Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3231302e302f32342d3234203d3e203631333137.roa
File: 3139342e3135302e3231302e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: AHB5CY26TrDKGB7+HXDszOkzMsWwqIJcqKCCrOUxwuY=
Subject key identifier: 1E:FE:01:4C:7D:3A:E7:EB:43:6D:05:F8:2A:0F:C5:F4:2E:16:21:DD
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 57E551A4586DC68E4F2A210918D49B8A46B7511B
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3231302e302f32342d3234203d3e203631333137.roa
Signing time: Fri 17 Nov 2023 12:45:24 +0000
ROA not before: Fri 17 Nov 2023 12:40:24 +0000
ROA not after: Fri 15 Nov 2024 12:45:24 +0000
asID: 61317
IP address blocks: 194.150.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:e5:51:a4:58:6d:c6:8e:4f:2a:21:09:18:d4:9b:8a:46:b7:51:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Nov 17 12:40:24 2023 GMT
Not After : Nov 15 12:45:24 2024 GMT
Subject: CN=1EFE014C7D3AE7EB436D05F82A0FC5F42E1621DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:3c:17:26:c2:f5:0d:76:45:ce:6f:df:b7:7b:
d0:6c:8b:b5:a4:36:94:d8:fb:cc:41:3d:9a:50:81:
56:28:db:4e:10:ba:17:0e:06:39:05:98:96:ac:89:
61:45:bf:f8:fd:f3:5b:ab:e1:34:c5:99:e9:ef:12:
0d:9b:b9:a5:3f:ce:c1:3f:f8:b8:0c:07:bd:3c:12:
d3:09:72:8d:1b:47:aa:34:b4:4c:b9:5e:d5:2d:2d:
1a:2e:ad:ac:05:d9:3d:48:c0:08:9c:61:58:04:b5:
dc:6b:43:37:d1:43:ad:8a:00:be:15:35:37:e7:82:
a9:24:85:c8:cf:d8:f8:3f:a6:5a:86:de:7e:2e:e1:
d1:2e:03:e5:12:99:69:3d:82:e6:2b:6a:4c:00:68:
53:55:32:7e:41:ca:bf:d1:55:fa:cc:6c:38:75:2f:
08:a6:e6:4e:09:d5:7d:02:bb:d8:f4:50:16:9e:67:
60:30:29:69:9d:52:24:78:e1:61:6e:00:bd:91:69:
07:0a:c1:a0:92:aa:6d:90:52:bb:70:d1:44:ae:c1:
ae:ab:46:8e:2b:bb:32:41:58:7a:ff:40:6b:32:c4:
fc:ac:f8:1a:83:99:4a:35:11:3c:6c:f5:76:cd:21:
34:b5:e0:62:8c:19:cc:36:eb:5a:47:a2:85:2c:84:
ef:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:FE:01:4C:7D:3A:E7:EB:43:6D:05:F8:2A:0F:C5:F4:2E:16:21:DD
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/3139342e3135302e3231302e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.210.0/24
Signature Algorithm: sha256WithRSAEncryption
95:6f:27:e6:3d:1f:cc:3a:4e:09:95:dc:05:49:41:15:02:2a:
bf:e5:8a:68:97:bc:44:83:8c:c4:28:b0:ef:33:17:b5:80:cb:
ad:d4:a7:9b:c1:8f:78:69:f5:cb:75:d1:84:6f:be:9a:e9:8a:
53:c1:39:64:8a:5b:49:91:ec:00:8a:3a:d7:7a:c2:04:e9:fd:
3c:95:94:e4:9a:d8:72:0f:3a:90:55:9f:d6:95:aa:7e:7c:80:
8e:91:b4:d7:9b:88:72:df:f5:0b:1d:d5:41:da:0f:03:de:a9:
81:60:36:a7:41:90:61:77:db:6a:e8:d2:99:46:c7:80:d9:a4:
cd:47:e5:91:9f:23:30:3b:2a:73:dd:8f:62:9e:fc:79:a4:c5:
f8:bc:78:be:09:b8:0f:02:0b:6d:1d:5c:48:4e:83:70:a8:d5:
a2:45:ff:6b:f7:8f:aa:11:d6:a2:f5:a1:02:f8:84:ff:eb:9b:
40:fd:b5:70:16:c5:de:06:e0:eb:33:db:f6:27:1f:1c:63:65:
ef:84:e7:b6:78:1c:65:e8:ff:8d:ab:91:1f:f3:86:16:fe:d8:
51:12:50:2a:ed:28:5a:94:6e:0c:25:12:b1:13:fc:e0:07:49:
a8:9e:52:f4:49:d7:3c:f1:f6:a3:51:73:74:1e:05:a7:37:2c:
fa:e4:60:ab
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUV+VRpFhtxo5PKiEJGNSbika3URswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjJmYmQyY2MwMDEyZmIyZjg2ZGI0MGI1ODliZDFhYzRl
OTczMjY2ZDAeFw0yMzExMTcxMjQwMjRaFw0yNDExMTUxMjQ1MjRaMDMxMTAvBgNV
BAMTKDFFRkUwMTRDN0QzQUU3RUI0MzZEMDVGODJBMEZDNUY0MkUxNjIxREQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbPBcmwvUNdkXOb9+3e9Bsi7Wk
NpTY+8xBPZpQgVYo204QuhcOBjkFmJasiWFFv/j981ur4TTFmenvEg2buaU/zsE/
+LgMB708EtMJco0bR6o0tEy5XtUtLRourawF2T1IwAicYVgEtdxrQzfRQ62KAL4V
NTfngqkkhcjP2Pg/plqG3n4u4dEuA+USmWk9guYrakwAaFNVMn5Byr/RVfrMbDh1
Lwim5k4J1X0Cu9j0UBaeZ2AwKWmdUiR44WFuAL2RaQcKwaCSqm2QUrtw0USuwa6r
Ro4ruzJBWHr/QGsyxPys+BqDmUo1ETxs9XbNITS14GKMGcw261pHooUshO9vAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUHv4BTH065+tDbQX4Kg/F9C4WId0wHwYDVR0j
BBgwFoAUYvvSzAAS+y+G20C1ib0axOlzJm0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNDZiOTNkZjAtYWM4ZC00ZGE4LWFmYjgtZGNiN2YyODg4
MzYyLzAvNjJGQkQyQ0MwMDEyRkIyRjg2REI0MEI1ODlCRDFBQzRFOTczMjY2RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1l2dlN6QUFTLXktRzIwQzFpYjBheE9s
ekptMC5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNDZiOTNkZjAt
YWM4ZC00ZGE4LWFmYjgtZGNiN2YyODg4MzYyLzAvMzEzOTM0MmUzMTM1MzAyZTMy
MzEzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM2MzEzMzMxMzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BADCltIwDQYJKoZIhvcNAQELBQADggEBAJVvJ+Y9H8w6TgmV3AVJQRUCKr/limiX
vESDjMQosO8zF7WAy63Up5vBj3hp9ct10YRvvprpilPBOWSKW0mR7ACKOtd6wgTp
/TyVlOSa2HIPOpBVn9aVqn58gI6RtNebiHLf9Qsd1UHaDwPeqYFgNqdBkGF322ro
0plGx4DZpM1H5ZGfIzA7KnPdj2Ke/Hmkxfi8eL4JuA8CC20dXEhOg3Co1aJF/2v3
j6oR1qL1oQL4hP/rm0D9tXAWxd4G4Osz2/YnHxxjZe+E57Z4HGXo/42rkR/zhhb+
2FESUCrtKFqUbgwlErET/OAHSaieUvRJ1zzx9qNRc3QeBac3LPrkYKs=
-----END CERTIFICATE-----
Generated at Fri May 3 17:13:59 2024 by rpki-client on console-fra.rpki-client.org