Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38302e302f32342d3234203d3e20313336373837.roa
File: 38322e3134392e38302e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: jqZoG3Jwt22OZnvC1ru2+Usw0ElR8qCL/cm/bWrOPTk=
Subject key identifier: AD:CA:48:EC:6C:22:2A:D9:CD:7C:6C:1A:CE:1B:99:12:7B:AA:5F:BA
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 2361FE34CF61CA2F9AE5B7877B72D6391B98D435
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38302e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 26 Jan 2024 19:02:37 +0000
ROA not before: Fri 26 Jan 2024 18:57:37 +0000
ROA not after: Fri 24 Jan 2025 19:02:37 +0000
asID: 136787
IP address blocks: 82.149.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:61:fe:34:cf:61:ca:2f:9a:e5:b7:87:7b:72:d6:39:1b:98:d4:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jan 26 18:57:37 2024 GMT
Not After : Jan 24 19:02:37 2025 GMT
Subject: CN=ADCA48EC6C222AD9CD7C6C1ACE1B99127BAA5FBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6c:23:be:bb:04:68:49:dc:e0:4b:35:6d:54:
8e:9a:07:56:8b:e4:8e:a3:96:bf:e9:83:30:54:94:
5c:79:b4:6d:27:98:d4:5e:27:46:48:8d:09:a0:87:
c6:76:47:a1:bb:1f:cc:a5:cf:b5:fe:3d:76:f0:cc:
72:bc:13:d9:dc:45:4c:a2:cb:54:30:9c:95:2d:ff:
37:e1:c9:3e:27:26:ac:22:78:b0:ef:ea:58:e1:e6:
9f:be:d0:d1:80:61:6f:c9:83:7c:19:f1:78:bc:1b:
d5:64:86:33:69:71:20:3e:99:6e:c2:61:95:9c:9f:
32:52:82:a7:e7:6d:d4:01:b7:25:79:49:fc:5f:eb:
ab:69:44:3a:dc:43:36:5c:a7:39:60:8f:ce:cb:2b:
0f:17:7e:89:99:c5:c4:84:33:76:f8:ca:60:26:7c:
41:cc:08:d4:0b:aa:f6:7f:ee:4d:cd:7b:58:11:49:
4e:69:29:30:72:fb:98:bc:55:ad:83:ab:11:6f:da:
5f:1c:96:e2:0c:6a:96:09:67:f8:75:25:70:e4:3b:
c2:63:d8:98:83:2b:f2:7a:6e:fa:c1:2e:e2:68:b3:
dd:a7:c7:26:28:bb:c6:7c:9e:d0:a7:4a:2d:52:90:
5e:5b:fb:fa:35:cc:2f:d6:b0:4d:17:52:4f:fb:74:
8d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:CA:48:EC:6C:22:2A:D9:CD:7C:6C:1A:CE:1B:99:12:7B:AA:5F:BA
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3134392e38302e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.149.80.0/24
Signature Algorithm: sha256WithRSAEncryption
18:88:1b:5b:fd:a4:b8:86:bf:03:eb:64:f0:01:38:c1:7e:c2:
f0:56:55:92:a3:a3:59:fb:13:12:3d:09:93:02:ef:96:b9:43:
7f:72:31:42:1b:68:dc:3d:82:91:bf:d7:43:93:d1:3d:ab:08:
be:16:e6:49:28:e1:78:42:43:b0:6b:e6:e4:8c:58:cc:62:ea:
cb:d6:7b:9d:58:45:63:33:86:51:2b:b7:69:d8:3c:14:49:27:
7f:cc:af:6b:40:e4:09:6f:5b:91:d0:cd:af:fd:99:4d:41:16:
06:4a:51:77:d5:d3:9c:8e:d0:fb:ed:51:9e:4b:8c:ad:5f:5c:
bc:58:28:4b:ff:cf:58:d7:b3:3e:2c:8c:8d:c1:65:40:9a:58:
93:43:e6:f2:55:8f:c5:8b:73:0b:fa:c4:bf:8e:40:33:29:c3:
ed:bb:ea:43:06:03:74:83:79:42:d7:9f:46:4a:a9:f7:9a:40:
8d:24:3e:b3:de:8f:b9:3b:4c:75:9c:cd:2b:16:67:39:ec:91:
ad:18:12:a0:c5:54:7d:2c:51:76:47:8e:8e:71:68:b3:1a:17:
08:5a:14:b3:a2:71:ec:28:68:5a:d3:89:44:99:40:94:39:06:
89:bb:8f:ee:cc:4b:a6:8d:c6:1e:56:60:be:2c:54:80:76:47:
55:c0:fc:cf
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUI2H+NM9hyi+a5beHe3LWORuY1DUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDAxMjYxODU3MzdaFw0yNTAxMjQxOTAyMzdaMDMxMTAvBgNV
BAMTKEFEQ0E0OEVDNkMyMjJBRDlDRDdDNkMxQUNFMUI5OTEyN0JBQTVGQkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbbCO+uwRoSdzgSzVtVI6aB1aL
5I6jlr/pgzBUlFx5tG0nmNReJ0ZIjQmgh8Z2R6G7H8ylz7X+PXbwzHK8E9ncRUyi
y1QwnJUt/zfhyT4nJqwieLDv6ljh5p++0NGAYW/Jg3wZ8Xi8G9VkhjNpcSA+mW7C
YZWcnzJSgqfnbdQBtyV5Sfxf66tpRDrcQzZcpzlgj87LKw8XfomZxcSEM3b4ymAm
fEHMCNQLqvZ/7k3Ne1gRSU5pKTBy+5i8Va2DqxFv2l8cluIMapYJZ/h1JXDkO8Jj
2JiDK/J6bvrBLuJos92nxyYou8Z8ntCnSi1SkF5b+/o1zC/WsE0XUk/7dI2DAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUrcpI7GwiKtnNfGwazhuZEnuqX7owHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzMjJlMzEzNDM5MmUzODMw
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
UpVQMA0GCSqGSIb3DQEBCwUAA4IBAQAYiBtb/aS4hr8D62TwATjBfsLwVlWSo6NZ
+xMSPQmTAu+WuUN/cjFCG2jcPYKRv9dDk9E9qwi+FuZJKOF4QkOwa+bkjFjMYurL
1nudWEVjM4ZRK7dp2DwUSSd/zK9rQOQJb1uR0M2v/ZlNQRYGSlF31dOcjtD77VGe
S4ytX1y8WChL/89Y17M+LIyNwWVAmliTQ+byVY/Fi3ML+sS/jkAzKcPtu+pDBgN0
g3lC159GSqn3mkCNJD6z3o+5O0x1nM0rFmc57JGtGBKgxVR9LFF2R46OcWizGhcI
WhSzonHsKGha04lEmUCUOQaJu4/uzEumjcYeVmC+LFSAdkdVwPzP
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:04 2024 by rpki-client on console-fra.rpki-client.org