Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38362e302f32342d3234203d3e203239383032.roa
File: 3231332e3133392e38362e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: /g4mXfjc/EY8nBfITflmu9EgNwDcmLPBo6uXwmbhPYM=
Subject key identifier: 88:F6:55:FA:C4:56:8F:15:FB:F1:7A:97:36:17:E7:18:A3:DB:A8:73
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 73D88103CCF1DD40AE3B07F435E33C095D60548A
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38362e302f32342d3234203d3e203239383032.roa
Signing time: Tue 19 Mar 2024 15:05:14 +0000
ROA not before: Tue 19 Mar 2024 15:00:14 +0000
ROA not after: Tue 18 Mar 2025 15:05:14 +0000
asID: 29802
IP address blocks: 213.139.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Apr 2024 19:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:d8:81:03:cc:f1:dd:40:ae:3b:07:f4:35:e3:3c:09:5d:60:54:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Mar 19 15:00:14 2024 GMT
Not After : Mar 18 15:05:14 2025 GMT
Subject: CN=88F655FAC4568F15FBF17A973617E718A3DBA873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b1:14:96:7e:63:ea:9e:62:45:d6:8c:85:bd:
b0:42:4c:09:cd:9d:5c:6f:8e:af:64:2c:2f:0b:3e:
7d:41:9b:cd:bc:4b:e9:06:02:5e:fc:9e:d4:83:8b:
4b:a4:ba:01:08:b8:e0:37:22:79:40:53:88:9c:12:
94:b5:b8:ee:5f:ac:3c:05:3e:b0:6f:17:90:66:dc:
28:ad:1f:a1:a5:4f:56:37:88:6c:da:a0:c3:66:a6:
c5:cb:34:a0:56:c7:2b:bb:04:78:32:e3:de:5d:19:
11:04:96:bb:a8:a5:bd:ff:dc:5e:ed:06:fc:06:1d:
3f:47:ec:71:c7:9c:d7:81:fa:80:3d:9d:60:0a:b4:
d8:75:b9:06:5b:87:f8:04:68:92:4b:3a:35:30:9a:
52:b7:af:98:d9:34:85:91:35:24:71:55:fb:a5:a4:
1c:00:40:0d:ab:93:05:b7:68:96:8c:82:39:92:40:
aa:5b:e9:97:83:cf:bc:a2:13:2a:08:da:e5:66:df:
42:88:cc:5b:5d:71:52:8f:21:9c:38:3e:d4:8d:17:
66:65:05:63:c9:24:43:06:13:7f:64:fa:db:63:c2:
cc:93:2b:b3:63:a4:72:6a:64:7b:b6:50:e4:e9:1b:
ec:81:cc:a0:2e:92:92:90:ea:77:1b:6a:07:93:08:
61:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F6:55:FA:C4:56:8F:15:FB:F1:7A:97:36:17:E7:18:A3:DB:A8:73
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e38362e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.86.0/24
Signature Algorithm: sha256WithRSAEncryption
91:78:db:8d:59:0d:4f:97:68:35:c9:a9:ee:4e:62:a1:06:d0:
5d:eb:a4:a8:61:c4:05:41:fe:a9:31:95:52:ad:eb:cf:12:60:
fa:33:4f:bb:bc:f2:62:b8:40:4b:23:2b:43:4d:d4:6b:63:ba:
8b:28:0f:2b:5e:17:de:d5:ba:3b:35:20:e1:52:51:fd:9c:36:
f6:c8:7e:6a:c7:cc:7a:9e:80:55:83:8e:aa:d8:e9:6f:79:f2:
85:f9:d0:1d:3c:a1:e9:d6:20:03:89:4f:6b:bc:94:1f:cc:29:
e1:36:58:46:49:12:24:67:6b:d1:9d:35:47:cd:b8:fb:7a:95:
b6:00:e9:6a:b6:de:ab:aa:1a:18:ba:df:9c:a5:ce:5c:31:a4:
21:99:08:71:16:85:99:8f:d5:9b:7b:88:5f:ee:b8:8e:80:c7:
28:07:da:96:17:3f:e0:4e:65:36:2f:86:91:b5:41:6c:b7:1a:
90:62:85:95:28:3d:23:6b:b9:c9:8a:34:13:8b:4e:8f:78:e3:
3a:41:b2:e1:86:04:86:8e:49:e7:30:d1:d9:30:0e:97:f2:b7:
87:43:a8:2a:85:53:e0:b0:1c:6e:75:a4:f8:e8:9a:dc:69:0e:
d6:ae:27:e8:1d:3c:87:94:9d:db:6b:0d:58:d4:bf:2f:82:2d:
f0:3c:f6:69
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUc9iBA8zx3UCuOwf0NeM8CV1gVIowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjY4M2YyZWI1MGM1OTk5YTc3NDU2ZTg4MjY4MzE2MDlk
NDhjN2QzZTAeFw0yNDAzMTkxNTAwMTRaFw0yNTAzMTgxNTA1MTRaMDMxMTAvBgNV
BAMTKDg4RjY1NUZBQzQ1NjhGMTVGQkYxN0E5NzM2MTdFNzE4QTNEQkE4NzMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpsRSWfmPqnmJF1oyFvbBCTAnN
nVxvjq9kLC8LPn1Bm828S+kGAl78ntSDi0ukugEIuOA3InlAU4icEpS1uO5frDwF
PrBvF5Bm3CitH6GlT1Y3iGzaoMNmpsXLNKBWxyu7BHgy495dGREElruopb3/3F7t
BvwGHT9H7HHHnNeB+oA9nWAKtNh1uQZbh/gEaJJLOjUwmlK3r5jZNIWRNSRxVful
pBwAQA2rkwW3aJaMgjmSQKpb6ZeDz7yiEyoI2uVm30KIzFtdcVKPIZw4PtSNF2Zl
BWPJJEMGE39k+ttjwsyTK7NjpHJqZHu2UOTpG+yBzKAukpKQ6ncbageTCGGJAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUiPZV+sRWjxX78XqXNhfnGKPbqHMwHwYDVR0j
BBgwFoAUtoPy61DFmZp3RW6IJoMWCdSMfT4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmItYjY2MC00ODlkLTllOWYtOTQwMmU5ZTJj
MmUyLzAvQjY4M0YyRUI1MEM1OTk5QTc3NDU2RTg4MjY4MzE2MDlENDhDN0QzRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3RvUHk2MURGbVpwM1JXNklKb01XQ2RT
TWZUNC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmIt
YjY2MC00ODlkLTllOWYtOTQwMmU5ZTJjMmUyLzAvMzIzMTMzMmUzMTMzMzkyZTM4
MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM5MzgzMDMyLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
1YtWMA0GCSqGSIb3DQEBCwUAA4IBAQCReNuNWQ1Pl2g1yanuTmKhBtBd66SoYcQF
Qf6pMZVSrevPEmD6M0+7vPJiuEBLIytDTdRrY7qLKA8rXhfe1bo7NSDhUlH9nDb2
yH5qx8x6noBVg46q2OlvefKF+dAdPKHp1iADiU9rvJQfzCnhNlhGSRIkZ2vRnTVH
zbj7epW2AOlqtt6rqhoYut+cpc5cMaQhmQhxFoWZj9Wbe4hf7riOgMcoB9qWFz/g
TmU2L4aRtUFstxqQYoWVKD0ja7nJijQTi06PeOM6QbLhhgSGjknnMNHZMA6X8reH
Q6gqhVPgsBxudaT46JrcaQ7WrifoHTyHlJ3baw1Y1L8vgi3wPPZp
-----END CERTIFICATE-----
Generated at Tue Apr 30 01:22:45 2024 by rpki-client on console-fra.rpki-client.org