Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231312e33342e302f32342d3332203d3e20313336373837.roa
File: 3138352e3231312e33342e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: kPrxv4MKLLxWtAu4xejq//Uvip0Pr4bBcd/wUKyglmM=
Subject key identifier: 13:23:56:DB:5E:EE:13:3F:E0:80:7E:3C:5F:15:DE:8C:FA:D3:7A:17
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 6C6C243634708FB45244A11F19701A104BB17460
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231312e33342e302f32342d3332203d3e20313336373837.roa
Signing time: Mon 26 Feb 2024 08:53:36 +0000
ROA not before: Mon 26 Feb 2024 08:48:36 +0000
ROA not after: Mon 24 Feb 2025 08:53:36 +0000
asID: 136787
IP address blocks: 185.211.34.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:6c:24:36:34:70:8f:b4:52:44:a1:1f:19:70:1a:10:4b:b1:74:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Feb 26 08:48:36 2024 GMT
Not After : Feb 24 08:53:36 2025 GMT
Subject: CN=132356DB5EEE133FE0807E3C5F15DE8CFAD37A17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:33:22:26:6c:21:52:d3:85:6d:32:cb:a4:c4:
82:64:9c:30:27:01:13:86:62:6f:d3:ca:6e:11:7e:
67:28:b7:e0:d8:b0:17:f4:45:0e:73:1c:ac:e2:c9:
08:f1:5e:35:24:51:c8:48:7d:fc:88:00:dc:cf:f4:
46:d9:32:02:e3:d1:83:3c:51:65:11:39:84:65:a7:
d6:f4:59:d1:79:bf:01:18:dd:d2:d6:b8:c1:90:65:
15:e2:b0:6a:d0:e6:00:41:83:e4:a7:18:98:1b:3c:
2f:5f:09:e5:de:46:3e:39:19:4b:0c:d3:c8:44:f4:
0b:9b:77:95:f0:0c:cf:ae:93:c3:4b:52:29:d3:23:
65:61:7a:33:d2:56:f5:9f:6f:f2:c0:73:47:5c:ab:
05:a4:fb:5b:a6:bb:18:77:df:24:70:8a:ec:73:46:
6e:84:77:7b:8f:d5:7c:dc:b3:0c:ea:0f:30:9d:d7:
a0:0f:5d:02:5a:a0:41:f7:be:8d:d5:d3:b9:92:52:
d2:2c:df:c5:a8:01:c2:c4:bd:0d:3f:08:ce:0f:75:
6d:bd:dc:48:3a:6e:4a:6c:b0:af:13:58:7f:07:7d:
f3:1a:46:7b:44:10:3a:23:8c:fe:a6:f1:9d:7e:b4:
f8:96:64:10:ed:7e:01:9b:df:b8:6b:39:0d:38:57:
47:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:23:56:DB:5E:EE:13:3F:E0:80:7E:3C:5F:15:DE:8C:FA:D3:7A:17
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231312e33342e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.34.0/24
Signature Algorithm: sha256WithRSAEncryption
20:96:68:dc:9a:8e:c0:f2:35:da:69:00:67:7a:5a:2f:4f:4e:
41:90:69:e1:68:96:c1:26:ea:8d:8a:c5:7b:f0:83:7d:46:21:
e3:cf:53:06:3d:6b:07:c7:de:18:b5:e5:71:6f:17:ee:43:2a:
66:01:ac:3b:fc:b9:a4:55:24:03:0c:aa:26:0b:f0:b8:10:52:
bb:f2:f0:98:3e:40:d7:94:c5:25:bf:1e:5f:d3:0b:e4:44:84:
22:f5:22:1e:5d:4d:45:d9:55:64:4b:e0:6c:2e:6c:4a:67:b9:
ab:7c:d0:68:03:b0:71:3b:db:69:f6:4f:a9:08:63:82:d3:85:
47:f2:5b:f0:5a:c3:2e:9d:9f:36:1a:d1:a3:9e:e6:c4:03:ed:
05:84:f9:a1:a8:34:34:e0:f0:65:57:d8:15:d0:9d:f8:37:7b:
24:3d:1d:b3:db:98:d9:3f:d1:49:2a:04:73:8c:a3:e8:cd:d0:
29:bd:cc:9e:bb:0e:6a:99:a3:33:89:0b:3a:bb:13:da:05:f4:
46:8e:67:78:04:98:0f:56:5e:ea:25:d0:5f:a5:b2:b4:7b:84:
d3:bb:6b:d4:ab:e6:bd:0e:02:8e:35:77:78:33:bd:8f:07:a7:
e4:c3:2b:4c:b0:be:f4:2d:12:75:af:99:6a:f4:60:20:48:c7:
d6:dc:f4:90
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUbGwkNjRwj7RSRKEfGXAaEEuxdGAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjk3YmNmYWMyN2JiYWYxOWRlMWQzMWU1MzYyOTcyNmMx
ZTRjYWFhMjAeFw0yNDAyMjYwODQ4MzZaFw0yNTAyMjQwODUzMzZaMDMxMTAvBgNV
BAMTKDEzMjM1NkRCNUVFRTEzM0ZFMDgwN0UzQzVGMTVERThDRkFEMzdBMTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBMyImbCFS04VtMsukxIJknDAn
AROGYm/Tym4Rfmcot+DYsBf0RQ5zHKziyQjxXjUkUchIffyIANzP9EbZMgLj0YM8
UWUROYRlp9b0WdF5vwEY3dLWuMGQZRXisGrQ5gBBg+SnGJgbPC9fCeXeRj45GUsM
08hE9Aubd5XwDM+uk8NLUinTI2VhejPSVvWfb/LAc0dcqwWk+1umuxh33yRwiuxz
Rm6Ed3uP1XzcswzqDzCd16APXQJaoEH3vo3V07mSUtIs38WoAcLEvQ0/CM4PdW29
3Eg6bkpssK8TWH8HffMaRntEEDojjP6m8Z1+tPiWZBDtfgGb37hrOQ04V0e9AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUEyNW217uEz/ggH48XxXejPrTehcwHwYDVR0j
BBgwFoAUuXvPrCe7rxneHTHlNilybB5MqqIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzMvQjk3QkNGQUMyN0JCQUYxOURFMUQzMUU1MzYyOTcyNkMxRTRDQUFBMi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3VYdlByQ2U3cnhuZUhUSGxOaWx5YkI1
TXFxSS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzMvMzEzODM1MmUzMjMxMzEyZTMz
MzQyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC50yIwDQYJKoZIhvcNAQELBQADggEBACCWaNyajsDyNdppAGd6Wi9PTkGQaeFo
lsEm6o2KxXvwg31GIePPUwY9awfH3hi15XFvF+5DKmYBrDv8uaRVJAMMqiYL8LgQ
Urvy8Jg+QNeUxSW/Hl/TC+REhCL1Ih5dTUXZVWRL4GwubEpnuat80GgDsHE722n2
T6kIY4LThUfyW/Bawy6dnzYa0aOe5sQD7QWE+aGoNDTg8GVX2BXQnfg3eyQ9HbPb
mNk/0UkqBHOMo+jN0Cm9zJ67DmqZozOJCzq7E9oF9EaOZ3gEmA9WXuol0F+lsrR7
hNO7a9Sr5r0OAo41d3gzvY8Hp+TDK0ywvvQtEnWvmWr0YCBIx9bc9JA=
-----END CERTIFICATE-----
Generated at Wed May 8 20:21:24 2024 by rpki-client on console-fra.rpki-client.org