Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3230362e3136322e302f32332d3234203d3e203437353833.roa
File: 3138352e3230362e3136322e302f32332d3234203d3e203437353833.roa (raw, json)
Hash identifier: ZOlZK/g6pw3NljOZoJ1wzBvdGJurUyFHvjpUe4HfjDo=
Subject key identifier: 23:FE:80:D8:12:F0:61:D2:79:CB:FA:68:92:3B:EA:BC:B8:D5:41:5E
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 036F916752957C0CCB26AE44FA355FE26DEE9662
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3230362e3136322e302f32332d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:53:37 +0000
ROA not before: Mon 26 Feb 2024 08:48:37 +0000
ROA not after: Mon 24 Feb 2025 08:53:37 +0000
asID: 47583
IP address blocks: 185.206.162.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:6f:91:67:52:95:7c:0c:cb:26:ae:44:fa:35:5f:e2:6d:ee:96:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Feb 26 08:48:37 2024 GMT
Not After : Feb 24 08:53:37 2025 GMT
Subject: CN=23FE80D812F061D279CBFA68923BEABCB8D5415E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:79:17:e8:74:37:0b:5f:5d:d3:61:28:5b:82:
0b:01:8f:8e:a6:24:38:ae:98:22:1d:71:a5:90:3b:
8c:20:6d:77:00:27:03:1b:d6:10:b0:45:ea:ed:34:
c0:e8:38:26:f2:36:d8:6a:57:c2:be:ef:5a:63:19:
2f:c8:82:ff:9b:2c:34:88:b7:dd:0a:a0:d6:8f:2e:
35:09:ee:57:79:c0:f3:a7:2e:58:f6:96:e4:b0:4a:
84:9f:65:26:07:8f:61:55:14:19:28:52:37:d1:69:
9d:76:71:05:17:38:0c:79:d4:36:54:b6:35:d2:f3:
a3:a5:d7:fc:7f:23:fa:a0:50:82:2a:88:0e:b7:ba:
f9:32:67:72:ad:6b:d1:d6:9f:91:cb:2e:23:f0:04:
24:e7:c7:47:67:4c:67:55:44:39:17:78:f1:e7:fd:
cd:1f:b8:da:51:6b:82:63:6d:75:04:6f:df:82:c4:
fc:99:4c:6d:7b:00:a2:a7:e3:ee:37:a4:65:08:44:
55:01:a8:6e:1a:91:de:eb:76:20:a2:1b:4f:52:e6:
0b:cf:c9:49:cd:3a:fe:a7:ce:21:45:aa:95:37:b0:
e4:ef:f5:88:07:94:92:a3:ed:e3:f1:17:24:b0:b1:
ab:87:9b:55:27:4e:c4:92:ad:d3:2d:c9:a2:15:8f:
9c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:FE:80:D8:12:F0:61:D2:79:CB:FA:68:92:3B:EA:BC:B8:D5:41:5E
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3230362e3136322e302f32332d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.162.0/23
Signature Algorithm: sha256WithRSAEncryption
58:47:f7:42:7f:ba:9f:64:a8:21:84:4f:ca:d4:c8:b8:85:b4:
a2:95:10:73:81:c0:8b:3f:d8:09:f0:5c:4a:d1:80:dd:e3:db:
52:d6:8e:e0:95:c1:f9:52:7d:f7:15:1b:67:b4:34:c8:87:dc:
58:17:04:7a:4e:1d:ff:dc:9f:c2:fa:e6:a3:4b:99:51:be:a8:
dc:a2:cc:4d:d9:a7:b7:9a:c0:d2:00:a6:b4:ce:b3:68:05:10:
32:14:51:32:4b:37:3c:e3:95:da:65:fc:3e:cf:74:bc:34:cd:
04:a3:2f:94:c6:56:3e:1d:78:11:f7:0a:17:d2:c1:aa:96:05:
7d:d1:d7:21:4a:4c:73:49:a2:80:63:7d:d6:5b:9b:42:e2:66:
45:84:49:e6:bc:e9:46:85:ee:ab:43:f3:c5:45:a1:5c:e4:01:
04:db:5f:4b:67:08:c6:51:08:5c:ba:9a:18:e2:7b:5d:ec:2e:
7c:a9:92:8c:12:83:2d:8a:2b:cd:a8:1b:66:f4:e4:50:2d:00:
d5:22:c3:ae:10:31:79:cb:e2:ca:41:25:d3:ae:e6:ac:66:8d:
d9:a6:0c:4a:cf:ed:e4:ac:1b:b4:83:ad:24:0b:16:57:0f:3a:
f2:76:dc:19:ba:bd:06:c9:96:21:67:3b:3b:5b:2b:39:ac:a9:
69:b5:90:ee
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUA2+RZ1KVfAzLJq5E+jVf4m3ulmIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjk3YmNmYWMyN2JiYWYxOWRlMWQzMWU1MzYyOTcyNmMx
ZTRjYWFhMjAeFw0yNDAyMjYwODQ4MzdaFw0yNTAyMjQwODUzMzdaMDMxMTAvBgNV
BAMTKDIzRkU4MEQ4MTJGMDYxRDI3OUNCRkE2ODkyM0JFQUJDQjhENTQxNUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBeRfodDcLX13TYShbggsBj46m
JDiumCIdcaWQO4wgbXcAJwMb1hCwRertNMDoOCbyNthqV8K+71pjGS/Igv+bLDSI
t90KoNaPLjUJ7ld5wPOnLlj2luSwSoSfZSYHj2FVFBkoUjfRaZ12cQUXOAx51DZU
tjXS86Ol1/x/I/qgUIIqiA63uvkyZ3Kta9HWn5HLLiPwBCTnx0dnTGdVRDkXePHn
/c0fuNpRa4JjbXUEb9+CxPyZTG17AKKn4+43pGUIRFUBqG4akd7rdiCiG09S5gvP
yUnNOv6nziFFqpU3sOTv9YgHlJKj7ePxFySwsauHm1UnTsSSrdMtyaIVj5yrAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUI/6A2BLwYdJ5y/pokjvqvLjVQV4wHwYDVR0j
BBgwFoAUuXvPrCe7rxneHTHlNilybB5MqqIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzMvQjk3QkNGQUMyN0JCQUYxOURFMUQzMUU1MzYyOTcyNkMxRTRDQUFBMi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3VYdlByQ2U3cnhuZUhUSGxOaWx5YkI1
TXFxSS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzMvMzEzODM1MmUzMjMwMzYyZTMx
MzYzMjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDM0MzczNTM4MzMucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAG5zqIwDQYJKoZIhvcNAQELBQADggEBAFhH90J/up9kqCGET8rUyLiFtKKVEHOB
wIs/2AnwXErRgN3j21LWjuCVwflSffcVG2e0NMiH3FgXBHpOHf/cn8L65qNLmVG+
qNyizE3Zp7eawNIAprTOs2gFEDIUUTJLNzzjldpl/D7PdLw0zQSjL5TGVj4deBH3
ChfSwaqWBX3R1yFKTHNJooBjfdZbm0LiZkWESea86UaF7qtD88VFoVzkAQTbX0tn
CMZRCFy6mhjie13sLnypkowSgy2KK82oG2b05FAtANUiw64QMXnL4spBJdOu5qxm
jdmmDErP7eSsG7SDrSQLFlcPOvJ23Bm6vQbJliFnOztbKzmsqWm1kO4=
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:02 2024 by rpki-client on console-fra.rpki-client.org