Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131362e302f32342d3332203d3e203531313637.roa
File: 3138352e3137372e3131362e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: AefZSEBvHkW56A18u7IEjaJEi8gDvjKnEdG/nKEQyVk=
Subject key identifier: B6:96:BE:DF:37:13:D5:6A:16:E4:07:99:CD:14:EE:C5:A6:BC:13:C9
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 02182FA54780B02D3E77D52D7181AE07360E426D
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131362e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:53:15 +0000
ROA not before: Mon 26 Feb 2024 08:48:15 +0000
ROA not after: Mon 24 Feb 2025 08:53:15 +0000
asID: 51167
IP address blocks: 185.177.116.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:18:2f:a5:47:80:b0:2d:3e:77:d5:2d:71:81:ae:07:36:0e:42:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 26 08:48:15 2024 GMT
Not After : Feb 24 08:53:15 2025 GMT
Subject: CN=B696BEDF3713D56A16E40799CD14EEC5A6BC13C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:17:35:48:a8:e4:5b:f9:d9:29:83:92:c4:f8:
f0:4e:2e:85:e2:af:63:a9:78:04:c4:ed:30:6a:a3:
78:12:d0:c5:dc:ef:3e:4c:2b:43:d8:bc:0f:9b:41:
d3:57:46:b9:0a:fb:8e:9e:50:71:24:1c:83:3b:3b:
d8:70:84:2f:27:30:a3:fd:75:e3:e6:63:df:27:fa:
9a:6d:dd:a0:ef:a1:2f:3e:3a:31:b8:f3:1f:e1:02:
57:58:74:a4:ba:14:19:ce:9e:d3:14:40:b5:bf:3f:
ac:64:94:78:3e:30:61:d6:27:db:4d:71:dd:e5:fa:
a8:d9:0d:75:23:9c:07:44:ce:45:de:3f:0d:5a:3d:
a2:16:b1:05:41:03:15:c5:29:55:8e:a1:8c:15:7a:
7c:2f:96:d7:01:37:83:45:97:5e:7d:9b:03:78:c9:
0d:e3:a4:ae:a0:b6:2c:70:bd:6c:ea:ee:f3:9a:7f:
05:20:90:44:3f:bc:de:50:20:d2:80:05:f1:cc:bd:
10:15:ee:bd:21:9a:78:c0:b7:ba:68:67:e3:be:96:
fe:39:ec:d3:5f:b1:b6:e3:03:09:b0:3d:30:11:d3:
ff:c8:18:9d:46:3c:06:b8:c6:23:b7:23:7d:7a:6d:
4f:58:7d:ec:23:87:d0:3b:a9:74:bc:27:b7:ce:d5:
39:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:96:BE:DF:37:13:D5:6A:16:E4:07:99:CD:14:EE:C5:A6:BC:13:C9
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3137372e3131362e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.116.0/24
Signature Algorithm: sha256WithRSAEncryption
85:d7:39:96:f0:1a:f4:7b:b8:a4:eb:d9:1f:a8:27:8b:9d:85:
74:7f:a5:ef:04:a2:44:76:2e:1f:42:ac:32:85:8e:8c:10:7f:
08:bf:fb:bc:8a:f4:d4:f4:7c:bd:84:a8:81:52:d2:c9:ea:34:
e3:f4:57:85:f7:33:71:dc:b9:87:da:dd:34:4d:f1:f5:e2:34:
aa:54:4b:8e:ae:cc:44:e4:51:a2:77:24:b1:e7:58:9f:b7:55:
9f:c5:a9:39:54:67:99:8f:86:86:51:94:70:9d:56:e7:b6:4b:
d8:19:2c:cc:b8:f1:c9:3e:85:f5:58:94:0f:2c:a3:55:94:b0:
b3:fc:8b:f6:85:04:c9:6b:38:9f:57:a6:99:73:f3:94:85:93:
4e:f3:71:8b:c6:4d:fe:5c:06:e2:91:d5:13:75:cf:6d:21:a2:
fc:06:de:2a:95:7a:d2:b0:35:45:ea:65:4c:24:72:5c:f3:4b:
74:70:57:56:34:e8:27:08:f7:39:0c:1d:76:84:0c:ca:ee:32:
f7:09:9a:f0:9c:85:14:b5:97:bc:d1:b4:62:64:fb:6a:1b:56:
f5:ac:16:b1:47:79:f2:88:5d:fa:9d:4c:ca:08:2d:e8:e9:6e:
4c:39:69:ef:87:0b:ae:5d:f7:fc:e7:4a:ff:fa:31:04:5b:6d:
10:e2:bc:85
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUAhgvpUeAsC0+d9UtcYGuBzYOQm0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDAyMjYwODQ4MTVaFw0yNTAyMjQwODUzMTVaMDMxMTAvBgNV
BAMTKEI2OTZCRURGMzcxM0Q1NkExNkU0MDc5OUNEMTRFRUM1QTZCQzEzQzkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDFzVIqORb+dkpg5LE+PBOLoXi
r2OpeATE7TBqo3gS0MXc7z5MK0PYvA+bQdNXRrkK+46eUHEkHIM7O9hwhC8nMKP9
dePmY98n+ppt3aDvoS8+OjG48x/hAldYdKS6FBnOntMUQLW/P6xklHg+MGHWJ9tN
cd3l+qjZDXUjnAdEzkXePw1aPaIWsQVBAxXFKVWOoYwVenwvltcBN4NFl159mwN4
yQ3jpK6gtixwvWzq7vOafwUgkEQ/vN5QINKABfHMvRAV7r0hmnjAt7poZ+O+lv45
7NNfsbbjAwmwPTAR0//IGJ1GPAa4xiO3I316bU9Yfewjh9A7qXS8J7fO1TlxAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUtpa+3zcT1WoW5AeZzRTuxaa8E8kwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMTM3MzcyZTMx
MzEzNjJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC5sXQwDQYJKoZIhvcNAQELBQADggEBAIXXOZbwGvR7uKTr2R+oJ4udhXR/pe8E
okR2Lh9CrDKFjowQfwi/+7yK9NT0fL2EqIFS0snqNOP0V4X3M3HcuYfa3TRN8fXi
NKpUS46uzETkUaJ3JLHnWJ+3VZ/FqTlUZ5mPhoZRlHCdVue2S9gZLMy48ck+hfVY
lA8so1WUsLP8i/aFBMlrOJ9Xpplz85SFk07zcYvGTf5cBuKR1RN1z20hovwG3iqV
etKwNUXqZUwkclzzS3RwV1Y06CcI9zkMHXaEDMruMvcJmvCchRS1l7zRtGJk+2ob
VvWsFrFHefKIXfqdTMoILejpbkw5ae+HC65d9/znSv/6MQRbbRDivIU=
-----END CERTIFICATE-----
Generated at Tue May 21 08:01:44 2024 by rpki-client on console-fra.rpki-client.org