Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3137362e3131332e37392e302f32342d3234203d3e20313336373837.roa
File: 3137362e3131332e37392e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 92bQSOBWkEtgizYUOfebQtOZhleUI9Q6u/kRzX1Sh9M=
Subject key identifier: 2F:2D:51:38:7C:D7:AB:0E:9B:FC:C5:53:19:40:E8:6F:3C:EB:C8:E4
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 0AF6CB6FCABC778B0782DF8BE68415B58C2A71CC
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3137362e3131332e37392e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 13 Feb 2024 12:54:13 +0000
ROA not before: Tue 13 Feb 2024 12:49:13 +0000
ROA not after: Tue 11 Feb 2025 12:54:13 +0000
asID: 136787
IP address blocks: 176.113.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:f6:cb:6f:ca:bc:77:8b:07:82:df:8b:e6:84:15:b5:8c:2a:71:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Feb 13 12:49:13 2024 GMT
Not After : Feb 11 12:54:13 2025 GMT
Subject: CN=2F2D51387CD7AB0E9BFCC5531940E86F3CEBC8E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bb:a4:14:78:f8:da:61:fa:78:a3:28:77:1f:
0b:64:64:52:2e:4c:87:41:26:8f:54:7d:89:2a:99:
ae:2f:9b:b7:b0:d9:d3:98:aa:ac:80:c5:15:18:e1:
72:63:37:98:dd:d3:45:88:41:73:f9:b1:62:d1:ae:
c6:c4:6a:17:6e:89:37:6b:9c:89:c9:c2:a7:36:7d:
88:c4:07:03:e0:23:1c:00:25:59:79:17:6c:56:22:
34:e4:65:89:a0:46:13:55:72:ae:db:09:20:4a:5f:
40:5f:29:dc:e3:83:fa:cb:3d:f7:da:c8:bb:c8:74:
f0:e8:63:50:2f:02:b0:1a:71:16:1d:25:a9:f9:7d:
e6:32:9c:ad:96:9a:12:d0:15:f4:06:9f:9c:3f:04:
17:76:cb:00:ce:08:17:73:67:26:b4:b7:72:1d:4f:
83:4d:b9:2a:cf:82:95:3a:a1:87:c6:0b:4a:d6:b7:
8d:70:7c:eb:75:ee:6e:ce:f9:b8:c8:59:80:f4:ec:
a0:71:82:db:60:a6:2b:48:17:9f:2a:50:82:4c:94:
ae:ba:67:b3:64:a4:11:af:7c:3b:af:90:7e:4f:9d:
11:1d:56:ee:ea:5b:3b:04:1c:4f:48:dd:f7:f1:2f:
f1:7e:ba:ae:44:ae:a4:f7:e3:5a:ca:0a:4e:4d:6e:
f4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:2D:51:38:7C:D7:AB:0E:9B:FC:C5:53:19:40:E8:6F:3C:EB:C8:E4
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3137362e3131332e37392e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.113.79.0/24
Signature Algorithm: sha256WithRSAEncryption
17:36:fc:79:9f:f0:f5:c7:f8:15:40:ea:df:7d:6e:61:6a:a5:
62:e0:f9:89:8d:5b:86:0f:8a:a8:ef:b5:d9:24:f5:b4:ce:89:
0b:5c:dd:b2:92:f6:b7:c9:22:47:2e:51:1c:70:9d:2d:72:60:
08:60:5b:d7:5c:38:60:66:17:9a:a2:1a:d5:41:24:5c:ee:30:
09:60:d5:5f:bf:76:2f:77:ae:8a:fb:a2:b6:6f:81:93:26:d0:
5c:91:47:75:41:0c:d9:21:e0:14:2e:56:49:f5:12:63:33:6f:
8c:30:ff:65:66:51:5d:c5:b7:38:77:77:2f:70:63:71:ca:86:
1a:64:ba:6c:e6:aa:0e:82:96:8c:c0:84:a9:ca:4e:68:c5:90:
ea:bb:38:ae:34:4d:ad:91:01:86:6e:b9:0a:b5:5d:dd:98:56:
90:21:83:d1:36:bd:06:3a:87:eb:e9:bf:93:32:81:ed:e1:77:
da:02:83:74:ff:0b:b8:1b:cd:77:6c:9b:2f:5c:7b:da:53:70:
80:84:0a:a8:b7:f1:44:0e:34:c9:05:d2:1a:9f:07:15:94:01:
ec:bb:fe:81:8f:48:82:19:39:fa:42:cf:db:16:fd:7b:ae:2a:
4c:90:4a:6a:2b:16:35:45:ed:00:0b:41:97:8c:6e:93:61:5f:
08:97:b5:2d
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUCvbLb8q8d4sHgt+L5oQVtYwqccwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWQ3MDg0NTgyMmE2MTQwOGVjMmE1ZmQ1ODBjMTMyZGE3
NzdmMDlkMTAeFw0yNDAyMTMxMjQ5MTNaFw0yNTAyMTExMjU0MTNaMDMxMTAvBgNV
BAMTKDJGMkQ1MTM4N0NEN0FCMEU5QkZDQzU1MzE5NDBFODZGM0NFQkM4RTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBu6QUePjaYfp4oyh3HwtkZFIu
TIdBJo9UfYkqma4vm7ew2dOYqqyAxRUY4XJjN5jd00WIQXP5sWLRrsbEahduiTdr
nInJwqc2fYjEBwPgIxwAJVl5F2xWIjTkZYmgRhNVcq7bCSBKX0BfKdzjg/rLPffa
yLvIdPDoY1AvArAacRYdJan5feYynK2WmhLQFfQGn5w/BBd2ywDOCBdzZya0t3Id
T4NNuSrPgpU6oYfGC0rWt41wfOt17m7O+bjIWYD07KBxgttgpitIF58qUIJMlK66
Z7NkpBGvfDuvkH5PnREdVu7qWzsEHE9I3ffxL/F+uq5ErqT341rKCk5NbvSFAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQULy1ROHzXqw6b/MVTGUDobzzryOQwHwYDVR0j
BBgwFoAUXXCEWCKmFAjsKl/VgMEy2nd/CdEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzgvNUQ3MDg0NTgyMkE2MTQwOEVDMkE1RkQ1ODBDMTMyREE3NzdGMDlEMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hYQ0VXQ0ttRkFqc0tsX1ZnTUV5Mm5k
X0NkRS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzgvMzEzNzM2MmUzMTMxMzMyZTM3
MzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACwcU8wDQYJKoZIhvcNAQELBQADggEBABc2/Hmf8PXH+BVA6t99bmFqpWLg+YmN
W4YPiqjvtdkk9bTOiQtc3bKS9rfJIkcuURxwnS1yYAhgW9dcOGBmF5qiGtVBJFzu
MAlg1V+/di93ror7orZvgZMm0FyRR3VBDNkh4BQuVkn1EmMzb4ww/2VmUV3Ftzh3
dy9wY3HKhhpkumzmqg6ClozAhKnKTmjFkOq7OK40Ta2RAYZuuQq1Xd2YVpAhg9E2
vQY6h+vpv5Myge3hd9oCg3T/C7gbzXdsmy9ce9pTcICECqi38UQONMkF0hqfBxWU
Aey7/oGPSIIZOfpCz9sW/XuuKkyQSmorFjVF7QALQZeMbpNhXwiXtS0=
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org