Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233372e3235322e302f32332d3332203d3e203531313637.roa
File: 3138352e3233372e3235322e302f32332d3332203d3e203531313637.roa (raw, json)
Hash identifier: XDnUpYCHHTbpzKrjL0qvY6xSsYpl07Ghl5BrYWp1xeo=
Subject key identifier: 65:98:0B:0E:E8:EB:19:CC:90:EA:22:36:3B:8B:95:45:FE:FE:17:B5
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 16E3133225A2F37FB75D90FA231C511202EED93E
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233372e3235322e302f32332d3332203d3e203531313637.roa
Signing time: Fri 20 Oct 2023 13:41:46 +0000
ROA not before: Fri 20 Oct 2023 13:36:46 +0000
ROA not after: Fri 18 Oct 2024 13:41:46 +0000
asID: 51167
IP address blocks: 185.237.252.0/23 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:e3:13:32:25:a2:f3:7f:b7:5d:90:fa:23:1c:51:12:02:ee:d9:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:46 2023 GMT
Not After : Oct 18 13:41:46 2024 GMT
Subject: CN=65980B0EE8EB19CC90EA22363B8B9545FEFE17B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:c9:0b:34:48:7f:bd:26:62:82:87:81:17:12:
09:82:dd:3e:11:d0:31:52:e9:34:85:c3:72:a7:22:
b8:29:2c:f1:0d:52:84:8a:a9:83:5f:f8:e3:39:82:
15:ff:96:5a:f5:23:aa:04:f0:6b:88:a9:88:e6:30:
6b:f5:e9:86:8d:89:87:e5:87:ef:e3:50:7c:c5:4d:
ed:30:77:3c:4f:02:de:16:aa:62:4e:29:e7:08:22:
02:2c:19:e3:51:88:04:b1:c4:40:d9:4b:ae:41:69:
bd:a7:22:34:bc:46:e3:fe:42:f5:8d:8c:fc:93:95:
ce:42:83:39:e7:f4:3f:f6:89:c9:56:4b:7e:42:f8:
ba:93:a9:31:ca:3a:74:98:32:e9:e2:7a:b3:9d:15:
a4:e1:88:39:da:5c:48:aa:c4:d0:e4:e8:21:c0:74:
7b:25:a0:44:46:bf:e3:27:56:d9:90:6c:ad:3c:20:
cd:34:ee:7d:7a:bc:54:fd:a1:e2:da:35:61:0e:d9:
b5:68:3b:95:1d:4b:4d:8f:93:c0:f6:06:75:7b:5e:
50:38:8d:3c:96:19:f3:14:65:b4:de:c2:6d:bc:0c:
27:90:9c:c1:24:e7:d7:73:29:dd:10:06:e1:dd:95:
fa:d1:1b:4a:36:ef:d1:91:bd:a5:39:cd:62:60:de:
a3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:98:0B:0E:E8:EB:19:CC:90:EA:22:36:3B:8B:95:45:FE:FE:17:B5
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3233372e3235322e302f32332d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.252.0/23
Signature Algorithm: sha256WithRSAEncryption
45:b0:1e:41:dd:24:6c:62:00:3c:c5:d6:bd:ad:56:ed:a2:d2:
09:c1:39:34:f9:67:cf:22:e0:f9:63:c1:1f:83:55:a9:ce:e3:
e8:a9:fe:3c:98:6c:a6:45:31:76:6a:24:2d:80:fb:cf:55:ae:
d7:6f:ca:18:9f:9c:d2:27:80:28:a7:6f:f1:75:d3:5f:30:f8:
4a:8e:f9:0c:c8:67:91:50:c5:8f:15:d3:56:ec:a7:32:00:37:
be:ca:db:ab:ce:15:b8:25:3a:49:a0:e0:41:dc:1b:2d:3b:40:
89:e1:20:8a:a1:21:e8:c6:14:87:0b:27:ea:33:5e:48:93:b2:
72:5a:d8:41:be:f0:4b:90:d6:ec:fd:c1:e7:54:be:e3:b3:54:
95:56:85:24:08:fd:5b:83:02:32:6a:11:24:52:c0:ef:5c:8e:
dd:62:c7:24:2c:9f:03:a8:95:8e:81:17:a6:68:26:bb:f0:b5:
7c:7f:03:ed:ea:7c:4c:2c:9c:9e:ad:40:84:c0:6e:be:f6:6f:
7f:5d:04:ae:7c:ff:68:11:60:ed:b5:fc:e9:22:40:75:1f:1c:
ce:b0:40:1c:10:4d:57:63:7a:69:87:2c:a5:5d:9c:bf:48:50:
56:77:95:2b:41:9c:c7:fa:f0:29:6d:6b:a0:35:80:85:56:52:
20:99:f1:e0
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUFuMTMiWi83+3XZD6IxxREgLu2T4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yMzEwMjAxMzM2NDZaFw0yNDEwMTgxMzQxNDZaMDMxMTAvBgNV
BAMTKDY1OTgwQjBFRThFQjE5Q0M5MEVBMjIzNjNCOEI5NTQ1RkVGRTE3QjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoyQs0SH+9JmKCh4EXEgmC3T4R
0DFS6TSFw3KnIrgpLPENUoSKqYNf+OM5ghX/llr1I6oE8GuIqYjmMGv16YaNiYfl
h+/jUHzFTe0wdzxPAt4WqmJOKecIIgIsGeNRiASxxEDZS65Bab2nIjS8RuP+QvWN
jPyTlc5Cgznn9D/2iclWS35C+LqTqTHKOnSYMunierOdFaThiDnaXEiqxNDk6CHA
dHsloERGv+MnVtmQbK08IM007n16vFT9oeLaNWEO2bVoO5UdS02Pk8D2BnV7XlA4
jTyWGfMUZbTewm28DCeQnMEk59dzKd0QBuHdlfrRG0o279GRvaU5zWJg3qMjAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUZZgLDujrGcyQ6iI2O4uVRf7+F7UwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMzMzcyZTMy
MzUzMjJlMzAyZjMyMzMyZDMzMzIyMDNkM2UyMDM1MzEzMTM2Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAG57fwwDQYJKoZIhvcNAQELBQADggEBAEWwHkHdJGxiADzF1r2tVu2i0gnBOTT5
Z88i4PljwR+DVanO4+ip/jyYbKZFMXZqJC2A+89VrtdvyhifnNIngCinb/F1018w
+EqO+QzIZ5FQxY8V01bspzIAN77K26vOFbglOkmg4EHcGy07QInhIIqhIejGFIcL
J+ozXkiTsnJa2EG+8EuQ1uz9wedUvuOzVJVWhSQI/VuDAjJqESRSwO9cjt1ixyQs
nwOolY6BF6ZoJrvwtXx/A+3qfEwsnJ6tQITAbr72b39dBK58/2gRYO21/OkiQHUf
HM6wQBwQTVdjemmHLKVdnL9IUFZ3lStBnMf68Clta6A1gIVWUiCZ8eA=
-----END CERTIFICATE-----
Generated at Tue May 21 09:23:50 2024 by rpki-client on console-ams.rpki-client.org