Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231352e3136372e302f32342d3332203d3e203531313637.roa
File: 3138352e3231352e3136372e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: w9fhefO7n5uDOV4L4XjaUAinKG1GaxxWxne+8dj7hOw=
Subject key identifier: 4F:D2:89:8D:1F:1C:90:DE:AD:4E:64:96:CE:5D:47:88:9B:38:A3:7A
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 18EC2FCF486DDCB4318B454D205BEB02F12B4CC5
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231352e3136372e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:53:02 +0000
ROA not before: Mon 26 Feb 2024 08:48:02 +0000
ROA not after: Mon 24 Feb 2025 08:53:02 +0000
asID: 51167
IP address blocks: 185.215.167.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:ec:2f:cf:48:6d:dc:b4:31:8b:45:4d:20:5b:eb:02:f1:2b:4c:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 26 08:48:02 2024 GMT
Not After : Feb 24 08:53:02 2025 GMT
Subject: CN=4FD2898D1F1C90DEAD4E6496CE5D47889B38A37A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:69:c0:3a:d8:84:55:26:3c:1d:b7:3e:d0:bc:
53:ee:9d:56:d2:75:80:87:8a:86:a5:75:93:41:df:
58:ef:62:6a:9a:b5:3a:71:00:ec:93:65:5d:86:3e:
ab:5e:f1:8b:b7:99:f4:6c:2c:78:34:34:29:37:a6:
31:24:a9:20:7c:0d:4f:cc:e6:0a:5c:9f:8b:9e:19:
06:04:ec:6c:4b:da:25:c6:0b:54:72:1f:c4:fd:99:
52:65:2b:2a:c4:0b:1b:55:07:4a:28:99:13:84:a5:
a7:e3:66:e3:a3:b4:f5:6e:56:f1:a0:83:57:64:51:
4a:7c:6d:54:93:06:21:20:59:ba:0c:d1:da:62:80:
96:27:44:eb:e0:60:0c:e0:49:51:86:ab:29:b4:fd:
7e:d2:46:f3:31:e1:48:ff:50:30:b3:6a:fa:2d:43:
56:ac:ba:99:a8:aa:78:f9:f5:bd:9c:20:e2:f2:2b:
88:c2:8a:4b:c5:17:6c:f6:b7:15:9a:59:ea:bf:41:
80:65:81:90:43:b2:27:0a:83:99:7d:1f:e5:a7:c9:
56:b8:fa:ed:45:58:20:eb:5a:c9:20:ad:10:5e:7e:
b5:50:fc:b1:f2:88:e7:76:39:13:60:16:b2:86:e8:
2a:f0:ed:68:d4:66:60:78:ac:c9:dd:e1:34:de:9e:
4b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:D2:89:8D:1F:1C:90:DE:AD:4E:64:96:CE:5D:47:88:9B:38:A3:7A
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231352e3136372e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.167.0/24
Signature Algorithm: sha256WithRSAEncryption
72:56:74:bc:1d:34:ac:c0:f2:f6:99:40:c5:92:ae:8f:16:14:
fb:cf:bc:4e:03:88:e4:da:b5:fa:97:c5:cf:c9:23:88:95:db:
e0:a9:e7:7b:13:d8:0a:ea:7b:28:6b:18:90:7d:33:e1:26:f3:
bd:e2:2d:43:99:65:59:a5:31:93:eb:cb:52:8a:27:68:aa:ee:
c2:01:3a:bf:65:25:f9:15:65:b6:71:30:51:f4:63:bf:a2:ac:
a8:62:a9:e5:37:44:fe:ba:a5:35:81:6f:68:53:6d:3d:f4:cb:
d5:7b:58:52:76:77:8e:07:32:2a:21:92:e0:c2:06:0c:42:a9:
8e:28:aa:1b:06:20:fe:95:c0:26:c8:6d:2b:9e:42:5c:37:17:
7a:73:59:e5:9c:c1:04:06:57:d1:96:4b:d9:17:ea:a8:96:67:
a3:fe:17:c6:30:57:c1:9a:88:d1:35:5e:a2:7f:d1:1c:16:f8:
2d:2d:40:a9:b2:43:46:87:c6:0b:0a:1c:db:70:db:3f:52:92:
28:26:41:d0:90:4e:a4:2a:7a:f0:a4:e5:92:13:42:4c:1c:a6:
41:eb:d9:47:33:4f:73:4e:1b:0f:dc:3e:45:41:b8:76:14:7d:
b1:8a:df:1e:c2:c2:95:9d:4d:42:1b:e1:73:af:4b:3c:73:f8:
36:d0:30:d1
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUGOwvz0ht3LQxi0VNIFvrAvErTMUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDAyMjYwODQ4MDJaFw0yNTAyMjQwODUzMDJaMDMxMTAvBgNV
BAMTKDRGRDI4OThEMUYxQzkwREVBRDRFNjQ5NkNFNUQ0Nzg4OUIzOEEzN0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0acA62IRVJjwdtz7QvFPunVbS
dYCHioaldZNB31jvYmqatTpxAOyTZV2GPqte8Yu3mfRsLHg0NCk3pjEkqSB8DU/M
5gpcn4ueGQYE7GxL2iXGC1RyH8T9mVJlKyrECxtVB0oomROEpafjZuOjtPVuVvGg
g1dkUUp8bVSTBiEgWboM0dpigJYnROvgYAzgSVGGqym0/X7SRvMx4Uj/UDCzavot
Q1asupmoqnj59b2cIOLyK4jCikvFF2z2txWaWeq/QYBlgZBDsicKg5l9H+WnyVa4
+u1FWCDrWskgrRBefrVQ/LHyiOd2ORNgFrKG6Crw7WjUZmB4rMnd4TTenktxAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUT9KJjR8ckN6tTmSWzl1HiJs4o3owHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMxMzUyZTMx
MzYzNzJlMzAyZjMyMzQyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC516cwDQYJKoZIhvcNAQELBQADggEBAHJWdLwdNKzA8vaZQMWSro8WFPvPvE4D
iOTatfqXxc/JI4iV2+Cp53sT2ArqeyhrGJB9M+Em873iLUOZZVmlMZPry1KKJ2iq
7sIBOr9lJfkVZbZxMFH0Y7+irKhiqeU3RP66pTWBb2hTbT30y9V7WFJ2d44HMioh
kuDCBgxCqY4oqhsGIP6VwCbIbSueQlw3F3pzWeWcwQQGV9GWS9kX6qiWZ6P+F8Yw
V8GaiNE1XqJ/0RwW+C0tQKmyQ0aHxgsKHNtw2z9SkigmQdCQTqQqevCk5ZITQkwc
pkHr2UczT3NOGw/cPkVBuHYUfbGK3x7CwpWdTUIb4XOvSzxz+DbQMNE=
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:45 2024 by rpki-client on console-ams.rpki-client.org