Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3138352e3139332e31362e302f32342d3234203d3e203631333137.roa
File: 3138352e3139332e31362e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: 8axbBSjSc0U2KiCVCsYqX6ueEYKEwsIaw20MiGGFWeY=
Subject key identifier: DF:66:E7:32:14:DE:05:80:DE:6B:A1:4B:C1:A7:A6:10:7E:9F:C3:BD
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 7776D7A5DF4A7E31F3A5E84C5A5390236C50DFE6
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3138352e3139332e31362e302f32342d3234203d3e203631333137.roa
Signing time: Mon 26 Feb 2024 08:53:50 +0000
ROA not before: Mon 26 Feb 2024 08:48:50 +0000
ROA not after: Mon 24 Feb 2025 08:53:50 +0000
asID: 61317
IP address blocks: 185.193.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:76:d7:a5:df:4a:7e:31:f3:a5:e8:4c:5a:53:90:23:6c:50:df:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Feb 26 08:48:50 2024 GMT
Not After : Feb 24 08:53:50 2025 GMT
Subject: CN=DF66E73214DE0580DE6BA14BC1A7A6107E9FC3BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bd:8c:ca:21:f1:8f:a5:15:42:ee:d1:cb:d4:
37:7a:19:c6:47:a1:60:06:ce:03:ee:51:13:0f:e0:
ad:8e:79:c2:ba:fb:d9:10:d3:9d:02:a9:1c:90:9f:
36:14:b5:ed:c9:1e:eb:f1:90:3f:d1:5d:30:f0:7b:
c1:db:39:40:5d:f7:e1:da:80:82:16:b9:8e:23:b6:
9a:08:12:31:69:08:db:41:1a:ec:38:7d:6d:2f:b6:
70:f8:13:41:06:2e:42:b7:c1:12:8f:8e:84:94:66:
22:aa:08:3b:0d:4d:99:d5:4e:ae:62:3a:3d:81:1f:
b1:0b:62:d0:76:9f:2a:9d:b8:36:28:bb:de:94:e2:
2d:c9:48:e5:54:d0:da:84:9d:be:0c:ae:8b:3b:98:
7b:14:40:fa:fe:48:19:e2:5f:ea:4c:9f:08:05:e8:
ba:e3:b3:0d:f5:71:6e:0b:26:41:65:57:1a:28:49:
99:65:be:77:1b:47:dc:69:4c:37:c0:0a:79:dd:58:
22:9e:03:62:ba:d1:9d:b5:bc:f7:1a:65:a0:61:8b:
90:56:5e:22:19:e9:ea:d0:0f:f7:5f:91:94:9f:59:
71:1f:23:33:38:f2:e2:ad:3b:b6:d3:32:85:47:ee:
b7:6c:66:1a:85:7b:7f:61:7f:15:a7:80:c4:bb:d1:
31:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:66:E7:32:14:DE:05:80:DE:6B:A1:4B:C1:A7:A6:10:7E:9F:C3:BD
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3138352e3139332e31362e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.16.0/24
Signature Algorithm: sha256WithRSAEncryption
99:69:5f:2a:ac:4c:38:ed:ac:e8:cd:dc:1b:aa:4d:54:5c:80:
40:bb:0b:17:50:a2:b0:82:cb:36:3f:c7:e5:c9:09:8e:bb:55:
7b:c7:04:47:0d:01:8d:f6:96:27:2f:db:16:74:50:e2:e9:98:
33:13:8c:8d:71:fe:b4:ff:c2:59:6c:e2:82:db:89:c4:ff:60:
ba:3c:5b:c3:fc:be:b0:bc:10:17:f3:aa:18:af:ac:3a:a4:50:
3b:9d:b7:10:78:06:41:ac:cf:90:03:26:08:a6:cf:e2:81:b0:
53:1a:8c:dd:0d:72:97:c9:36:34:a1:36:65:c5:ba:97:c8:b6:
6e:b7:c4:77:7f:62:a8:4d:c7:7a:a6:59:2c:ff:c8:09:9e:eb:
36:56:81:e3:ef:00:78:b5:f0:8d:9f:99:83:4a:9c:ea:33:a1:
a2:ce:78:61:3f:e1:ff:fa:2e:13:5e:f5:6d:79:26:38:da:53:
b2:07:d8:c9:e6:eb:a3:8c:fc:36:09:98:ee:dc:57:95:55:85:
c3:5d:7d:73:d1:de:b5:29:7a:47:62:c4:2e:79:69:93:77:63:
a9:6c:46:8c:d5:76:88:1c:e9:bd:57:df:85:3f:a7:d2:2e:33:
7a:38:a1:ba:46:27:a4:89:6b:43:03:49:57:ab:08:0f:72:a7:
79:fa:03:11
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUd3bXpd9KfjHzpehMWlOQI2xQ3+YwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWQ3MDg0NTgyMmE2MTQwOGVjMmE1ZmQ1ODBjMTMyZGE3
NzdmMDlkMTAeFw0yNDAyMjYwODQ4NTBaFw0yNTAyMjQwODUzNTBaMDMxMTAvBgNV
BAMTKERGNjZFNzMyMTRERTA1ODBERTZCQTE0QkMxQTdBNjEwN0U5RkMzQkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5vYzKIfGPpRVC7tHL1Dd6GcZH
oWAGzgPuURMP4K2OecK6+9kQ050CqRyQnzYUte3JHuvxkD/RXTDwe8HbOUBd9+Ha
gIIWuY4jtpoIEjFpCNtBGuw4fW0vtnD4E0EGLkK3wRKPjoSUZiKqCDsNTZnVTq5i
Oj2BH7ELYtB2nyqduDYou96U4i3JSOVU0NqEnb4Mros7mHsUQPr+SBniX+pMnwgF
6Lrjsw31cW4LJkFlVxooSZllvncbR9xpTDfACnndWCKeA2K60Z21vPcaZaBhi5BW
XiIZ6erQD/dfkZSfWXEfIzM48uKtO7bTMoVH7rdsZhqFe39hfxWngMS70TE9AgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU32bnMhTeBYDea6FLwaemEH6fw70wHwYDVR0j
BBgwFoAUXXCEWCKmFAjsKl/VgMEy2nd/CdEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzgvNUQ3MDg0NTgyMkE2MTQwOEVDMkE1RkQ1ODBDMTMyREE3NzdGMDlEMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hYQ0VXQ0ttRkFqc0tsX1ZnTUV5Mm5k
X0NkRS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzgvMzEzODM1MmUzMTM5MzMyZTMx
MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
ucEQMA0GCSqGSIb3DQEBCwUAA4IBAQCZaV8qrEw47azozdwbqk1UXIBAuwsXUKKw
gss2P8flyQmOu1V7xwRHDQGN9pYnL9sWdFDi6ZgzE4yNcf60/8JZbOKC24nE/2C6
PFvD/L6wvBAX86oYr6w6pFA7nbcQeAZBrM+QAyYIps/igbBTGozdDXKXyTY0oTZl
xbqXyLZut8R3f2KoTcd6plks/8gJnus2VoHj7wB4tfCNn5mDSpzqM6GiznhhP+H/
+i4TXvVteSY42lOyB9jJ5uujjPw2CZju3FeVVYXDXX1z0d61KXpHYsQueWmTd2Op
bEaM1XaIHOm9V9+FP6fSLjN6OKG6RiekiWtDA0lXqwgPcqd5+gMR
-----END CERTIFICATE-----
Generated at Fri Apr 26 00:05:21 2024 by rpki-client on console-fra.rpki-client.org