Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/38332e3133362e3231382e302f32332d3234203d3e203437353833.roa
File: 38332e3133362e3231382e302f32332d3234203d3e203437353833.roa (raw, json)
Hash identifier: HIEh2pmjYijhnliof0vTH8BNBeRGp4CQ6c3WNta25Qo=
Subject key identifier: 6D:ED:32:12:01:B3:44:0A:BE:D1:83:03:52:FB:56:0F:F4:BB:69:BF
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 17FB8B2953ED4B0458FD7FA0A25EF1642110FB5E
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/38332e3133362e3231382e302f32332d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:53:45 +0000
ROA not before: Mon 26 Feb 2024 08:48:45 +0000
ROA not after: Mon 24 Feb 2025 08:53:45 +0000
asID: 47583
IP address blocks: 83.136.218.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:fb:8b:29:53:ed:4b:04:58:fd:7f:a0:a2:5e:f1:64:21:10:fb:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Feb 26 08:48:45 2024 GMT
Not After : Feb 24 08:53:45 2025 GMT
Subject: CN=6DED321201B3440ABED1830352FB560FF4BB69BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b6:09:c3:5f:91:d6:88:df:40:40:db:60:52:
ca:e9:fb:86:8e:04:63:7e:2f:b8:ad:05:36:ea:a1:
f6:c5:c1:40:16:bf:f5:8c:54:f8:93:47:01:8f:f9:
40:8f:5f:fe:d4:db:11:b1:ac:fb:26:fc:12:8c:aa:
3c:19:82:14:20:e8:a4:09:05:11:8b:3d:4b:b1:9d:
70:ff:4b:52:bc:3c:e9:b0:ef:d2:f2:4e:d5:d8:b7:
41:24:3d:12:41:13:83:e5:20:b0:fb:e9:01:0e:d4:
e0:a4:44:5c:ca:5d:e5:3d:db:51:c0:c2:cc:66:41:
7c:de:10:3f:33:85:2a:23:a3:a3:67:fd:bb:b6:84:
d4:48:83:4a:cd:49:9d:01:39:5b:47:44:7b:d0:3c:
cc:63:98:6a:06:47:7a:78:8f:8e:1f:f0:05:93:9a:
e4:5a:e4:06:98:d0:cc:f2:a1:d9:de:db:63:8e:22:
ee:f8:ac:86:d9:05:be:38:8b:0a:c5:6d:0d:e4:18:
2f:80:2f:7d:0d:d5:62:f7:5a:84:e1:56:ea:c3:8f:
69:84:88:48:f5:64:c3:d2:4a:0e:6e:ae:10:0f:54:
32:0d:97:6d:02:cf:65:f7:ac:8c:f3:f4:48:5a:c9:
31:15:12:14:f2:d3:f0:f7:12:9d:c6:79:7b:bf:b0:
9e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:ED:32:12:01:B3:44:0A:BE:D1:83:03:52:FB:56:0F:F4:BB:69:BF
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/38332e3133362e3231382e302f32332d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.218.0/23
Signature Algorithm: sha256WithRSAEncryption
97:b7:26:d8:20:d6:62:4c:a3:75:a6:f1:f4:06:73:08:ba:e9:
0b:9d:44:d4:70:bf:04:5d:e5:1c:43:bb:3e:c2:b4:4b:7c:2e:
f3:61:d4:6d:a0:fa:73:0c:f1:20:f6:07:46:ab:62:cc:a7:2d:
c7:e3:a4:c4:b7:25:d0:65:27:90:8c:c3:44:f7:da:09:bc:2a:
67:53:bb:32:11:c1:a0:3f:fe:6a:68:8c:cf:de:2b:9f:a3:74:
31:90:36:41:93:7d:03:21:d6:b4:33:ea:3a:46:6b:7c:ab:48:
b4:40:84:2e:c6:2f:8a:fb:33:28:c5:27:16:52:c8:da:94:3c:
91:5e:22:21:0e:f8:62:ac:ee:a6:6b:0d:4a:16:12:b7:04:f3:
04:ed:7b:06:5b:be:95:eb:0b:24:c2:71:1c:54:24:f6:24:a1:
70:26:88:54:f1:00:1b:55:ab:18:75:38:2c:74:91:c6:e0:bd:
71:6b:96:f4:06:8c:52:cd:76:db:3c:5a:62:7a:05:8d:13:e0:
09:b5:a0:95:31:16:da:32:e0:de:3f:40:91:a4:7f:a7:cb:86:
97:72:90:5c:de:a2:80:a6:75:d1:9e:84:f1:fb:b3:0d:f4:2c:
b8:15:7c:49:e6:a4:18:2b:af:70:66:97:2f:de:ef:f2:71:b2:
f5:c3:cb:7f
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUF/uLKVPtSwRY/X+gol7xZCEQ+14wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWQ3MDg0NTgyMmE2MTQwOGVjMmE1ZmQ1ODBjMTMyZGE3
NzdmMDlkMTAeFw0yNDAyMjYwODQ4NDVaFw0yNTAyMjQwODUzNDVaMDMxMTAvBgNV
BAMTKDZERUQzMjEyMDFCMzQ0MEFCRUQxODMwMzUyRkI1NjBGRjRCQjY5QkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMtgnDX5HWiN9AQNtgUsrp+4aO
BGN+L7itBTbqofbFwUAWv/WMVPiTRwGP+UCPX/7U2xGxrPsm/BKMqjwZghQg6KQJ
BRGLPUuxnXD/S1K8POmw79LyTtXYt0EkPRJBE4PlILD76QEO1OCkRFzKXeU921HA
wsxmQXzeED8zhSojo6Nn/bu2hNRIg0rNSZ0BOVtHRHvQPMxjmGoGR3p4j44f8AWT
muRa5AaY0Mzyodne22OOIu74rIbZBb44iwrFbQ3kGC+AL30N1WL3WoThVurDj2mE
iEj1ZMPSSg5urhAPVDINl20Cz2X3rIzz9EhayTEVEhTy0/D3Ep3GeXu/sJ5bAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUbe0yEgGzRAq+0YMDUvtWD/S7ab8wHwYDVR0j
BBgwFoAUXXCEWCKmFAjsKl/VgMEy2nd/CdEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzgvNUQ3MDg0NTgyMkE2MTQwOEVDMkE1RkQ1ODBDMTMyREE3NzdGMDlEMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hYQ0VXQ0ttRkFqc0tsX1ZnTUV5Mm5k
X0NkRS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzgvMzgzMzJlMzEzMzM2MmUzMjMx
MzgyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNDM3MzUzODMzLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
U4jaMA0GCSqGSIb3DQEBCwUAA4IBAQCXtybYINZiTKN1pvH0BnMIuukLnUTUcL8E
XeUcQ7s+wrRLfC7zYdRtoPpzDPEg9gdGq2LMpy3H46TEtyXQZSeQjMNE99oJvCpn
U7syEcGgP/5qaIzP3iufo3QxkDZBk30DIda0M+o6Rmt8q0i0QIQuxi+K+zMoxScW
UsjalDyRXiIhDvhirO6maw1KFhK3BPME7XsGW76V6wskwnEcVCT2JKFwJohU8QAb
VasYdTgsdJHG4L1xa5b0BoxSzXbbPFpiegWNE+AJtaCVMRbaMuDeP0CRpH+ny4aX
cpBc3qKApnXRnoTx+7MN9Cy4FXxJ5qQYK69wZpcv3u/ycbL1w8t/
-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:17 2024 by rpki-client on console-fra.rpki-client.org