Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136302e36362e302f32332d3234203d3e203437353833.roa
File: 3139332e3136302e36362e302f32332d3234203d3e203437353833.roa (raw, json)
Hash identifier: k5JMKMo9IBG1rLKGT8mVDlOXAlgxClZFr4dhts5heQs=
Subject key identifier: 49:4D:27:BE:42:67:CE:B7:41:34:B1:A7:B6:D2:3B:3C:B8:D6:EB:E9
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 617A94DC3F5E075FA61970B36461DDBFDFF6E08A
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136302e36362e302f32332d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:52:43 +0000
ROA not before: Mon 26 Feb 2024 08:47:43 +0000
ROA not after: Mon 24 Feb 2025 08:52:43 +0000
asID: 47583
IP address blocks: 193.160.66.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:7a:94:dc:3f:5e:07:5f:a6:19:70:b3:64:61:dd:bf:df:f6:e0:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Feb 26 08:47:43 2024 GMT
Not After : Feb 24 08:52:43 2025 GMT
Subject: CN=494D27BE4267CEB74134B1A7B6D23B3CB8D6EBE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:94:17:e5:a1:ca:73:59:bc:6a:40:75:3d:ca:
8f:c6:60:62:02:7a:36:d7:aa:6e:9c:43:fd:cb:be:
ca:6e:04:d8:be:6d:8a:80:f6:3d:de:c2:76:c8:4e:
9e:62:c4:fc:67:05:7a:26:69:07:da:ce:13:03:ad:
1c:e0:1b:0c:c5:82:d0:f2:62:eb:c3:8a:11:18:df:
70:59:68:36:f7:21:fb:ac:1b:f7:7f:92:5d:d9:e7:
4b:95:61:02:bd:ff:76:79:c1:cb:1d:9b:91:f4:59:
f9:8d:ee:f7:af:87:b0:0d:45:cd:e3:e1:4e:fa:e1:
2e:2f:16:8c:0b:1e:3a:a6:2b:e0:94:31:ba:f5:4e:
01:0f:c2:95:20:c0:55:af:bc:97:8f:a4:21:2e:77:
be:1b:57:8d:a8:c8:72:94:d1:d0:f4:20:6f:2b:ba:
bd:af:f2:81:49:c0:e1:f0:f3:8d:71:ee:78:43:0a:
f0:86:c4:42:f0:01:c5:cc:3d:b8:fe:a9:5e:eb:62:
20:b6:27:af:10:93:af:b3:8c:83:dc:6f:4e:3b:cb:
78:7f:4a:25:71:c3:60:22:b2:28:c5:68:42:db:f8:
20:93:8c:e9:24:a0:34:da:06:ef:54:51:41:1f:28:
4a:ff:bf:ff:a1:cb:53:b7:17:dc:6e:a6:28:bd:09:
88:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:4D:27:BE:42:67:CE:B7:41:34:B1:A7:B6:D2:3B:3C:B8:D6:EB:E9
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e3136302e36362e302f32332d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.66.0/23
Signature Algorithm: sha256WithRSAEncryption
80:3b:5b:40:6f:69:c0:b9:48:39:a3:22:df:3a:39:e8:a0:79:
9c:87:df:45:e7:d9:45:21:f1:57:b2:36:35:62:08:62:9a:6c:
a2:fe:fc:86:9a:9e:a0:77:b9:9e:32:b7:a2:ee:40:57:39:ae:
9c:ed:b7:3c:d7:cd:5e:7a:51:40:84:cb:2a:c0:31:0f:69:27:
0f:8e:f9:17:03:32:97:14:b5:2d:1d:88:b4:df:ba:4a:fb:80:
d3:93:49:3d:3c:5c:12:a5:43:89:fb:11:98:c8:da:38:1b:7b:
73:85:88:0c:8f:44:d3:97:b7:82:97:1f:8f:e2:1d:c7:a5:df:
04:76:f0:9a:bd:d1:e8:d1:e8:0e:2f:7b:1d:b6:ac:16:c0:46:
c8:f8:90:c4:88:1d:9c:cb:82:ad:e1:70:e4:72:37:d1:26:13:
f5:29:f9:5d:18:9b:97:f2:a1:c9:e4:a9:8e:d1:5a:39:2e:1f:
e9:96:4a:f2:a7:7d:14:52:1b:d3:5a:ec:23:b9:46:7a:85:eb:
78:4f:82:4c:f2:a9:b6:f0:3d:0c:cc:37:1c:53:01:21:ff:0a:
de:6c:9e:45:20:e2:63:de:aa:4e:ab:f7:a9:0b:cd:51:ab:5a:
a5:c5:8f:ca:24:bf:84:db:54:f0:79:ed:57:13:ae:90:ae:b5:
2e:1c:7a:75
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUYXqU3D9eB1+mGXCzZGHdv9/24IowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj
MjMxM2EzYTAeFw0yNDAyMjYwODQ3NDNaFw0yNTAyMjQwODUyNDNaMDMxMTAvBgNV
BAMTKDQ5NEQyN0JFNDI2N0NFQjc0MTM0QjFBN0I2RDIzQjNDQjhENkVCRTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwlBflocpzWbxqQHU9yo/GYGIC
ejbXqm6cQ/3LvspuBNi+bYqA9j3ewnbITp5ixPxnBXomaQfazhMDrRzgGwzFgtDy
YuvDihEY33BZaDb3IfusG/d/kl3Z50uVYQK9/3Z5wcsdm5H0WfmN7vevh7ANRc3j
4U764S4vFowLHjqmK+CUMbr1TgEPwpUgwFWvvJePpCEud74bV42oyHKU0dD0IG8r
ur2v8oFJwOHw841x7nhDCvCGxELwAcXMPbj+qV7rYiC2J68Qk6+zjIPcb047y3h/
SiVxw2AisijFaELb+CCTjOkkoDTaBu9UUUEfKEr/v/+hy1O3F9xupii9CYj1AgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUSU0nvkJnzrdBNLGnttI7PLjW6+kwHwYDVR0j
BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J
eE9qby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTMzMmUzMTM2MzAyZTM2
MzYyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNDM3MzUzODMzLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
waBCMA0GCSqGSIb3DQEBCwUAA4IBAQCAO1tAb2nAuUg5oyLfOjnooHmch99F59lF
IfFXsjY1Yghimmyi/vyGmp6gd7meMrei7kBXOa6c7bc8181eelFAhMsqwDEPaScP
jvkXAzKXFLUtHYi037pK+4DTk0k9PFwSpUOJ+xGYyNo4G3tzhYgMj0TTl7eClx+P
4h3Hpd8EdvCavdHo0egOL3sdtqwWwEbI+JDEiB2cy4Kt4XDkcjfRJhP1KfldGJuX
8qHJ5KmO0Vo5Lh/plkryp30UUhvTWuwjuUZ6het4T4JM8qm28D0MzDccUwEh/wre
bJ5FIOJj3qpOq/epC81Rq1qlxY/KJL+E21Twee1XE66QrrUuHHp1
-----END CERTIFICATE-----
Generated at Sat Jun 1 07:23:16 2024 by rpki-client on console-ams.rpki-client.org