Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3137382e3231322e33332e302f32342d3332203d3e20313431393935.roa
File: 3137382e3231322e33332e302f32342d3332203d3e20313431393935.roa (raw, json)
Hash identifier: CE9/P7KlIHXuk3btltcQSghKguhbQwLFkBQ2djt+cBk=
Subject key identifier: 56:89:1A:EC:39:3B:73:21:2B:5E:2F:E2:E8:65:4E:0B:0F:79:AF:60
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 57665B01DC04C24352D7866A3A6F889D7613BA78
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3137382e3231322e33332e302f32342d3332203d3e20313431393935.roa
Signing time: Tue 12 Mar 2024 20:00:11 +0000
ROA not before: Tue 12 Mar 2024 19:55:11 +0000
ROA not after: Tue 11 Mar 2025 20:00:11 +0000
asID: 141995
IP address blocks: 178.212.33.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:66:5b:01:dc:04:c2:43:52:d7:86:6a:3a:6f:88:9d:76:13:ba:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Mar 12 19:55:11 2024 GMT
Not After : Mar 11 20:00:11 2025 GMT
Subject: CN=56891AEC393B73212B5E2FE2E8654E0B0F79AF60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f3:c9:14:a5:b9:e0:ac:9b:9c:99:db:62:37:
d4:37:a8:7f:e3:72:12:3a:fb:88:b9:09:0e:2e:2d:
3b:e8:23:9b:c5:63:6a:c7:aa:8e:0c:df:cd:d7:5b:
95:f0:d5:24:7b:cd:a2:2c:d3:3a:cc:ed:ff:bf:e1:
16:1b:18:8d:43:0e:28:58:8c:56:e4:b0:28:0b:51:
a7:3d:22:fc:b5:ae:14:10:64:cc:6c:a5:6c:3d:93:
5f:7e:07:dd:69:c7:87:6d:9e:11:e0:51:04:2b:51:
d3:b2:52:04:6d:f8:d4:90:4f:4d:b1:31:ed:4a:24:
19:c9:8a:98:8b:46:66:23:f0:b2:fc:90:64:1f:8a:
ae:a9:c9:62:1c:e3:1c:67:4a:8b:cd:73:6c:2b:9d:
f8:92:5e:c8:be:a6:6f:1b:26:04:03:50:0d:d5:02:
69:e6:21:17:d0:33:3d:53:89:00:1a:32:3f:50:d7:
cc:7c:1b:9a:15:a8:1f:2c:bb:58:9b:af:9f:0f:3a:
01:d3:dd:f9:e8:f6:16:59:3f:70:27:94:14:2e:51:
2c:a8:6e:de:37:a0:f1:1a:79:38:2b:72:d1:b2:58:
e9:49:7c:26:c1:7e:8d:ce:d9:c3:94:8b:39:68:99:
74:85:8d:61:64:fd:42:dd:62:a0:aa:a5:99:ae:39:
61:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:89:1A:EC:39:3B:73:21:2B:5E:2F:E2:E8:65:4E:0B:0F:79:AF:60
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3137382e3231322e33332e302f32342d3332203d3e20313431393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.33.0/24
Signature Algorithm: sha256WithRSAEncryption
35:42:93:f5:8c:ea:ed:7c:54:c8:da:48:8f:8f:cb:97:a7:95:
65:78:12:ed:69:a6:52:12:94:e9:d0:f6:3b:77:97:26:03:ee:
18:01:26:d0:14:36:a6:22:af:2e:b4:e5:c8:c0:0c:89:29:fd:
3e:6f:20:39:48:f6:d0:8f:b5:d8:60:10:1f:fd:95:70:f5:04:
85:e3:c5:37:61:fa:4c:f6:c1:c5:c6:11:cb:9a:aa:ef:8d:05:
4c:da:90:51:d1:9d:39:79:f4:40:ed:37:64:f7:93:a9:67:aa:
50:7f:0f:69:68:49:64:1e:b4:2c:80:4f:ef:49:d9:10:c9:59:
cd:a1:c6:72:02:26:af:08:2b:63:e5:75:61:71:d4:f6:bf:d9:
40:57:1f:ee:c0:dc:6c:8b:d0:a0:6a:45:82:2a:51:eb:9e:08:
9b:e2:f5:67:f0:34:70:fe:50:28:50:bc:4f:9c:55:50:89:27:
b0:3f:3d:76:84:17:9d:57:0d:86:26:60:82:8f:00:88:7a:67:
8d:d9:da:0e:66:61:8b:0f:49:25:f0:45:a9:16:8b:f5:08:e3:
7e:41:2f:44:e3:13:27:32:ea:4a:08:76:03:cc:4c:31:ee:e3:
5c:8d:5e:89:b1:a0:96:8c:ca:d0:0c:f8:08:90:e6:8c:80:47:
9c:ad:61:fa
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUV2ZbAdwEwkNS14ZqOm+InXYTungwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWQ3MDg0NTgyMmE2MTQwOGVjMmE1ZmQ1ODBjMTMyZGE3
NzdmMDlkMTAeFw0yNDAzMTIxOTU1MTFaFw0yNTAzMTEyMDAwMTFaMDMxMTAvBgNV
BAMTKDU2ODkxQUVDMzkzQjczMjEyQjVFMkZFMkU4NjU0RTBCMEY3OUFGNjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC588kUpbngrJucmdtiN9Q3qH/j
chI6+4i5CQ4uLTvoI5vFY2rHqo4M383XW5Xw1SR7zaIs0zrM7f+/4RYbGI1DDihY
jFbksCgLUac9Ivy1rhQQZMxspWw9k19+B91px4dtnhHgUQQrUdOyUgRt+NSQT02x
Me1KJBnJipiLRmYj8LL8kGQfiq6pyWIc4xxnSovNc2wrnfiSXsi+pm8bJgQDUA3V
AmnmIRfQMz1TiQAaMj9Q18x8G5oVqB8su1ibr58POgHT3fno9hZZP3AnlBQuUSyo
bt43oPEaeTgrctGyWOlJfCbBfo3O2cOUizlomXSFjWFk/ULdYqCqpZmuOWHzAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUVoka7Dk7cyErXi/i6GVOCw95r2AwHwYDVR0j
BBgwFoAUXXCEWCKmFAjsKl/VgMEy2nd/CdEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzgvNUQ3MDg0NTgyMkE2MTQwOEVDMkE1RkQ1ODBDMTMyREE3NzdGMDlEMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hYQ0VXQ0ttRkFqc0tsX1ZnTUV5Mm5k
X0NkRS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzgvMzEzNzM4MmUzMjMxMzIyZTMz
MzMyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzMTM0MzEzOTM5MzUucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACy1CEwDQYJKoZIhvcNAQELBQADggEBADVCk/WM6u18VMjaSI+Py5enlWV4Eu1p
plISlOnQ9jt3lyYD7hgBJtAUNqYiry605cjADIkp/T5vIDlI9tCPtdhgEB/9lXD1
BIXjxTdh+kz2wcXGEcuaqu+NBUzakFHRnTl59EDtN2T3k6lnqlB/D2loSWQetCyA
T+9J2RDJWc2hxnICJq8IK2PldWFx1Pa/2UBXH+7A3GyL0KBqRYIqUeueCJvi9Wfw
NHD+UChQvE+cVVCJJ7A/PXaEF51XDYYmYIKPAIh6Z43Z2g5mYYsPSSXwRakWi/UI
435BL0TjEycy6koIdgPMTDHu41yNXomxoJaMytAM+AiQ5oyAR5ytYfo=
-----END CERTIFICATE-----
Generated at Sat May 11 08:34:17 2024 by rpki-client on console-fra.rpki-client.org