Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/38322e3134302e3137382e302f32342d3234203d3e203135343139.roa
File: 38322e3134302e3137382e302f32342d3234203d3e203135343139.roa (raw, json)
Hash identifier: SxwKmFdaPow3guK7NvONFCZ6G0PoorcTxWmZaoSvQiM=
Subject key identifier: 62:A7:E6:A6:D2:39:17:86:8F:66:2E:94:32:32:43:86:79:48:6F:03
Certificate issuer: /CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae
Certificate serial: 79127C66AEC53C6F86C51225E94B02087DDE8BA6
Authority key identifier: 9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/38322e3134302e3137382e302f32342d3234203d3e203135343139.roa
Signing time: Fri 07 Jun 2024 09:01:54 +0000
ROA not before: Fri 07 Jun 2024 08:56:54 +0000
ROA not after: Fri 06 Jun 2025 09:01:54 +0000
asID: 15419
IP address blocks: 82.140.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:12:7c:66:ae:c5:3c:6f:86:c5:12:25:e9:4b:02:08:7d:de:8b:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae
Validity
Not Before: Jun 7 08:56:54 2024 GMT
Not After : Jun 6 09:01:54 2025 GMT
Subject: CN=62A7E6A6D23917868F662E943232438679486F03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d6:cc:bd:bf:ec:3d:1d:5d:c9:d8:bc:fd:fc:
2e:85:dc:7b:0c:d3:72:ad:55:72:49:0f:88:f9:8b:
76:18:78:e6:b4:d2:fa:45:7f:0c:75:8b:9e:1e:53:
02:53:99:78:35:84:b4:d2:d4:ce:b1:63:e6:21:ac:
ac:ab:15:94:60:2b:e7:94:9c:dd:41:7d:f6:ce:e2:
2a:b8:85:ae:0c:fa:e8:f5:64:5f:05:80:5c:97:9e:
a4:9b:18:95:96:aa:29:90:f8:c4:df:82:5d:ab:1f:
c9:83:e9:eb:63:9b:67:c3:75:49:79:8a:e7:fc:2a:
78:67:4a:65:06:69:3d:ac:a1:86:6d:3b:fa:97:a6:
4f:b5:0e:0f:14:62:9e:d7:a6:04:31:03:9e:ce:58:
11:12:ff:26:75:82:5d:0c:50:46:30:9e:f5:4e:23:
9c:cd:ab:ec:46:d6:bb:2a:08:c2:28:7f:35:49:e8:
0a:b1:bd:2a:30:ea:91:22:d3:67:72:d8:17:fd:6f:
07:0a:e8:1e:4d:cd:47:dd:cd:e2:0a:d5:4e:0d:13:
2d:8e:59:ee:db:b1:dd:5e:2d:ad:14:cc:a5:ed:63:
e9:5c:75:3f:b7:8c:0c:d5:15:11:28:11:e7:0d:cb:
93:3e:df:7a:3a:09:3a:a8:c9:69:e9:e4:5e:79:b8:
60:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:A7:E6:A6:D2:39:17:86:8F:66:2E:94:32:32:43:86:79:48:6F:03
X509v3 Authority Key Identifier:
keyid:9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/38322e3134302e3137382e302f32342d3234203d3e203135343139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.178.0/24
Signature Algorithm: sha256WithRSAEncryption
94:fb:a8:10:68:1f:28:55:d1:33:db:6a:03:fb:f1:7a:bc:03:
46:f4:4f:7b:6a:7f:1c:4f:71:18:62:a4:53:6f:cf:3b:0e:d2:
73:ba:76:d8:57:f8:10:9f:7d:ed:89:06:25:ba:d6:a5:c4:62:
9f:d8:7a:bd:07:46:0a:71:1e:df:e5:b6:71:3f:2f:6e:11:f3:
57:48:33:fe:7f:a9:09:65:f3:94:87:ed:79:d3:52:8d:91:f4:
63:9f:ff:84:37:2d:00:7d:c2:b0:86:96:ab:c6:21:33:a9:64:
e8:e6:79:e4:2e:30:07:69:c1:34:43:8e:52:36:b6:40:29:25:
d3:cc:86:c3:f5:2f:e1:32:dc:c8:a8:68:a7:90:d1:41:d7:dd:
fe:1e:4c:e5:7f:c3:b5:9c:46:58:aa:61:90:3b:f7:c9:08:f6:
80:03:61:fe:f0:a5:54:6f:f9:2b:0b:d5:fe:0e:fa:1e:b2:f5:
0a:67:9e:cb:e5:63:96:46:4b:2c:40:3a:f2:9f:f0:46:42:45:
f6:30:2a:19:6c:ca:b9:55:05:37:74:0b:f5:bd:26:be:25:51:
64:e8:32:d0:07:67:01:9a:6d:c8:fb:4e:19:ff:b2:ea:07:a4:
96:07:43:05:38:d6:ef:62:65:fb:27:26:ee:a9:c4:12:d2:32:
47:65:e3:8a
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUeRJ8Zq7FPG+GxRIl6UsCCH3ei6YwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWRmODU5OTdiMWI5YjM1OGUxYzQzZjM2NzY1YWEwYTRh
MDIxNDRhZTAeFw0yNDA2MDcwODU2NTRaFw0yNTA2MDYwOTAxNTRaMDMxMTAvBgNV
BAMTKDYyQTdFNkE2RDIzOTE3ODY4RjY2MkU5NDMyMzI0Mzg2Nzk0ODZGMDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp1sy9v+w9HV3J2Lz9/C6F3HsM
03KtVXJJD4j5i3YYeOa00vpFfwx1i54eUwJTmXg1hLTS1M6xY+YhrKyrFZRgK+eU
nN1BffbO4iq4ha4M+uj1ZF8FgFyXnqSbGJWWqimQ+MTfgl2rH8mD6etjm2fDdUl5
iuf8KnhnSmUGaT2soYZtO/qXpk+1Dg8UYp7XpgQxA57OWBES/yZ1gl0MUEYwnvVO
I5zNq+xG1rsqCMIofzVJ6AqxvSow6pEi02dy2Bf9bwcK6B5NzUfdzeIK1U4NEy2O
We7bsd1eLa0UzKXtY+lcdT+3jAzVFREoEecNy5M+33o6CTqoyWnp5F55uGCTAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUYqfmptI5F4aPZi6UMjJDhnlIbwMwHwYDVR0j
BBgwFoAUnfhZl7G5s1jhxD82dlqgpKAhRK4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDAyZTBiYTMtZmU2MC00NWIxLTkxNjAtODY4YTJmOGE0
M2IxLzMvOURGODU5OTdCMUI5QjM1OEUxQzQzRjM2NzY1QUEwQTRBMDIxNDRBRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25maFpsN0c1czFqaHhEODJkbHFncEtB
aFJLNC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDAyZTBiYTMt
ZmU2MC00NWIxLTkxNjAtODY4YTJmOGE0M2IxLzMvMzgzMjJlMzEzNDMwMmUzMTM3
MzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM1MzQzMTM5LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
UoyyMA0GCSqGSIb3DQEBCwUAA4IBAQCU+6gQaB8oVdEz22oD+/F6vANG9E97an8c
T3EYYqRTb887DtJzunbYV/gQn33tiQYlutalxGKf2Hq9B0YKcR7f5bZxPy9uEfNX
SDP+f6kJZfOUh+1501KNkfRjn/+ENy0AfcKwhparxiEzqWTo5nnkLjAHacE0Q45S
NrZAKSXTzIbD9S/hMtzIqGinkNFB193+Hkzlf8O1nEZYqmGQO/fJCPaAA2H+8KVU
b/krC9X+DvoesvUKZ57L5WOWRkssQDryn/BGQkX2MCoZbMq5VQU3dAv1vSa+JVFk
6DLQB2cBmm3I+04Z/7LqB6SWB0MFONbvYmX7JybuqcQS0jJHZeOK
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:15 2024 by rpki-client on console-ams.rpki-client.org