Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3139362e322e302f32342d3234203d3e20313336373837.roa
File: 3138352e3139362e322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: XjxmUQDDRsIRAjMFLyvFQW3UtwRL2yAuJCuVgB31u5M=
Subject key identifier: 3F:1C:D4:55:A5:FB:79:D8:5F:F2:70:8E:8B:18:ED:20:69:1E:3A:5F
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 33BF74FFC26C9FC1457AB3F1AD4E9E51C22ACACA
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3139362e322e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 13 Feb 2024 12:54:55 +0000
ROA not before: Tue 13 Feb 2024 12:49:55 +0000
ROA not after: Tue 11 Feb 2025 12:54:55 +0000
asID: 136787
IP address blocks: 185.196.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:bf:74:ff:c2:6c:9f:c1:45:7a:b3:f1:ad:4e:9e:51:c2:2a:ca:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 13 12:49:55 2024 GMT
Not After : Feb 11 12:54:55 2025 GMT
Subject: CN=3F1CD455A5FB79D85FF2708E8B18ED20691E3A5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:5a:93:17:be:25:d6:ba:d5:b6:a8:52:80:26:
83:2a:d4:32:3a:6b:84:fc:20:8c:e5:b8:ad:e2:f0:
a1:b5:45:12:e5:df:4e:4b:28:55:5c:1a:3b:33:68:
74:40:e0:a1:cf:0e:40:90:b3:fc:1f:d5:93:64:05:
96:cc:a8:2c:80:0c:58:3f:69:31:91:56:20:74:7e:
1e:be:82:3d:ca:7b:54:2b:34:69:7c:f4:30:cd:20:
48:72:b7:c5:a9:8b:e7:af:67:70:d4:54:92:f1:01:
af:1f:02:c9:49:36:d3:dd:c3:77:89:4e:aa:1d:6b:
6f:90:f1:13:c4:69:4e:9b:67:34:7c:2b:27:d6:c9:
98:2d:d3:e4:87:09:b9:88:04:05:5c:00:7f:81:20:
9e:e3:9d:84:93:c3:09:2e:93:82:62:3d:d0:52:9b:
90:27:d4:99:90:f6:08:f3:62:84:ef:b8:7f:d7:16:
83:6f:b4:52:e2:c3:30:37:03:3c:8f:aa:58:3a:74:
0b:b7:54:6f:c5:d3:31:a3:66:81:cc:6b:f7:08:44:
e0:0f:46:53:78:84:8c:61:70:83:8f:cb:81:48:e0:
0c:95:da:db:99:ea:bc:63:f9:65:86:ae:cc:4f:e0:
4b:e4:52:e1:3c:21:7e:3b:ba:62:02:e5:16:2e:56:
51:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:1C:D4:55:A5:FB:79:D8:5F:F2:70:8E:8B:18:ED:20:69:1E:3A:5F
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3138352e3139362e322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.2.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:a7:99:ab:bc:a7:bf:33:68:c8:77:27:d2:3b:f2:c6:e0:2f:
25:d7:4b:42:d8:e4:fe:bc:d2:5d:3f:73:b4:9a:53:86:3a:6e:
5c:d7:f7:66:78:9d:e2:60:33:8e:35:5f:55:e0:a4:27:2e:48:
c5:4e:4b:34:8a:1a:97:6c:58:fb:6f:83:b0:c1:2e:11:de:3c:
54:bf:04:06:c7:12:10:7c:92:f2:bd:71:4e:91:6a:1b:cf:f3:
71:9e:9f:f8:2a:0e:b7:e6:65:1d:16:da:48:aa:f5:e7:21:22:
30:f1:6c:54:fc:6a:ad:66:57:b1:59:31:fe:b2:89:27:e7:85:
22:33:23:d2:00:69:e1:e3:41:43:0f:f4:8d:e0:dc:fe:46:29:
90:27:39:5e:14:dc:f5:7a:ba:a8:31:16:03:37:3f:69:b4:b9:
5d:55:3d:35:e5:2f:81:a3:0e:8c:c2:cc:30:a4:45:49:0b:60:
55:80:d6:e4:ea:12:b1:12:03:05:57:69:d4:c4:1f:a9:31:01:
36:01:c3:bf:82:88:c6:4c:5a:69:1f:a2:87:01:3c:70:e1:7d:
28:16:9c:2a:62:b7:28:12:e4:a8:d6:f0:2e:9d:57:68:16:6f:
ef:14:11:dc:69:83:fa:0f:0f:92:97:73:13:f0:0f:91:6e:62:
e8:ec:ba:f7
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUM790/8Jsn8FFerPxrU6eUcIqysowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTJjMmE4MzU0Njg5YWVjMmE3NGZjYTE0OTQ0OTI3NjIx
YmEyN2M5NDAeFw0yNDAyMTMxMjQ5NTVaFw0yNTAyMTExMjU0NTVaMDMxMTAvBgNV
BAMTKDNGMUNENDU1QTVGQjc5RDg1RkYyNzA4RThCMThFRDIwNjkxRTNBNUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtWpMXviXWutW2qFKAJoMq1DI6
a4T8IIzluK3i8KG1RRLl305LKFVcGjszaHRA4KHPDkCQs/wf1ZNkBZbMqCyADFg/
aTGRViB0fh6+gj3Ke1QrNGl89DDNIEhyt8Wpi+evZ3DUVJLxAa8fAslJNtPdw3eJ
Tqoda2+Q8RPEaU6bZzR8KyfWyZgt0+SHCbmIBAVcAH+BIJ7jnYSTwwkuk4JiPdBS
m5An1JmQ9gjzYoTvuH/XFoNvtFLiwzA3AzyPqlg6dAu3VG/F0zGjZoHMa/cIROAP
RlN4hIxhcIOPy4FI4AyV2tuZ6rxj+WWGrsxP4EvkUuE8IX47umIC5RYuVlH/AgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUPxzUVaX7edhf8nCOixjtIGkeOl8wHwYDVR0j
BBgwFoAUEsKoNUaJrsKnT8oUlEknYhuifJQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzcvMTJDMkE4MzU0Njg5QUVDMkE3NEZDQTE0OTQ0OTI3NjIxQkEyN0M5NC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0VzS29OVWFKcnNLblQ4b1VsRWtuWWh1
aWZKUS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzcvMzEzODM1MmUzMTM5MzYyZTMy
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
ucQCMA0GCSqGSIb3DQEBCwUAA4IBAQClp5mrvKe/M2jIdyfSO/LG4C8l10tC2OT+
vNJdP3O0mlOGOm5c1/dmeJ3iYDOONV9V4KQnLkjFTks0ihqXbFj7b4OwwS4R3jxU
vwQGxxIQfJLyvXFOkWobz/Nxnp/4Kg635mUdFtpIqvXnISIw8WxU/GqtZlexWTH+
sokn54UiMyPSAGnh40FDD/SN4Nz+RimQJzleFNz1erqoMRYDNz9ptLldVT015S+B
ow6MwswwpEVJC2BVgNbk6hKxEgMFV2nUxB+pMQE2AcO/gojGTFppH6KHATxw4X0o
FpwqYrcoEuSo1vAunVdoFm/vFBHcaYP6Dw+Sl3MT8A+RbmLo7Lr3
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org