Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/38392e34322e3131302e302f32342d3234203d3e203631333137.roa
File: 38392e34322e3131302e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: og9IMFIR7e1wCR4cGfBJh26LPnqizy0C5hWdDRyqsSg=
Subject key identifier: 0A:2F:3F:9D:52:BF:00:2E:29:1B:15:4C:96:1B:F6:74:5D:FE:0B:B7
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 760C3334F3684F210FD0A4BA1EA9CEEC7D32ED52
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/38392e34322e3131302e302f32342d3234203d3e203631333137.roa
Signing time: Wed 23 Aug 2023 11:20:19 +0000
ROA not before: Wed 23 Aug 2023 11:15:19 +0000
ROA not after: Wed 21 Aug 2024 11:20:19 +0000
asID: 61317
IP address blocks: 89.42.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:0c:33:34:f3:68:4f:21:0f:d0:a4:ba:1e:a9:ce:ec:7d:32:ed:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Aug 23 11:15:19 2023 GMT
Not After : Aug 21 11:20:19 2024 GMT
Subject: CN=0A2F3F9D52BF002E291B154C961BF6745DFE0BB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9b:15:0b:5b:38:d1:6b:fb:d1:e9:80:cc:6f:
3e:ab:fd:47:73:b0:2b:46:14:fe:a2:a4:a0:8d:22:
d8:8f:0b:f4:66:4e:53:33:4d:f2:ab:ca:35:70:29:
b2:bc:65:bd:a0:56:74:35:5c:85:cf:18:3a:fe:19:
f4:f6:ec:7c:f8:e2:a5:26:7d:7e:bc:e7:4c:ae:2d:
9a:0a:0f:d6:23:0b:c3:e9:53:9b:b8:6f:9e:02:ce:
ff:44:a0:73:3e:67:df:d8:87:03:d7:88:31:29:d0:
72:3b:e2:c7:aa:db:59:27:6d:23:5d:ac:9c:cc:9b:
53:fe:2d:d8:a0:7f:c2:49:76:c5:be:f0:c6:db:69:
1e:32:87:59:b6:52:d7:4b:41:16:a8:93:6f:8f:1b:
c5:5f:0a:57:cf:64:c1:8a:5f:95:0d:46:fc:dd:7d:
91:0b:96:d6:26:70:ae:94:96:42:17:d0:49:d5:34:
3a:a3:63:61:22:39:46:9b:24:00:3a:f1:34:4d:af:
d3:96:22:a4:2b:a3:b5:65:8d:dc:48:80:c6:37:31:
90:77:97:84:b6:7d:5c:00:9b:9c:ce:e6:bd:50:96:
bd:1f:95:45:76:39:b4:c7:27:da:8a:8b:84:0d:4f:
6b:c8:5c:36:1b:7f:e7:fd:6b:84:57:98:42:66:59:
29:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:2F:3F:9D:52:BF:00:2E:29:1B:15:4C:96:1B:F6:74:5D:FE:0B:B7
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/38392e34322e3131302e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.110.0/24
Signature Algorithm: sha256WithRSAEncryption
08:4d:2d:7f:64:ff:eb:82:d4:e4:c6:2d:0f:64:96:06:4e:99:
07:1b:d4:cf:03:08:e5:d0:71:02:bf:25:60:7d:77:85:f6:24:
34:41:f1:49:7a:bd:b3:ab:60:e5:48:dc:cb:7c:c7:39:e9:f0:
81:08:17:3c:1e:78:66:40:1a:c5:30:ee:bb:6c:dd:74:52:0c:
42:72:5b:a8:86:0d:8b:4d:77:ba:3d:d4:88:77:7a:48:6e:f0:
d4:29:4a:8b:d1:8e:1a:a6:f6:48:0b:41:a4:51:e6:90:e9:71:
8d:f2:9f:ed:bd:8b:a9:5d:ff:c4:99:2e:22:b7:bc:45:8d:f5:
f0:41:6a:a6:fd:09:92:04:c0:d7:fe:45:47:f6:29:34:cf:71:
9e:27:be:70:21:bc:69:2f:f6:25:cd:93:cd:a5:0c:b8:52:7c:
3b:28:d6:55:f9:92:94:6c:91:1f:fa:b1:6d:24:71:93:af:45:
c2:b1:4c:27:e7:0f:cb:de:53:4f:fa:19:28:27:fe:5b:a7:2f:
d5:0f:d4:33:3e:72:3c:80:14:c2:85:25:9c:6f:3d:1e:46:84:
b3:4e:c8:e4:6d:65:20:89:d9:36:97:4e:0e:b8:cc:1b:7b:73:
25:02:55:48:57:9a:2f:0e:37:db:02:01:f8:8a:b3:3b:51:3b:
a2:01:37:8c
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUdgwzNPNoTyEP0KS6HqnO7H0y7VIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZWQ5ZWRiMmExNTg3MTc4NWZiYWUzOGUyM2MzODgyMGRi
ZmEyY2NhNDAeFw0yMzA4MjMxMTE1MTlaFw0yNDA4MjExMTIwMTlaMDMxMTAvBgNV
BAMTKDBBMkYzRjlENTJCRjAwMkUyOTFCMTU0Qzk2MUJGNjc0NURGRTBCQjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClmxULWzjRa/vR6YDMbz6r/Udz
sCtGFP6ipKCNItiPC/RmTlMzTfKryjVwKbK8Zb2gVnQ1XIXPGDr+GfT27Hz44qUm
fX6850yuLZoKD9YjC8PpU5u4b54Czv9EoHM+Z9/YhwPXiDEp0HI74seq21knbSNd
rJzMm1P+Ldigf8JJdsW+8MbbaR4yh1m2UtdLQRaok2+PG8VfClfPZMGKX5UNRvzd
fZELltYmcK6UlkIX0EnVNDqjY2EiOUabJAA68TRNr9OWIqQro7VljdxIgMY3MZB3
l4S2fVwAm5zO5r1Qlr0flUV2ObTHJ9qKi4QNT2vIXDYbf+f9a4RXmEJmWSlLAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUCi8/nVK/AC4pGxVMlhv2dF3+C7cwHwYDVR0j
BBgwFoAU7Z7bKhWHF4X7rjjiPDiCDb+izKQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZWEwZGU5N2YtN2VlOC00Y2UwLWIwNDUtZWZhYzhjMjQz
Yzc5LzAvRUQ5RURCMkExNTg3MTc4NUZCQUUzOEUyM0MzODgyMERCRkEyQ0NBNC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzdaN2JLaFdIRjRYN3JqamlQRGlDRGIt
aXpLUS5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZWEwZGU5N2Yt
N2VlOC00Y2UwLWIwNDUtZWZhYzhjMjQzYzc5LzAvMzgzOTJlMzQzMjJlMzEzMTMw
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMTMzMzEzNy5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFkq
bjANBgkqhkiG9w0BAQsFAAOCAQEACE0tf2T/64LU5MYtD2SWBk6ZBxvUzwMI5dBx
Ar8lYH13hfYkNEHxSXq9s6tg5Ujcy3zHOenwgQgXPB54ZkAaxTDuu2zddFIMQnJb
qIYNi013uj3UiHd6SG7w1ClKi9GOGqb2SAtBpFHmkOlxjfKf7b2LqV3/xJkuIre8
RY318EFqpv0JkgTA1/5FR/YpNM9xnie+cCG8aS/2Jc2TzaUMuFJ8OyjWVfmSlGyR
H/qxbSRxk69FwrFMJ+cPy95TT/oZKCf+W6cv1Q/UMz5yPIAUwoUlnG89HkaEs07I
5G1lIInZNpdODrjMG3tzJQJVSFeaLw432wIB+IqzO1E7ogE3jA==
-----END CERTIFICATE-----
Generated at Sat May 4 12:15:38 2024 by rpki-client on console-fra.rpki-client.org