Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e33302e302f32342d3234203d3e20323036313530.roa
File: 38322e3131382e33302e302f32342d3234203d3e20323036313530.roa (raw, json)
Hash identifier: ZXrmfgIA+JCZxOhotYtd55cQJIjVM/D5B/t1Y9V84n0=
Subject key identifier: 76:3B:91:08:21:9D:3A:DC:C6:2A:9E:D9:E7:FC:BE:09:CC:37:D2:8B
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 2D46AD3EAC822DB0E763459621A924099F47A1BC
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e33302e302f32342d3234203d3e20323036313530.roa
Signing time: Thu 04 Apr 2024 11:05:15 +0000
ROA not before: Thu 04 Apr 2024 11:00:15 +0000
ROA not after: Thu 03 Apr 2025 11:05:15 +0000
asID: 206150
IP address blocks: 82.118.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:46:ad:3e:ac:82:2d:b0:e7:63:45:96:21:a9:24:09:9f:47:a1:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Apr 4 11:00:15 2024 GMT
Not After : Apr 3 11:05:15 2025 GMT
Subject: CN=763B9108219D3ADCC62A9ED9E7FCBE09CC37D28B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f4:ee:6b:6b:35:ce:63:23:40:e5:3a:56:45:
5f:8e:0a:58:03:8f:72:97:78:da:e3:d9:fa:24:3b:
45:2c:f2:4c:e8:9e:0b:00:aa:73:ee:29:e1:77:92:
ef:4d:a3:f0:7f:c7:58:29:9b:97:40:82:db:99:0b:
00:19:40:ae:cd:c0:dc:a2:47:68:85:bc:21:83:c1:
46:c3:25:d7:06:2e:96:c0:0e:9a:76:ed:1c:bb:43:
be:c7:46:b8:9b:64:c6:08:36:19:1d:9b:6b:29:7a:
42:52:39:1e:de:f1:40:ec:d1:ff:db:17:8e:27:09:
6a:cf:a7:60:42:5a:46:31:17:42:ca:f9:0d:0b:37:
0e:97:ee:6c:eb:b5:b1:ee:95:44:03:cd:50:e1:1c:
30:ad:c9:ec:99:0c:6e:08:27:ba:48:dd:85:a4:0d:
0d:5d:82:3f:12:d0:44:64:f5:5e:fc:44:c9:31:5e:
be:df:d1:5e:a7:ca:14:ed:25:84:b9:c0:8e:85:f7:
cc:65:ec:69:29:01:f7:99:79:87:de:5b:63:56:f1:
d0:a3:9c:4d:20:23:20:ae:80:7a:ea:95:35:c0:01:
36:5f:ea:ff:5c:8c:62:5b:85:5a:7c:7e:c9:46:a2:
86:0a:e5:37:61:33:1e:63:c6:4a:76:cc:39:90:14:
89:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:3B:91:08:21:9D:3A:DC:C6:2A:9E:D9:E7:FC:BE:09:CC:37:D2:8B
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e33302e302f32342d3234203d3e20323036313530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.30.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:66:0e:fe:53:dc:7e:ef:e3:51:4a:a8:32:f6:6f:37:e9:33:
07:ce:60:7f:4d:b6:32:f1:5b:97:c4:7d:63:fd:a8:c9:76:d1:
f0:7d:5b:e0:7f:ea:35:5e:93:36:2b:62:0f:9d:fb:ba:be:dd:
a0:ae:76:2b:af:5c:a2:82:cd:a2:9d:80:cd:ee:3f:09:66:6e:
4b:b6:2a:fe:0b:f0:e5:a3:42:9f:27:1b:b9:b6:12:95:3e:c1:
6a:8e:08:09:27:8c:e2:5a:2d:3f:5b:84:56:4c:7c:22:52:b7:
37:57:db:eb:b3:c8:b5:8f:68:9f:04:c5:fe:7a:fa:4f:b0:e0:
72:1a:a0:31:63:35:df:43:b5:5b:74:2c:f2:4f:c6:b4:24:2f:
1d:a8:53:1c:b1:c8:e7:60:36:19:f6:2a:2f:fa:95:70:31:72:
dc:ad:16:17:da:12:68:55:bb:b2:29:d9:6c:3b:6e:d5:f9:a5:
70:7a:4b:ae:43:a8:a2:76:fb:39:d2:8d:47:c0:7c:80:3f:1e:
5c:ec:cf:9d:22:ec:b0:19:a0:18:47:06:e0:de:a5:d5:b3:43:
d6:05:fe:8b:79:61:05:af:3d:54:a2:32:d0:11:c1:31:7a:d9:
56:3c:b5:15:39:47:04:48:54:54:f4:4e:16:3b:a6:9c:39:bd:
50:5b:5b:81
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIULUatPqyCLbDnY0WWIakkCZ9HobwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMGQwNTlmMTBkMThkMDAwNTJjODA4ZWI4MDY5ZjkwZDQ3
ZTMwNTY0YTAeFw0yNDA0MDQxMTAwMTVaFw0yNTA0MDMxMTA1MTVaMDMxMTAvBgNV
BAMTKDc2M0I5MTA4MjE5RDNBRENDNjJBOUVEOUU3RkNCRTA5Q0MzN0QyOEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCW9O5razXOYyNA5TpWRV+OClgD
j3KXeNrj2fokO0Us8kzongsAqnPuKeF3ku9No/B/x1gpm5dAgtuZCwAZQK7NwNyi
R2iFvCGDwUbDJdcGLpbADpp27Ry7Q77HRribZMYINhkdm2spekJSOR7e8UDs0f/b
F44nCWrPp2BCWkYxF0LK+Q0LNw6X7mzrtbHulUQDzVDhHDCtyeyZDG4IJ7pI3YWk
DQ1dgj8S0ERk9V78RMkxXr7f0V6nyhTtJYS5wI6F98xl7GkpAfeZeYfeW2NW8dCj
nE0gIyCugHrqlTXAATZf6v9cjGJbhVp8fslGooYK5TdhMx5jxkp2zDmQFIkTAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUdjuRCCGdOtzGKp7Z5/y+Ccw30oswHwYDVR0j
BBgwFoAUDQWfENGNAAUsgI64Bp+Q1H4wVkowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmFmMTY3MDQtMjg1NC00MDgwLTlhMDktNzI2MjMyNmM5
ZTIyLzEvMEQwNTlGMTBEMThEMDAwNTJDODA4RUI4MDY5RjkwRDQ3RTMwNTY0QS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0RRV2ZFTkdOQUFVc2dJNjRCcC1RMUg0
d1Zrby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmFmMTY3MDQt
Mjg1NC00MDgwLTlhMDktNzI2MjMyNmM5ZTIyLzEvMzgzMjJlMzEzMTM4MmUzMzMw
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMDM2MzEzNTMwLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
UnYeMA0GCSqGSIb3DQEBCwUAA4IBAQAcZg7+U9x+7+NRSqgy9m836TMHzmB/TbYy
8VuXxH1j/ajJdtHwfVvgf+o1XpM2K2IPnfu6vt2grnYrr1yigs2inYDN7j8JZm5L
tir+C/Dlo0KfJxu5thKVPsFqjggJJ4ziWi0/W4RWTHwiUrc3V9vrs8i1j2ifBMX+
evpPsOByGqAxYzXfQ7VbdCzyT8a0JC8dqFMcscjnYDYZ9iov+pVwMXLcrRYX2hJo
VbuyKdlsO27V+aVwekuuQ6iidvs50o1HwHyAPx5c7M+dIuywGaAYRwbg3qXVs0PW
Bf6LeWEFrz1UojLQEcExetlWPLUVOUcESFRU9E4WO6acOb1QW1uB
-----END CERTIFICATE-----
Generated at Sat May 11 08:13:51 2024 by rpki-client on console-ams.rpki-client.org