Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3134342e302f32322d3332203d3e20313431393935.roa
File: 38322e3138302e3134342e302f32322d3332203d3e20313431393935.roa (raw, json)
Hash identifier: yO1q7lNijIJSMSUZX7pBbbpYlW+Zkg8Vyc7RRcAMqg8=
Subject key identifier: 90:DB:E5:CB:A3:B3:DA:19:EC:54:61:63:82:AC:2B:F0:02:D7:1E:25
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 74E7891FD982EC15DD5D448C2944544C2F8250EF
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3134342e302f32322d3332203d3e20313431393935.roa
Signing time: Thu 04 Apr 2024 20:36:30 +0000
ROA not before: Thu 04 Apr 2024 20:31:30 +0000
ROA not after: Thu 03 Apr 2025 20:36:30 +0000
asID: 141995
IP address blocks: 82.180.144.0/22 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 14:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:e7:89:1f:d9:82:ec:15:dd:5d:44:8c:29:44:54:4c:2f:82:50:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Apr 4 20:31:30 2024 GMT
Not After : Apr 3 20:36:30 2025 GMT
Subject: CN=90DBE5CBA3B3DA19EC54616382AC2BF002D71E25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d7:7a:1c:6c:63:27:fc:30:85:98:82:12:e5:
d6:53:a6:54:b1:78:63:44:a6:44:c6:26:61:16:cb:
2f:c3:cb:86:6c:58:0b:8f:05:04:6e:45:ee:01:dc:
c0:39:1f:2c:5a:86:b7:c2:2b:20:7f:36:cc:b0:f2:
cb:83:2f:6b:0a:d0:39:d4:58:5b:b6:73:cd:77:a9:
a4:fe:43:47:fa:99:6b:bf:ea:1b:63:ae:d2:d4:d7:
f2:21:ba:c2:44:38:a3:6b:15:27:f2:ed:97:3e:1d:
c6:5f:df:4d:12:ca:f1:25:e8:b2:de:90:6e:a1:b3:
8a:9a:81:c3:95:a7:33:72:9c:50:40:3c:78:ce:ed:
8c:9b:3c:cb:4c:e7:8d:a8:52:49:b0:4e:1e:3f:89:
e4:46:95:09:b1:0d:e5:0d:5a:85:0b:d2:fd:7b:16:
71:42:ac:c5:28:a4:66:82:a5:38:de:ce:f9:71:1c:
8a:3e:51:c0:c8:7f:04:8a:f4:e4:37:b6:55:3c:8c:
9e:11:85:56:76:ed:1f:33:5e:ba:d1:31:73:7b:70:
fb:5e:4f:bb:06:c7:f5:63:93:16:b5:36:3c:18:52:
3c:b6:76:18:3c:e9:9c:47:c2:07:26:13:63:d9:ee:
59:1e:76:1a:ab:f6:05:75:cd:a1:9d:c3:71:a4:88:
52:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:DB:E5:CB:A3:B3:DA:19:EC:54:61:63:82:AC:2B:F0:02:D7:1E:25
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38322e3138302e3134342e302f32322d3332203d3e20313431393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.180.144.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:0f:e1:3d:19:f1:fc:c7:70:4c:24:55:b7:9f:5c:c4:3a:f4:
77:59:c4:8a:b1:64:7e:68:50:5a:9c:11:3e:8b:88:73:e6:7a:
2c:20:41:90:23:42:83:31:2c:e3:0c:b7:b0:66:68:dd:bb:89:
6d:64:5f:24:a4:4e:43:fd:11:8b:06:5d:36:02:3b:c7:90:f2:
e3:8d:3d:9b:81:89:4c:91:1a:81:0e:b1:26:e1:89:18:2c:a0:
74:23:3b:d9:55:8c:32:af:d0:7d:bd:c3:3e:01:94:83:67:a2:
ea:ac:b0:de:7f:fa:4d:2a:0a:9f:68:1a:64:3f:28:e4:92:0a:
04:79:40:c9:5f:bb:aa:f9:f1:5a:a2:62:59:24:ab:09:36:a9:
9a:20:37:96:e4:42:35:aa:73:8d:4a:0b:9a:7e:37:ea:81:dd:
17:a8:c7:dd:7d:de:9a:36:c3:f0:da:33:d2:a1:2c:5e:93:37:
b0:cf:2c:ba:c0:03:32:99:5e:b5:af:15:30:38:26:cd:45:f0:
cc:bc:8e:3e:15:d0:4d:87:5b:87:60:c5:06:44:8e:6b:7b:62:
82:d5:6f:98:a3:81:1f:19:6c:74:03:55:76:7b:6f:2c:da:d1:
13:b6:f9:6e:84:7d:0e:bf:73:e4:74:d0:f5:00:da:b2:27:ba:
cb:9d:33:0d
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUdOeJH9mC7BXdXUSMKURUTC+CUO8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDA0MDQyMDMxMzBaFw0yNTA0MDMyMDM2MzBaMDMxMTAvBgNV
BAMTKDkwREJFNUNCQTNCM0RBMTlFQzU0NjE2MzgyQUMyQkYwMDJENzFFMjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ13ocbGMn/DCFmIIS5dZTplSx
eGNEpkTGJmEWyy/Dy4ZsWAuPBQRuRe4B3MA5HyxahrfCKyB/Nsyw8suDL2sK0DnU
WFu2c813qaT+Q0f6mWu/6htjrtLU1/IhusJEOKNrFSfy7Zc+HcZf300SyvEl6LLe
kG6hs4qagcOVpzNynFBAPHjO7YybPMtM542oUkmwTh4/ieRGlQmxDeUNWoUL0v17
FnFCrMUopGaCpTjezvlxHIo+UcDIfwSK9OQ3tlU8jJ4RhVZ27R8zXrrRMXN7cPte
T7sGx/Vjkxa1NjwYUjy2dhg86ZxHwgcmE2PZ7lkedhqr9gV1zaGdw3GkiFLTAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUkNvly6Oz2hnsVGFjgqwr8ALXHiUwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzMjJlMzEzODMwMmUzMTM0
MzQyZTMwMmYzMjMyMmQzMzMyMjAzZDNlMjAzMTM0MzEzOTM5MzUucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAJStJAwDQYJKoZIhvcNAQELBQADggEBAHoP4T0Z8fzHcEwkVbefXMQ69HdZxIqx
ZH5oUFqcET6LiHPmeiwgQZAjQoMxLOMMt7BmaN27iW1kXySkTkP9EYsGXTYCO8eQ
8uONPZuBiUyRGoEOsSbhiRgsoHQjO9lVjDKv0H29wz4BlINnouqssN5/+k0qCp9o
GmQ/KOSSCgR5QMlfu6r58VqiYlkkqwk2qZogN5bkQjWqc41KC5p+N+qB3Reox919
3po2w/DaM9KhLF6TN7DPLLrAAzKZXrWvFTA4Js1F8My8jj4V0E2HW4dgxQZEjmt7
YoLVb5ijgR8ZbHQDVXZ7byza0RO2+W6EfQ6/c+R00PUA2rInusudMw0=
-----END CERTIFICATE-----
Generated at Tue May 21 21:12:36 2024 by rpki-client on console-fra.rpki-client.org