Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e33302e302f32342d3234203d3e20323036303932.roa
File: 38322e3131382e33302e302f32342d3234203d3e20323036303932.roa (raw, json)
Hash identifier: 4POooxJKVR705xgJVqheoGXvZvYaVPjKRKZkZf51FDQ=
Subject key identifier: B4:B5:B0:76:07:AD:71:83:E6:2D:B2:CE:76:16:68:12:DB:FC:75:93
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 0EB002C0FC0EEE7CB9C65F124835A7193FA9E216
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e33302e302f32342d3234203d3e20323036303932.roa
Signing time: Thu 04 Apr 2024 11:05:14 +0000
ROA not before: Thu 04 Apr 2024 11:00:14 +0000
ROA not after: Thu 03 Apr 2025 11:05:14 +0000
asID: 206092
IP address blocks: 82.118.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:b0:02:c0:fc:0e:ee:7c:b9:c6:5f:12:48:35:a7:19:3f:a9:e2:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Apr 4 11:00:14 2024 GMT
Not After : Apr 3 11:05:14 2025 GMT
Subject: CN=B4B5B07607AD7183E62DB2CE76166812DBFC7593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bf:e6:3a:d5:e6:1d:12:11:d3:f5:9a:65:19:
50:ec:55:a7:69:55:56:9c:d4:35:f2:2e:7f:86:29:
66:2c:4f:7b:dc:a0:92:87:78:93:70:63:cc:22:a5:
ac:59:fb:7b:0a:9a:c9:73:98:33:f0:17:fc:51:43:
e9:66:dc:35:0a:8b:69:24:13:dc:40:c7:32:3d:57:
4f:6c:63:4f:73:c3:5d:63:2c:b3:82:d6:c5:89:8e:
72:1e:3d:8b:e0:49:6c:58:84:02:0a:28:dd:f5:bd:
40:67:d5:18:cc:fe:40:b2:dd:69:93:7f:ae:b3:c7:
ab:2e:0b:5d:fd:c1:27:91:b6:8a:2c:1e:40:7e:7d:
d8:31:3a:23:7e:10:3e:64:89:15:0f:b3:89:12:0f:
6d:36:bf:a5:57:6d:12:06:6d:4a:01:6c:04:ef:00:
ed:9a:48:ef:15:82:3d:41:fb:9d:a0:8f:f7:6a:83:
6a:52:9d:d4:47:57:fe:bd:08:c5:cf:9b:52:79:fc:
44:1e:2a:17:cf:a9:f2:50:c1:4a:db:23:f3:7b:a5:
ed:38:40:07:3d:fc:78:94:66:f9:25:89:d0:5d:3f:
b0:5e:d0:8d:d1:b9:b6:0c:6f:d2:e4:60:63:a5:d7:
9d:49:e0:8a:be:72:e2:43:0d:7b:78:d6:d6:b0:e5:
88:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:B5:B0:76:07:AD:71:83:E6:2D:B2:CE:76:16:68:12:DB:FC:75:93
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e33302e302f32342d3234203d3e20323036303932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.30.0/24
Signature Algorithm: sha256WithRSAEncryption
26:ce:79:10:fb:ec:75:e4:20:7e:58:df:ed:95:f8:33:1d:b5:
9d:84:0a:2c:42:4e:45:3a:2d:3f:20:53:c3:e0:14:e0:b0:65:
1e:32:63:1f:76:b2:90:64:f4:51:c9:84:69:e7:a0:6a:e2:52:
9d:e8:d7:16:7b:a7:71:78:46:a8:72:71:9c:51:17:56:1d:79:
b1:46:0b:95:f7:61:08:65:5b:04:ab:8a:bd:72:5e:d4:97:b3:
a0:02:6d:73:b5:ea:62:7b:ef:02:e0:45:ee:8b:8b:39:18:8f:
5b:8e:a5:eb:dd:7d:2e:fe:60:07:83:7b:2a:c9:2e:64:17:d3:
40:2b:69:4d:42:ae:2a:83:3b:26:22:7a:84:73:8f:ba:0f:43:
f0:67:0e:42:ba:37:e2:b5:38:8c:df:b4:1a:ff:dc:21:37:e5:
32:79:f4:cb:c5:3c:90:93:b1:e2:6a:e2:2e:2f:39:8c:e5:56:
e3:32:c3:6a:62:10:c6:13:b1:b7:35:fd:7c:d0:62:3a:7d:b6:
de:8f:fb:7e:1b:7d:16:42:88:50:f8:61:34:99:cf:26:ab:71:
e8:7e:0e:34:21:61:4a:2c:62:f2:eb:c7:f4:7d:6e:bb:b6:4a:
05:a7:66:10:f3:1b:3a:b9:22:99:49:5f:35:01:57:fe:b4:30:
a3:7c:13:57
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUDrACwPwO7ny5xl8SSDWnGT+p4hYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMGQwNTlmMTBkMThkMDAwNTJjODA4ZWI4MDY5ZjkwZDQ3
ZTMwNTY0YTAeFw0yNDA0MDQxMTAwMTRaFw0yNTA0MDMxMTA1MTRaMDMxMTAvBgNV
BAMTKEI0QjVCMDc2MDdBRDcxODNFNjJEQjJDRTc2MTY2ODEyREJGQzc1OTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+v+Y61eYdEhHT9ZplGVDsVadp
VVac1DXyLn+GKWYsT3vcoJKHeJNwY8wipaxZ+3sKmslzmDPwF/xRQ+lm3DUKi2kk
E9xAxzI9V09sY09zw11jLLOC1sWJjnIePYvgSWxYhAIKKN31vUBn1RjM/kCy3WmT
f66zx6suC139wSeRtoosHkB+fdgxOiN+ED5kiRUPs4kSD202v6VXbRIGbUoBbATv
AO2aSO8Vgj1B+52gj/dqg2pSndRHV/69CMXPm1J5/EQeKhfPqfJQwUrbI/N7pe04
QAc9/HiUZvklidBdP7Be0I3RubYMb9LkYGOl151J4Iq+cuJDDXt41taw5YibAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUtLWwdgetcYPmLbLOdhZoEtv8dZMwHwYDVR0j
BBgwFoAUDQWfENGNAAUsgI64Bp+Q1H4wVkowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmFmMTY3MDQtMjg1NC00MDgwLTlhMDktNzI2MjMyNmM5
ZTIyLzEvMEQwNTlGMTBEMThEMDAwNTJDODA4RUI4MDY5RjkwRDQ3RTMwNTY0QS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0RRV2ZFTkdOQUFVc2dJNjRCcC1RMUg0
d1Zrby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmFmMTY3MDQt
Mjg1NC00MDgwLTlhMDktNzI2MjMyNmM5ZTIyLzEvMzgzMjJlMzEzMTM4MmUzMzMw
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMDM2MzAzOTMyLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
UnYeMA0GCSqGSIb3DQEBCwUAA4IBAQAmznkQ++x15CB+WN/tlfgzHbWdhAosQk5F
Oi0/IFPD4BTgsGUeMmMfdrKQZPRRyYRp56Bq4lKd6NcWe6dxeEaocnGcURdWHXmx
RguV92EIZVsEq4q9cl7Ul7OgAm1ztepie+8C4EXui4s5GI9bjqXr3X0u/mAHg3sq
yS5kF9NAK2lNQq4qgzsmInqEc4+6D0PwZw5CujfitTiM37Qa/9whN+UyefTLxTyQ
k7HiauIuLzmM5VbjMsNqYhDGE7G3Nf180GI6fbbej/t+G30WQohQ+GE0mc8mq3Ho
fg40IWFKLGLy68f0fW67tkoFp2YQ8xs6uSKZSV81AVf+tDCjfBNX
-----END CERTIFICATE-----
Generated at Wed May 8 16:41:42 2024 by rpki-client on console-ams.rpki-client.org