Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231332e32342e302f32342d3234203d3e203633343733.roa
File: 3138352e3231332e32342e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: ghunGvZpcJqzAn6AHVaWNtugfT28CvHg3l+lVvHDMKk=
Subject key identifier: 6F:86:1F:D3:4E:87:E7:B5:F6:F2:52:34:B3:91:D0:28:EC:E6:2A:D9
Certificate issuer: /CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Certificate serial: 77926CDD25AF205236ED03D3C3EEA78A9AD16DAB
Authority key identifier: B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231332e32342e302f32342d3234203d3e203633343733.roa
Signing time: Sun 21 Jul 2024 08:04:18 +0000
ROA not before: Sun 21 Jul 2024 07:59:18 +0000
ROA not after: Sun 20 Jul 2025 08:04:18 +0000
asID: 63473
IP address blocks: 185.213.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:92:6c:dd:25:af:20:52:36:ed:03:d3:c3:ee:a7:8a:9a:d1:6d:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97bcfac27bbaf19de1d31e53629726c1e4caaa2
Validity
Not Before: Jul 21 07:59:18 2024 GMT
Not After : Jul 20 08:04:18 2025 GMT
Subject: CN=6F861FD34E87E7B5F6F25234B391D028ECE62AD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:22:b4:ec:d7:03:37:9f:af:00:ad:24:c9:40:
00:b0:df:16:6c:fa:91:b2:84:f8:8a:f6:d8:24:0f:
e3:e5:34:3e:e3:80:3a:8b:40:99:b2:0d:3c:b5:00:
90:0b:f1:62:e3:e1:57:c7:d1:fa:5b:a7:e7:d6:eb:
6c:39:eb:fb:8f:00:df:d0:00:c2:65:97:42:4b:57:
b1:70:e7:33:b9:17:e0:bf:67:ad:46:c9:39:12:81:
86:35:9d:45:8a:6b:d7:5b:5a:e4:c8:0a:2e:dc:34:
93:ca:42:a5:7b:b6:9e:fe:ea:c3:b1:2d:87:51:9f:
2c:1e:11:ea:70:5f:0b:90:74:89:0c:55:be:87:a6:
2a:ce:54:ea:b2:44:78:f7:38:ef:cd:ff:40:37:16:
67:97:67:6e:62:5d:ac:45:25:06:a7:95:bf:e0:cd:
48:27:49:8a:80:70:21:ab:9a:d5:25:b6:8e:04:1b:
ea:43:9a:72:8c:eb:d1:d8:4f:03:1d:fd:fe:7f:9f:
64:5d:c3:ec:75:d9:ab:28:d0:06:07:ee:bf:6e:f8:
0a:67:17:4f:84:ed:27:81:c5:ad:85:fa:fe:60:9d:
ec:90:33:6f:f0:39:04:72:82:1c:fc:b8:59:ab:64:
ad:d3:1a:b0:09:92:6f:0c:bb:af:8b:74:53:d0:6b:
44:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:86:1F:D3:4E:87:E7:B5:F6:F2:52:34:B3:91:D0:28:EC:E6:2A:D9
X509v3 Authority Key Identifier:
keyid:B9:7B:CF:AC:27:BB:AF:19:DE:1D:31:E5:36:29:72:6C:1E:4C:AA:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/B97BCFAC27BBAF19DE1D31E53629726C1E4CAAA2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXvPrCe7rxneHTHlNilybB5MqqI.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/3/3138352e3231332e32342e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.24.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:69:48:d7:d0:30:a0:11:1e:1a:93:82:e8:fb:98:79:d3:89:
e2:13:5c:98:00:76:d1:21:e0:c4:58:0f:1c:de:a8:95:3d:3d:
97:44:1c:d9:8b:9b:14:14:42:96:a6:a1:7b:ff:c3:fc:fd:45:
24:18:9e:d5:f5:7e:05:3f:e3:0c:10:9c:24:f9:bb:84:8f:8c:
f8:d8:78:c9:77:34:df:5a:10:6b:6f:1c:f2:f6:59:e4:07:10:
5b:36:56:86:47:aa:d8:bf:72:2c:c7:ef:74:5f:ec:2d:1f:4d:
08:bb:cd:ec:b4:9b:9e:cd:87:b7:15:9b:fa:e4:c5:cb:ef:fe:
74:97:c6:87:20:4c:53:79:d7:c4:17:6d:b0:44:93:a5:d3:79:
90:5f:49:3d:fe:d5:57:63:2b:f6:97:a8:11:56:52:69:7a:08:
4c:e7:05:15:af:88:08:12:57:7e:5c:14:8d:9c:49:dc:0b:6b:
dc:cf:cb:b3:71:93:9f:c9:a5:b8:62:c4:10:d5:5a:49:02:7a:
6e:41:0b:04:3a:d2:1d:9e:ad:f9:8e:ad:cb:3d:47:ad:0a:59:
d5:21:df:0f:23:92:ec:e3:a0:3b:cb:81:5d:34:20:a1:98:fd:
5e:3b:60:ee:74:1a:05:4c:d6:44:c6:c7:02:46:b7:9f:d0:32:
5a:a3:a9:c5
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUd5Js3SWvIFI27QPTw+6niprRbaswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjk3YmNmYWMyN2JiYWYxOWRlMWQzMWU1MzYyOTcyNmMx
ZTRjYWFhMjAeFw0yNDA3MjEwNzU5MThaFw0yNTA3MjAwODA0MThaMDMxMTAvBgNV
BAMTKDZGODYxRkQzNEU4N0U3QjVGNkYyNTIzNEIzOTFEMDI4RUNFNjJBRDkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZIrTs1wM3n68ArSTJQACw3xZs
+pGyhPiK9tgkD+PlND7jgDqLQJmyDTy1AJAL8WLj4VfH0fpbp+fW62w56/uPAN/Q
AMJll0JLV7Fw5zO5F+C/Z61GyTkSgYY1nUWKa9dbWuTICi7cNJPKQqV7tp7+6sOx
LYdRnyweEepwXwuQdIkMVb6HpirOVOqyRHj3OO/N/0A3FmeXZ25iXaxFJQanlb/g
zUgnSYqAcCGrmtUlto4EG+pDmnKM69HYTwMd/f5/n2Rdw+x12aso0AYH7r9u+Apn
F0+E7SeBxa2F+v5gneyQM2/wOQRyghz8uFmrZK3TGrAJkm8Mu6+LdFPQa0RJAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUb4Yf006H57X28lI0s5HQKOzmKtkwHwYDVR0j
BBgwFoAUuXvPrCe7rxneHTHlNilybB5MqqIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzMvQjk3QkNGQUMyN0JCQUYxOURFMUQzMUU1MzYyOTcyNkMxRTRDQUFBMi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3VYdlByQ2U3cnhuZUhUSGxOaWx5YkI1
TXFxSS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzMvMzEzODM1MmUzMjMxMzMyZTMy
MzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMzMzQzNzMzLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
udUYMA0GCSqGSIb3DQEBCwUAA4IBAQAuaUjX0DCgER4ak4Lo+5h504niE1yYAHbR
IeDEWA8c3qiVPT2XRBzZi5sUFEKWpqF7/8P8/UUkGJ7V9X4FP+MMEJwk+buEj4z4
2HjJdzTfWhBrbxzy9lnkBxBbNlaGR6rYv3Isx+90X+wtH00Iu83stJuezYe3FZv6
5MXL7/50l8aHIExTedfEF22wRJOl03mQX0k9/tVXYyv2l6gRVlJpeghM5wUVr4gI
Eld+XBSNnEncC2vcz8uzcZOfyaW4YsQQ1VpJAnpuQQsEOtIdnq35jq3LPUetClnV
Id8PI5Ls46A7y4FdNCChmP1eO2DudBoFTNZExscCRref0DJao6nF
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:44 2024 by rpki-client on console-ams.rpki-client.org