Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35322e302f32342d3234203d3e20313336373837.roa
File: 3138352e3138332e35322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: ZUjDA5F6oNdGs/fvJP9Whpu+xKGYk5clMt84jPCwMKs=
Subject key identifier: 67:5C:BF:FB:8E:A8:F2:25:0D:06:42:93:E1:56:FC:B8:47:7C:8F:D6
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1C1CC3FE998471A4CC933CFA800502C1F6A7B080
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35322e302f32342d3234203d3e20313336373837.roa
Signing time: Sat 15 Jul 2023 06:27:10 +0000
ROA not before: Sat 15 Jul 2023 06:22:10 +0000
ROA not after: Sat 13 Jul 2024 06:27:10 +0000
asID: 136787
IP address blocks: 185.183.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:1c:c3:fe:99:84:71:a4:cc:93:3c:fa:80:05:02:c1:f6:a7:b0:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jul 15 06:22:10 2023 GMT
Not After : Jul 13 06:27:10 2024 GMT
Subject: CN=675CBFFB8EA8F2250D064293E156FCB8477C8FD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f9:50:35:59:db:82:63:20:ee:90:df:91:70:
dc:a2:09:68:94:94:6d:10:eb:83:72:99:bd:1e:6a:
00:c9:08:d5:7b:e6:8b:9c:e0:29:90:5e:cd:13:c5:
14:a8:9c:f0:73:b1:22:bb:f3:36:5d:ad:ab:b0:66:
63:5c:32:c8:28:a4:a4:db:42:0a:43:27:c9:54:9d:
ab:4f:7a:39:7c:60:71:ae:d2:bf:ef:b3:1e:a5:19:
63:8b:84:50:ca:19:e5:84:9a:56:c8:0a:56:d2:7e:
9b:ea:fd:f8:f9:c9:b9:cc:b1:1f:3a:d0:47:62:e2:
0a:37:b9:85:18:7e:dc:99:cf:f1:b5:35:9a:10:1d:
5a:37:40:61:4e:82:34:0c:c7:63:65:c6:04:09:b0:
b0:b0:f5:fa:1f:8f:e0:68:f3:fd:dd:27:8c:f3:fe:
5d:af:83:7d:bd:76:b7:d3:03:4c:e4:38:a2:42:f6:
67:32:a5:c4:c7:e0:71:1a:a8:ad:2e:9a:9d:85:e3:
72:f0:5f:1a:61:38:ca:c7:c2:32:31:f3:d6:2e:03:
cb:a6:c1:7f:e6:f1:b1:c7:0b:31:01:f2:68:2e:3b:
d2:15:d2:5b:b2:4c:88:e2:3e:4b:4a:c4:c4:de:2a:
bc:1a:aa:c3:3d:13:06:af:4d:89:b9:05:c1:b4:cf:
3e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:5C:BF:FB:8E:A8:F2:25:0D:06:42:93:E1:56:FC:B8:47:7C:8F:D6
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138332e35322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.183.52.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:3a:eb:4d:f5:5d:5f:fb:9b:3e:90:8c:13:88:1e:a7:4b:2a:
3e:b4:bc:52:aa:44:65:c6:6f:0d:26:bb:e2:97:15:bf:2d:83:
59:f0:01:36:02:31:b8:3c:87:06:7e:5b:a2:86:69:09:c3:56:
83:be:0d:8b:20:f5:68:00:7d:24:89:bc:4c:c3:f2:00:be:14:
9d:42:df:4f:1d:12:5f:66:84:23:95:58:26:3b:e6:66:1a:ab:
cc:19:81:8f:e6:a0:be:9f:6e:1d:3c:98:66:2e:6d:7b:52:f7:
37:44:4d:6f:a1:07:3c:91:51:f3:82:01:54:2e:d4:d1:81:12:
75:86:20:8b:e8:be:e6:91:7b:6a:79:9f:0f:e3:5a:b6:10:1b:
b5:20:a6:bc:9f:66:8b:13:c5:9a:f8:e1:81:24:eb:63:5c:84:
c8:39:78:d6:3e:97:c9:f5:28:43:7a:22:f8:00:4b:91:83:cc:
3e:bf:14:38:1f:95:d5:bb:60:82:21:a8:80:9e:51:a5:99:ee:
88:d7:e3:30:0a:98:46:49:22:e4:67:df:45:9f:a3:cb:d3:de:
a8:fb:4f:90:6d:15:fa:e6:53:50:22:db:f2:0f:51:f7:72:71:
58:a4:1c:76:3e:21:bc:42:cc:26:3f:c6:89:f9:1a:8f:00:68:
c4:b3:ff:f3
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUHBzD/pmEcaTMkzz6gAUCwfansIAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yMzA3MTUwNjIyMTBaFw0yNDA3MTMwNjI3MTBaMDMxMTAvBgNV
BAMTKDY3NUNCRkZCOEVBOEYyMjUwRDA2NDI5M0UxNTZGQ0I4NDc3QzhGRDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA+VA1WduCYyDukN+RcNyiCWiU
lG0Q64Nymb0eagDJCNV75ouc4CmQXs0TxRSonPBzsSK78zZdrauwZmNcMsgopKTb
QgpDJ8lUnatPejl8YHGu0r/vsx6lGWOLhFDKGeWEmlbIClbSfpvq/fj5ybnMsR86
0Edi4go3uYUYftyZz/G1NZoQHVo3QGFOgjQMx2NlxgQJsLCw9fofj+Bo8/3dJ4zz
/l2vg329drfTA0zkOKJC9mcypcTH4HEaqK0ump2F43LwXxphOMrHwjIx89YuA8um
wX/m8bHHCzEB8mguO9IV0luyTIjiPktKxMTeKrwaqsM9EwavTYm5BcG0zz4VAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUZ1y/+46o8iUNBkKT4Vb8uEd8j9YwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMTM4MzMyZTM1
MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC5tzQwDQYJKoZIhvcNAQELBQADggEBAB466031XV/7mz6QjBOIHqdLKj60vFKq
RGXGbw0mu+KXFb8tg1nwATYCMbg8hwZ+W6KGaQnDVoO+DYsg9WgAfSSJvEzD8gC+
FJ1C308dEl9mhCOVWCY75mYaq8wZgY/moL6fbh08mGYubXtS9zdETW+hBzyRUfOC
AVQu1NGBEnWGIIvovuaRe2p5nw/jWrYQG7UgpryfZosTxZr44YEk62NchMg5eNY+
l8n1KEN6IvgAS5GDzD6/FDgfldW7YIIhqICeUaWZ7ojX4zAKmEZJIuRn30Wfo8vT
3qj7T5BtFfrmU1Ai2/IPUfdycVikHHY+IbxCzCY/xon5Go8AaMSz//M=
-----END CERTIFICATE-----
Generated at Wed May 8 19:21:53 2024 by rpki-client on console-ams.rpki-client.org