Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233362e302f32342d3234203d3e203438303730.roa
File: 39342e3132362e3233362e302f32342d3234203d3e203438303730.roa (raw, json)
Hash identifier: 4fvREtx1+BQITt7UngAFGbNBD2zl2RCfoRpc2R9oqUA=
Subject key identifier: D9:F5:26:83:F4:34:E0:A9:B6:D3:3B:16:77:3C:CA:AB:37:BC:BE:B8
Certificate issuer: /CN=98a87cad5b710890a9528f166f4202393824e6b8
Certificate serial: 0963C190DBF1E5EA949387CC6BFB68745BB652E5
Authority key identifier: 98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233362e302f32342d3234203d3e203438303730.roa
Signing time: Tue 25 Jul 2023 15:01:29 +0000
ROA not before: Tue 25 Jul 2023 14:56:29 +0000
ROA not after: Tue 23 Jul 2024 15:01:29 +0000
asID: 48070
IP address blocks: 94.126.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 22 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:63:c1:90:db:f1:e5:ea:94:93:87:cc:6b:fb:68:74:5b:b6:52:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a87cad5b710890a9528f166f4202393824e6b8
Validity
Not Before: Jul 25 14:56:29 2023 GMT
Not After : Jul 23 15:01:29 2024 GMT
Subject: CN=D9F52683F434E0A9B6D33B16773CCAAB37BCBEB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6c:0e:54:a6:08:4d:ce:bf:12:0c:5b:f8:85:
f9:43:22:57:2a:c3:f4:5f:2b:48:0f:f3:72:07:ed:
f5:88:ef:b2:6b:a2:e5:39:93:28:95:ba:81:7f:98:
87:86:2b:6f:09:90:1c:34:e6:89:0e:fd:3e:2f:9b:
82:c4:39:fb:ae:a7:47:10:c6:1c:3d:87:b1:eb:6d:
3d:fc:62:ac:af:89:e5:b9:de:10:7c:00:ab:bf:f5:
98:fa:da:80:b5:be:ee:08:6d:a8:3e:8e:7e:53:03:
f7:f1:56:9a:ad:d0:6a:07:24:cd:b9:4a:4e:5d:14:
3f:d4:3a:f8:a6:8e:47:cd:36:89:cb:13:f9:6e:16:
e2:7b:c4:40:13:78:9b:ad:86:ff:72:5d:bf:19:f9:
f9:26:65:af:99:06:17:de:21:c9:c6:00:ea:29:13:
f9:58:2d:4f:9e:71:42:7d:f7:8f:4c:b3:a3:32:db:
d8:82:f8:be:57:1e:7f:6d:84:d8:65:b4:b6:82:e2:
71:30:50:b7:f2:67:4e:77:36:ec:75:11:45:52:3b:
50:f5:0e:90:6d:bc:b4:37:bd:93:a3:ca:66:4d:05:
3c:d2:b9:1b:f3:e8:c8:6d:bb:06:bd:a5:f2:f7:e5:
9c:15:3c:5f:82:ce:ad:b1:7b:c2:eb:2a:e0:f1:88:
0f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:F5:26:83:F4:34:E0:A9:B6:D3:3B:16:77:3C:CA:AB:37:BC:BE:B8
X509v3 Authority Key Identifier:
keyid:98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/39342e3132362e3233362e302f32342d3234203d3e203438303730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.126.236.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:94:34:e4:b8:e5:db:f4:14:a9:5c:26:52:1c:60:b3:dd:1d:
24:cc:97:47:00:49:4c:0d:9b:b7:74:17:70:bf:c5:2a:5c:a4:
70:f6:9d:eb:03:8b:67:a2:cc:6d:50:9b:4f:22:5f:e6:b1:00:
4e:67:14:2d:d2:89:f5:42:3e:de:b4:22:de:2a:d1:68:81:79:
97:79:72:c0:67:46:08:85:6e:07:30:96:25:59:93:e1:64:03:
aa:0e:e1:25:3d:35:d5:eb:0a:e3:e9:d4:96:00:2c:14:03:d3:
2f:86:9f:aa:d4:24:be:3e:7d:23:04:26:b5:27:57:1d:82:c3:
38:78:42:44:80:04:3f:bd:c0:72:89:4d:b6:ba:9e:e3:69:e0:
cc:82:ca:f0:77:fb:74:7d:68:57:41:39:1f:76:c8:9a:41:06:
76:84:05:7b:f8:17:bb:dd:31:94:2e:a3:1a:93:3f:55:03:df:
94:96:81:d3:bf:d8:85:07:39:70:60:42:d8:6b:71:93:bf:c7:
54:b3:1f:66:7f:37:22:2b:c9:77:ab:e1:61:6e:6f:0c:d9:a5:
55:f8:5f:44:74:ba:aa:f2:8f:9d:4a:ad:4c:c2:0f:03:8a:6b:
7b:a2:2f:71:04:42:5b:73:9c:78:d4:de:30:ef:b0:ac:71:da:
b1:b4:83:35
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUCWPBkNvx5eqUk4fMa/todFu2UuUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOThhODdjYWQ1YjcxMDg5MGE5NTI4ZjE2NmY0MjAyMzkz
ODI0ZTZiODAeFw0yMzA3MjUxNDU2MjlaFw0yNDA3MjMxNTAxMjlaMDMxMTAvBgNV
BAMTKEQ5RjUyNjgzRjQzNEUwQTlCNkQzM0IxNjc3M0NDQUFCMzdCQ0JFQjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCibA5UpghNzr8SDFv4hflDIlcq
w/RfK0gP83IH7fWI77JrouU5kyiVuoF/mIeGK28JkBw05okO/T4vm4LEOfuup0cQ
xhw9h7HrbT38YqyvieW53hB8AKu/9Zj62oC1vu4Ibag+jn5TA/fxVpqt0GoHJM25
Sk5dFD/UOvimjkfNNonLE/luFuJ7xEATeJuthv9yXb8Z+fkmZa+ZBhfeIcnGAOop
E/lYLU+ecUJ9949Ms6My29iC+L5XHn9thNhltLaC4nEwULfyZ053Nux1EUVSO1D1
DpBtvLQ3vZOjymZNBTzSuRvz6Mhtuwa9pfL35ZwVPF+Czq2xe8LrKuDxiA+nAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU2fUmg/Q04Km20zsWdzzKqze8vrgwHwYDVR0j
BBgwFoAUmKh8rVtxCJCpUo8Wb0ICOTgk5rgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZGNlMTk2ZmUtNGIxYS00NmVhLTljOTUtNGFmMTI5NjRh
NDlkLzAvOThBODdDQUQ1QjcxMDg5MEE5NTI4RjE2NkY0MjAyMzkzODI0RTZCOC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL21LaDhyVnR4Q0pDcFVvOFdiMElDT1Rn
azVyZy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZGNlMTk2ZmUt
NGIxYS00NmVhLTljOTUtNGFmMTI5NjRhNDlkLzAvMzkzNDJlMzEzMjM2MmUzMjMz
MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzAzNzMwLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
Xn7sMA0GCSqGSIb3DQEBCwUAA4IBAQB8lDTkuOXb9BSpXCZSHGCz3R0kzJdHAElM
DZu3dBdwv8UqXKRw9p3rA4tnosxtUJtPIl/msQBOZxQt0on1Qj7etCLeKtFogXmX
eXLAZ0YIhW4HMJYlWZPhZAOqDuElPTXV6wrj6dSWACwUA9Mvhp+q1CS+Pn0jBCa1
J1cdgsM4eEJEgAQ/vcByiU22up7jaeDMgsrwd/t0fWhXQTkfdsiaQQZ2hAV7+Be7
3TGULqMakz9VA9+UloHTv9iFBzlwYELYa3GTv8dUsx9mfzciK8l3q+Fhbm8M2aVV
+F9EdLqq8o+dSq1Mwg8Dimt7oi9xBEJbc5x41N4w77CscdqxtIM1
-----END CERTIFICATE-----
Generated at Fri Jun 21 11:19:00 2024 by rpki-client on console-ams.rpki-client.org