Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3136302e3233382e33372e302f32342d3234203d3e20313336373837.roa
File: 3136302e3233382e33372e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: vzFIl+kDQP58utK9crOFNFiavjxbDzdylCi/cw1+Sqk=
Subject key identifier: CA:8A:3D:50:C4:03:76:C8:5D:8B:32:75:2F:D2:99:EC:B0:9F:2D:22
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 572C9F3682C79A6A5589309297CE96EF4E6A08FD
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3136302e3233382e33372e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 26 Feb 2024 08:53:40 +0000
ROA not before: Mon 26 Feb 2024 08:48:40 +0000
ROA not after: Mon 24 Feb 2025 08:53:40 +0000
asID: 136787
IP address blocks: 160.238.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:2c:9f:36:82:c7:9a:6a:55:89:30:92:97:ce:96:ef:4e:6a:08:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 26 08:48:40 2024 GMT
Not After : Feb 24 08:53:40 2025 GMT
Subject: CN=CA8A3D50C40376C85D8B32752FD299ECB09F2D22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:88:e2:c8:8b:7f:de:a0:f9:e6:5f:13:4d:a4:
3e:36:a9:59:f9:42:56:34:2e:91:d9:8e:1c:02:83:
5b:c9:fd:57:c7:3f:53:78:a3:f1:2a:03:eb:97:0a:
3f:dc:fe:69:38:3e:a9:1f:06:0d:44:21:a0:27:00:
f5:5b:1b:3e:f7:f5:d5:f3:93:06:a1:16:23:6a:d5:
8b:53:7e:c9:64:9f:0c:39:a7:aa:c2:6f:0b:9c:69:
69:93:a2:9e:0a:ce:6a:00:d5:8c:72:fa:6e:d7:af:
0a:1a:12:21:73:e3:2c:0f:84:7e:2b:db:3b:78:01:
f7:57:dd:49:11:18:f6:08:4b:22:2f:33:0c:6b:f2:
e4:48:da:48:42:58:75:ee:dc:98:31:8e:a4:db:f6:
35:72:62:11:83:55:82:20:06:3a:8b:42:1b:1a:7e:
3a:89:42:e2:8f:70:17:08:52:f1:86:3b:8b:bf:f3:
f7:12:d3:5c:06:08:de:b1:da:7f:a9:86:ab:85:eb:
93:0c:f4:2f:15:cd:47:5f:05:7b:f3:5a:b9:db:46:
70:77:75:48:31:73:46:9b:67:ff:30:ee:05:f7:9a:
8a:11:32:2e:36:d8:06:8e:7c:eb:f6:e2:46:bf:ea:
e3:93:1b:f2:19:54:1a:42:5a:e2:d4:df:d0:91:fe:
16:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:8A:3D:50:C4:03:76:C8:5D:8B:32:75:2F:D2:99:EC:B0:9F:2D:22
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3136302e3233382e33372e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.238.37.0/24
Signature Algorithm: sha256WithRSAEncryption
50:28:36:66:80:73:04:f3:69:50:4f:af:7d:37:77:7d:75:46:
f6:5a:1f:13:9e:ef:39:68:a0:5a:25:fb:65:4f:db:d5:d2:5a:
e2:fd:2d:65:b5:f7:7e:ac:8f:ae:55:fc:d3:9f:61:dc:5e:29:
c1:19:4f:99:5a:fa:c1:14:5a:5d:27:04:af:51:14:44:a1:17:
b5:38:07:c1:af:13:10:3f:db:2b:16:3b:c3:14:f5:25:d5:b9:
32:99:c9:33:0c:2b:fa:39:fd:de:92:43:8f:a6:79:13:7a:16:
81:95:5f:a7:e1:8b:81:5e:33:c1:00:a4:10:65:45:6e:c1:f4:
b4:e9:89:17:1a:0c:70:2c:b3:29:da:dc:9e:44:4a:9f:dc:9c:
19:77:40:4b:bd:db:6a:04:f5:95:17:9b:62:46:3f:9c:a3:5b:
50:d3:8b:42:31:66:76:e7:02:40:34:9d:78:98:89:0a:0d:c6:
05:1a:0e:4d:9b:18:1a:d5:9c:51:2e:45:ab:6a:c7:11:0e:7d:
1a:a5:05:72:b9:4d:30:07:4e:0d:56:87:43:57:60:83:b6:ef:
a3:22:77:39:b9:9f:d2:4d:8f:84:a7:b8:f8:55:3b:b3:68:15:
a0:e7:fb:db:94:af:fb:ef:69:34:06:c1:4e:34:00:3e:10:c3:
78:e7:15:76
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUVyyfNoLHmmpViTCSl86W705qCP0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTJjMmE4MzU0Njg5YWVjMmE3NGZjYTE0OTQ0OTI3NjIx
YmEyN2M5NDAeFw0yNDAyMjYwODQ4NDBaFw0yNTAyMjQwODUzNDBaMDMxMTAvBgNV
BAMTKENBOEEzRDUwQzQwMzc2Qzg1RDhCMzI3NTJGRDI5OUVDQjA5RjJEMjIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmiOLIi3/eoPnmXxNNpD42qVn5
QlY0LpHZjhwCg1vJ/VfHP1N4o/EqA+uXCj/c/mk4PqkfBg1EIaAnAPVbGz739dXz
kwahFiNq1YtTfslknww5p6rCbwucaWmTop4KzmoA1Yxy+m7XrwoaEiFz4ywPhH4r
2zt4AfdX3UkRGPYISyIvMwxr8uRI2khCWHXu3JgxjqTb9jVyYhGDVYIgBjqLQhsa
fjqJQuKPcBcIUvGGO4u/8/cS01wGCN6x2n+phquF65MM9C8VzUdfBXvzWrnbRnB3
dUgxc0abZ/8w7gX3mooRMi422AaOfOv24ka/6uOTG/IZVBpCWuLU39CR/hY/AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUyoo9UMQDdshdizJ1L9KZ7LCfLSIwHwYDVR0j
BBgwFoAUEsKoNUaJrsKnT8oUlEknYhuifJQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzcvMTJDMkE4MzU0Njg5QUVDMkE3NEZDQTE0OTQ0OTI3NjIxQkEyN0M5NC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0VzS29OVWFKcnNLblQ4b1VsRWtuWWh1
aWZKUS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzcvMzEzNjMwMmUzMjMzMzgyZTMz
MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACg7iUwDQYJKoZIhvcNAQELBQADggEBAFAoNmaAcwTzaVBPr303d311RvZaHxOe
7zlooFol+2VP29XSWuL9LWW1936sj65V/NOfYdxeKcEZT5la+sEUWl0nBK9RFESh
F7U4B8GvExA/2ysWO8MU9SXVuTKZyTMMK/o5/d6SQ4+meRN6FoGVX6fhi4FeM8EA
pBBlRW7B9LTpiRcaDHAssyna3J5ESp/cnBl3QEu922oE9ZUXm2JGP5yjW1DTi0Ix
ZnbnAkA0nXiYiQoNxgUaDk2bGBrVnFEuRatqxxEOfRqlBXK5TTAHTg1Wh0NXYIO2
76Midzm5n9JNj4SnuPhVO7NoFaDn+9uUr/vvaTQGwU40AD4Qw3jnFXY=
-----END CERTIFICATE-----
Generated at Wed May 8 19:21:54 2024 by rpki-client on console-ams.rpki-client.org