwMzY2Q0IxMkEwQjFBQTZEMTA4NjNEQTM0ODIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDeKOcvuYdruQqQ8coPRuUd+Rx
4oUyHDWb7zXjr16qS5btTgOemmvIJ/NDWglDFwoEk8BL0nLz/mClitlc0R+QZsaC
QBuUJRePZD1qLI718RO13PgYxKt8RBtnCNaxJKYAbR8JpspGFM15wL/+c0L1lHgu
Ck60xl1eqCjmn8Deku6tSgWlj3oZraKQmo9H69IC8sxJtqE5MuJmbPM5L0UbU7T0
5zF1CODVPj9Z9awNPu+0Slfb9wz26ObroxfnOaLLIn2cZHqAL49z/vxz6ufV0KhA
GO0VDzj5TD0rGTkB8XxnZE36iDf8Cderz3NiB2eJem4JizgW8uh45QPVsZa3AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUZSnhLO1d0DZssSoLGqbRCGPaNIIwHwYDVR0j
BBgwFoAUiM3ZwZPakYWkrBWyreh1/pe29JEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZTZhZmYyMzQtNjFjNS00MjkwLThhNmQtNWYyYjkwMjcz
MjJmLzAvODhDREQ5QzE5M0RBOTE4NUE0QUMxNUIyQURFODc1RkU5N0I2RjQ5MS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2lNM1p3WlBha1lXa3JCV3lyZWgxX3Bl
MjlKRS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZTZhZmYyMzQt
NjFjNS00MjkwLThhNmQtNWYyYjkwMjczMjJmLzAvMzEzODM1MmUzMjM0MzIyZTMx
MzgzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzEzNzMyMzAucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC58rUwDQYJKoZIhvcNAQELBQADggEBAC165hyamaGeGR/bi85R43pVqIqexcCJ
nt0T33+/VIcybi0rX8+U31PZ5+GWYnZY3rpFsNCo/Hzy2eoo/zp5pb1jwfH/nF3K
8Fnoxyq3i3xS2/9/JGpxSnIVfJigX83zSBTDfG7lBQbBPs06VXJmOcDHp1+07URg
ri8AKcPcG8V/bWtO4rEP32PAQV6RAMr1pya9biDJx74uGsYOSrgTocR9YoAY7clm
MXodGsEMxggU+aAfVqRz5uF/WEzdTS7qksIow7VCKkG8KbEXvMgGeProEHKvBgGe
w6L8Hp7k4pIe3ljz6p6Pnpb0t699fmeD98uRDhqZ6ACxUkPulGALBWA=
-----END CERTIFICATE-----
Generated at Thu Nov 21 00:11:00 2024 by rpki-client on console-ams.rpki-client.org