Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3138352e3139332e31372e302f32342d3332203d3e203531313637.roa
File: 3138352e3139332e31372e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: pNwe8PZOKFjxmNA6mmH2NZzN2MqDocNOgUdVWifc2Ec=
Subject key identifier: D1:63:FD:11:29:A5:35:66:57:12:27:73:FA:BE:BE:3D:B2:50:F0:12
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 4D4784F62E048E7BC62C884B944F446F036C0DCE
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3138352e3139332e31372e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:53:48 +0000
ROA not before: Mon 26 Feb 2024 08:48:48 +0000
ROA not after: Mon 24 Feb 2025 08:53:48 +0000
asID: 51167
IP address blocks: 185.193.17.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:47:84:f6:2e:04:8e:7b:c6:2c:88:4b:94:4f:44:6f:03:6c:0d:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Feb 26 08:48:48 2024 GMT
Not After : Feb 24 08:53:48 2025 GMT
Subject: CN=D163FD1129A5356657122773FABEBE3DB250F012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:4e:8a:38:88:e8:f7:a6:09:0a:7b:ae:07:cb:
f5:f5:35:77:4f:b2:35:53:70:e8:37:c6:db:f3:3c:
17:12:4a:9d:0e:b8:8a:eb:61:80:31:30:c8:7c:f4:
31:31:0c:f8:08:49:f6:4a:c4:3c:3b:18:a8:2e:63:
0e:25:54:70:c9:4b:2c:92:65:42:c8:dc:2c:93:39:
9a:d4:e2:89:f3:70:c1:a7:ca:4d:0a:78:f8:47:45:
2a:3b:d3:86:fe:f5:42:e6:81:d7:31:8f:8d:f5:af:
6d:da:6c:21:f4:65:fa:0b:40:fb:a2:10:f2:e7:5b:
26:b8:4b:bd:0c:97:a9:a1:73:d4:14:70:18:eb:eb:
1b:e6:3c:df:9c:18:dd:7d:e9:b0:ac:ef:c8:a7:4e:
a4:d6:8b:36:bd:cd:84:47:f4:28:00:56:32:83:ea:
63:0b:9e:87:0f:d4:a5:95:d3:60:09:51:f8:60:e3:
1b:51:43:53:2a:d5:53:9f:89:fa:84:8f:86:59:61:
f7:81:32:df:d5:e5:6f:2b:fd:f5:b5:f1:18:5a:0b:
e2:80:07:43:10:2e:d6:95:f1:49:ca:58:38:b8:01:
e0:ff:fc:8d:dc:d0:29:8a:d6:ae:61:cc:9b:81:e0:
f0:d5:2a:db:83:ad:25:c8:25:50:7d:4d:e3:6c:05:
99:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:63:FD:11:29:A5:35:66:57:12:27:73:FA:BE:BE:3D:B2:50:F0:12
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3138352e3139332e31372e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.17.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:cc:0f:a4:2c:56:64:36:45:b8:02:09:8e:d2:f8:66:06:88:
be:b3:67:12:9a:2e:f8:1e:49:7d:50:b4:75:77:cf:06:b2:cc:
6e:e0:4d:d5:07:32:c4:11:79:66:2a:14:71:12:64:d2:52:c2:
ee:20:96:62:ef:da:e8:0f:1f:ef:e4:e4:30:84:99:40:e2:40:
af:31:7a:18:bc:6b:6b:b8:ba:b9:3e:b3:f0:87:56:ff:69:99:
f3:e6:bc:d2:30:85:ae:cf:5d:00:8d:b4:4a:e5:c3:10:08:00:
cb:c1:62:ae:74:43:db:35:65:44:79:a3:5e:96:e1:48:07:49:
0e:87:d6:e3:04:cd:5e:6f:99:d4:03:14:0d:16:b5:1c:6d:d1:
eb:89:e8:23:0f:2b:6d:09:18:a9:eb:4f:8a:f8:6a:1b:53:54:
94:ea:0b:7d:06:c8:4c:63:ac:4d:7f:bc:dc:d9:65:06:b6:3a:
bf:61:3c:b8:82:62:77:55:69:63:b6:04:84:a0:11:f9:64:95:
82:6b:b6:e8:f0:76:30:8a:55:a5:73:ad:56:b7:95:96:ed:46:
8e:d5:6a:26:70:d3:a4:9a:c1:61:64:3c:6d:63:5a:8c:f4:ad:
4f:92:04:7c:af:81:ec:ec:0d:48:a8:3d:0b:21:fd:66:4e:89:
98:97:4b:fc
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUTUeE9i4EjnvGLIhLlE9EbwNsDc4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWQ3MDg0NTgyMmE2MTQwOGVjMmE1ZmQ1ODBjMTMyZGE3
NzdmMDlkMTAeFw0yNDAyMjYwODQ4NDhaFw0yNTAyMjQwODUzNDhaMDMxMTAvBgNV
BAMTKEQxNjNGRDExMjlBNTM1NjY1NzEyMjc3M0ZBQkVCRTNEQjI1MEYwMTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0Too4iOj3pgkKe64Hy/X1NXdP
sjVTcOg3xtvzPBcSSp0OuIrrYYAxMMh89DExDPgISfZKxDw7GKguYw4lVHDJSyyS
ZULI3CyTOZrU4onzcMGnyk0KePhHRSo704b+9ULmgdcxj431r23abCH0ZfoLQPui
EPLnWya4S70Ml6mhc9QUcBjr6xvmPN+cGN196bCs78inTqTWiza9zYRH9CgAVjKD
6mMLnocP1KWV02AJUfhg4xtRQ1Mq1VOfifqEj4ZZYfeBMt/V5W8r/fW18RhaC+KA
B0MQLtaV8UnKWDi4AeD//I3c0CmK1q5hzJuB4PDVKtuDrSXIJVB9TeNsBZlZAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU0WP9ESmlNWZXEidz+r6+PbJQ8BIwHwYDVR0j
BBgwFoAUXXCEWCKmFAjsKl/VgMEy2nd/CdEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzgvNUQ3MDg0NTgyMkE2MTQwOEVDMkE1RkQ1ODBDMTMyREE3NzdGMDlEMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hYQ0VXQ0ttRkFqc0tsX1ZnTUV5Mm5k
X0NkRS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzgvMzEzODM1MmUzMTM5MzMyZTMx
MzcyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzNTMxMzEzNjM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
ucERMA0GCSqGSIb3DQEBCwUAA4IBAQCyzA+kLFZkNkW4AgmO0vhmBoi+s2cSmi74
Hkl9ULR1d88Gssxu4E3VBzLEEXlmKhRxEmTSUsLuIJZi79roDx/v5OQwhJlA4kCv
MXoYvGtruLq5PrPwh1b/aZnz5rzSMIWuz10AjbRK5cMQCADLwWKudEPbNWVEeaNe
luFIB0kOh9bjBM1eb5nUAxQNFrUcbdHriegjDyttCRip60+K+GobU1SU6gt9BshM
Y6xNf7zc2WUGtjq/YTy4gmJ3VWljtgSEoBH5ZJWCa7bo8HYwilWlc61Wt5WW7UaO
1WomcNOkmsFhZDxtY1qM9K1PkgR8r4Hs7A1IqD0LIf1mTomYl0v8
-----END CERTIFICATE-----
Generated at Sat May 11 08:13:55 2024 by rpki-client on console-ams.rpki-client.org