Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3139382e32362e302f32342d3234203d3e203633343733.roa
File: 3138352e3139382e32362e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: 1oitauB+CMiBADutaBLFpbsOO2CfEqu/Eo5wA32p99I=
Subject key identifier: 27:7C:60:45:00:D9:83:D2:5D:44:CD:74:D1:92:5E:38:D9:AC:0C:90
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 6EC9C12530421B7ADD8120C12EF60560CB5B1C84
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3139382e32362e302f32342d3234203d3e203633343733.roa
Signing time: Mon 04 Nov 2024 10:05:25 +0000
ROA not before: Mon 04 Nov 2024 10:00:25 +0000
ROA not after: Mon 03 Nov 2025 10:05:25 +0000
asID: 63473
IP address blocks: 185.198.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:c9:c1:25:30:42:1b:7a:dd:81:20:c1:2e:f6:05:60:cb:5b:1c:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Nov 4 10:00:25 2024 GMT
Not After : Nov 3 10:05:25 2025 GMT
Subject: CN=277C604500D983D25D44CD74D1925E38D9AC0C90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:fc:a0:49:81:cb:7a:1d:e1:39:22:ff:74:8b:
8a:99:7e:82:8e:bf:f4:d0:20:e2:6a:70:df:cb:c6:
ea:ec:f9:ea:0f:32:43:32:99:39:2f:97:b8:65:30:
3d:ce:35:f7:55:69:f6:3a:67:bd:a8:16:5b:c2:29:
f2:ee:57:87:04:86:f1:6f:c5:d0:b4:da:c3:63:9a:
68:90:3b:26:45:f2:ef:50:05:68:f5:39:da:d6:2b:
c8:2d:d9:45:b8:4a:c2:3f:c8:2b:fa:fe:fb:b0:df:
6a:7c:fc:c4:78:1b:19:47:12:86:b1:8a:14:64:90:
e7:22:53:ed:9f:d9:b3:54:05:65:1a:c7:9f:9b:a2:
d3:fd:25:2e:7f:2d:4b:06:3a:a0:29:7e:52:6c:02:
f4:79:66:8e:f7:f8:0f:63:09:e1:60:d3:20:6f:7d:
df:2a:7e:c7:0b:b4:df:19:89:f0:be:00:15:83:a6:
3a:74:10:34:c8:91:b6:bd:a7:bf:c3:17:12:04:c3:
2c:35:7b:fd:ef:75:5f:9c:d3:02:b5:61:77:ac:32:
4f:ac:7d:c9:19:80:92:af:b4:dd:30:26:9a:c0:aa:
f5:31:79:36:2a:69:06:22:b6:10:a1:bf:02:d1:96:
20:80:f5:72:4e:e0:83:73:66:57:45:bf:98:a8:15:
b6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:7C:60:45:00:D9:83:D2:5D:44:CD:74:D1:92:5E:38:D9:AC:0C:90
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3139382e32362e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.26.0/24
Signature Algorithm: sha256WithRSAEncryption
01:61:e9:47:b2:13:84:c0:93:e9:ae:0d:86:00:2f:c5:42:dd:
3f:68:b0:00:f4:ff:0c:07:09:91:32:fb:3b:db:f9:ff:54:ab:
82:7e:87:1c:13:54:24:fb:2c:9d:bf:b8:0b:62:55:4d:10:10:
31:0f:a4:d0:66:5c:59:fc:54:73:38:89:57:8d:99:a1:90:ee:
2b:71:78:44:70:64:9e:c4:1b:b1:8e:4f:35:03:46:40:3a:1a:
05:26:76:c8:d9:da:f7:d5:c2:e5:f5:e0:88:2d:f5:59:64:4c:
41:3d:8b:78:6a:b8:fd:13:a5:33:53:a5:e2:82:dd:d1:10:ab:
86:fd:6b:a0:a0:ac:e2:1e:82:25:5f:ee:67:29:4c:20:b9:20:
04:0e:0f:97:7a:86:4e:43:12:e0:b1:12:e5:a7:bb:84:9e:f5:
99:7f:6c:af:5b:9a:0c:b9:70:91:d8:25:c9:4c:58:2b:14:c0:
f6:e9:e4:a7:6a:ff:b7:d7:5e:56:a3:7a:20:4c:65:57:c2:28:
7c:a1:63:63:ff:6a:ff:21:c3:61:46:5e:78:cb:af:73:9a:95:
eb:65:0f:73:a8:16:73:2e:73:87:99:3a:92:5c:70:a6:eb:c1:
1c:89:4f:60:58:44:3a:98:0a:9d:c0:f2:4c:dd:84:b9:74:5e:
1c:b2:1b:c2
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUbsnBJTBCG3rdgSDBLvYFYMtbHIQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjk3YmNmYWMyN2JiYWYxOWRlMWQzMWU1MzYyOTcyNmMx
ZTRjYWFhMjAeFw0yNDExMDQxMDAwMjVaFw0yNTExMDMxMDA1MjVaMDMxMTAvBgNV
BAMTKDI3N0M2MDQ1MDBEOTgzRDI1RDQ0Q0Q3NEQxOTI1RTM4RDlBQzBDOTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDz/KBJgct6HeE5Iv90i4qZfoKO
v/TQIOJqcN/Lxurs+eoPMkMymTkvl7hlMD3ONfdVafY6Z72oFlvCKfLuV4cEhvFv
xdC02sNjmmiQOyZF8u9QBWj1OdrWK8gt2UW4SsI/yCv6/vuw32p8/MR4GxlHEoax
ihRkkOciU+2f2bNUBWUax5+botP9JS5/LUsGOqApflJsAvR5Zo73+A9jCeFg0yBv
fd8qfscLtN8ZifC+ABWDpjp0EDTIkba9p7/DFxIEwyw1e/3vdV+c0wK1YXesMk+s
fckZgJKvtN0wJprAqvUxeTYqaQYithChvwLRliCA9XJO4INzZldFv5ioFbaDAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUJ3xgRQDZg9JdRM100ZJeONmsDJAwHwYDVR0j
BBgwFoAUuXvPrCe7rxneHTHlNilybB5MqqIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzMvQjk3QkNGQUMyN0JCQUYxOURFMUQzMUU1MzYyOTcyNkMxRTRDQUFBMi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3VYdlByQ2U3cnhuZUhUSGxOaWx5YkI1
TXFxSS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzMvMzEzODM1MmUzMTM5MzgyZTMy
MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMzMzQzNzMzLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
ucYaMA0GCSqGSIb3DQEBCwUAA4IBAQABYelHshOEwJPprg2GAC/FQt0/aLAA9P8M
BwmRMvs72/n/VKuCfoccE1Qk+yydv7gLYlVNEBAxD6TQZlxZ/FRzOIlXjZmhkO4r
cXhEcGSexBuxjk81A0ZAOhoFJnbI2dr31cLl9eCILfVZZExBPYt4arj9E6UzU6Xi
gt3REKuG/WugoKziHoIlX+5nKUwguSAEDg+XeoZOQxLgsRLlp7uEnvWZf2yvW5oM
uXCR2CXJTFgrFMD26eSnav+3115Wo3ogTGVXwih8oWNj/2r/IcNhRl54y69zmpXr
ZQ9zqBZzLnOHmTqSXHCm68EciU9gWEQ6mAqdwPJM3YS5dF4cshvC
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:44 2024 by rpki-client on console-ams.rpki-client.org