Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231332e38332e302f32342d3234203d3e20313437303439.roa
File: 3138352e3231332e38332e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: D2GeFCkQCuuxm1lsLuGdencypI91kJRIXL8xyxG2kEk=
Subject key identifier: BD:06:E9:63:F9:AC:12:7C:0E:AF:D3:74:F5:64:A1:58:52:9F:9B:86
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6AD62D1CAFC3E4280CB67C2EB27464B1813FCD3E
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231332e38332e302f32342d3234203d3e20313437303439.roa
Signing time: Fri 20 Oct 2023 13:41:47 +0000
ROA not before: Fri 20 Oct 2023 13:36:47 +0000
ROA not after: Fri 18 Oct 2024 13:41:47 +0000
asID: 147049
IP address blocks: 185.213.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:d6:2d:1c:af:c3:e4:28:0c:b6:7c:2e:b2:74:64:b1:81:3f:cd:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:47 2023 GMT
Not After : Oct 18 13:41:47 2024 GMT
Subject: CN=BD06E963F9AC127C0EAFD374F564A158529F9B86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ff:10:43:73:83:a3:e0:dc:ef:fd:a9:30:b4:
5a:d0:bc:56:c1:b4:bf:f7:f3:3a:4a:26:2d:74:f6:
e7:25:c8:31:32:5b:bd:13:66:90:45:9b:7a:eb:88:
9a:d2:30:c6:3e:85:66:f4:94:8b:3a:06:fa:e2:65:
50:73:e5:22:7f:30:ab:e7:09:39:a2:4e:96:54:9a:
d0:a4:92:d4:90:0d:ef:29:d8:74:50:9f:d9:17:b3:
e9:f0:33:8a:bb:bc:46:70:c1:5e:63:fe:aa:42:ef:
90:bb:18:6e:2f:b0:df:3a:1d:07:0f:eb:72:12:5a:
86:e4:86:b5:d1:d7:73:1e:ec:88:33:13:d0:57:6e:
15:1f:4b:60:2e:66:ac:98:7e:87:d7:dc:33:6c:63:
c6:ce:04:94:66:64:86:e5:09:01:fd:cb:a2:64:0f:
1d:85:10:d7:e1:09:33:f7:5c:f3:05:82:7b:22:56:
ee:68:57:75:0c:c8:80:5e:31:0f:61:57:7b:79:1c:
31:63:ab:3c:9c:ba:6c:02:6d:3b:49:8e:71:d3:a6:
cf:23:96:41:48:92:5a:67:8b:f6:1f:6d:42:91:a0:
c2:2d:e8:c7:bf:0f:f7:37:48:4c:91:b3:a8:1c:76:
51:ca:ef:71:99:e5:19:e2:6f:75:82:94:a2:f8:a9:
8a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:06:E9:63:F9:AC:12:7C:0E:AF:D3:74:F5:64:A1:58:52:9F:9B:86
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231332e38332e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.83.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:33:9e:b7:39:a3:a6:e3:bc:60:fe:d4:f2:0a:ee:4e:e5:6a:
d4:30:d8:d6:af:69:50:1f:77:84:6e:a4:42:b9:bc:a0:f6:1b:
00:e9:a2:3e:26:25:2d:e2:34:c7:01:f3:3c:f1:f0:e9:41:19:
3c:04:e8:ae:87:13:62:4c:1c:86:c8:c7:21:86:a2:7d:5e:a7:
ba:be:f5:21:ac:ff:c9:f5:a5:42:ee:1b:a5:f6:d0:6c:ae:9e:
48:de:76:f3:95:18:04:ce:cb:b2:e4:a8:92:d5:ad:82:8d:fa:
cb:58:29:66:8f:65:46:1f:c7:cd:4e:0a:85:61:b1:66:5c:a3:
44:e7:d5:91:9a:82:1b:21:13:39:9e:43:c0:f8:84:e3:6a:a6:
87:f8:fd:15:36:f1:d0:90:30:e1:2f:6f:7e:c4:91:bd:1e:76:
51:a1:f4:bc:c1:b1:c9:93:67:c0:8d:ca:64:45:c1:70:3a:a0:
19:86:9c:c7:30:70:3c:af:1b:d9:94:f9:35:7e:e2:c9:ad:85:
4b:67:8d:34:6a:cc:b7:f6:ce:f2:c0:74:23:21:df:f3:1f:2d:
08:b7:10:4a:f2:83:cf:67:3c:0a:0c:4c:84:1b:31:45:34:1e:
e3:f6:c8:41:90:58:37:d1:8c:2d:3c:a5:3d:2b:bb:6c:9b:39:
95:68:2e:53
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUatYtHK/D5CgMtnwusnRksYE/zT4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yMzEwMjAxMzM2NDdaFw0yNDEwMTgxMzQxNDdaMDMxMTAvBgNV
BAMTKEJEMDZFOTYzRjlBQzEyN0MwRUFGRDM3NEY1NjRBMTU4NTI5RjlCODYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk/xBDc4Oj4Nzv/akwtFrQvFbB
tL/38zpKJi109uclyDEyW70TZpBFm3rriJrSMMY+hWb0lIs6BvriZVBz5SJ/MKvn
CTmiTpZUmtCkktSQDe8p2HRQn9kXs+nwM4q7vEZwwV5j/qpC75C7GG4vsN86HQcP
63ISWobkhrXR13Me7IgzE9BXbhUfS2AuZqyYfofX3DNsY8bOBJRmZIblCQH9y6Jk
Dx2FENfhCTP3XPMFgnsiVu5oV3UMyIBeMQ9hV3t5HDFjqzycumwCbTtJjnHTps8j
lkFIklpni/YfbUKRoMIt6Me/D/c3SEyRs6gcdlHK73GZ5Rnib3WClKL4qYqvAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUvQbpY/msEnwOr9N09WShWFKfm4YwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMxMzMyZTM4
MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM0Mzkucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC51VMwDQYJKoZIhvcNAQELBQADggEBABwznrc5o6bjvGD+1PIK7k7latQw2Nav
aVAfd4RupEK5vKD2GwDpoj4mJS3iNMcB8zzx8OlBGTwE6K6HE2JMHIbIxyGGon1e
p7q+9SGs/8n1pULuG6X20GyunkjedvOVGATOy7LkqJLVrYKN+stYKWaPZUYfx81O
CoVhsWZco0Tn1ZGaghshEzmeQ8D4hONqpof4/RU28dCQMOEvb37Ekb0edlGh9LzB
scmTZ8CNymRFwXA6oBmGnMcwcDyvG9mU+TV+4smthUtnjTRqzLf2zvLAdCMh3/Mf
LQi3EEryg89nPAoMTIQbMUU0HuP2yEGQWDfRjC08pT0ru2ybOZVoLlM=
-----END CERTIFICATE-----
Generated at Tue May 21 08:01:44 2024 by rpki-client on console-fra.rpki-client.org