Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/39312e3139302e3135372e302f32342d3234203d3e20323130383330.roa
File: 39312e3139302e3135372e302f32342d3234203d3e20323130383330.roa (raw, json)
Hash identifier: LHHDMQAiPEKdKz+17Sj/aubO3T0fJoOtFfvF63ozlF8=
Subject key identifier: 02:1C:82:8E:55:B1:2A:16:11:E7:DE:A0:EA:2E:A5:3F:EC:E7:8F:37
Certificate issuer: /CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Certificate serial: 1E57F3EEE93C8A48BD9A4597820AAB7D27A35F81
Authority key identifier: 8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/39312e3139302e3135372e302f32342d3234203d3e20323130383330.roa
Signing time: Thu 18 Jul 2024 12:04:17 +0000
ROA not before: Thu 18 Jul 2024 11:59:17 +0000
ROA not after: Thu 17 Jul 2025 12:04:17 +0000
asID: 210830
IP address blocks: 91.190.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl
rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft
rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:57:f3:ee:e9:3c:8a:48:bd:9a:45:97:82:0a:ab:7d:27:a3:5f:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Validity
Not Before: Jul 18 11:59:17 2024 GMT
Not After : Jul 17 12:04:17 2025 GMT
Subject: CN=021C828E55B12A1611E7DEA0EA2EA53FECE78F37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b1:78:d6:76:9f:b0:4f:8a:0f:d7:28:8a:11:
80:3b:0e:ce:52:cd:46:c8:44:e9:ef:a4:d0:59:95:
f0:f5:f8:92:67:32:fd:5e:95:b3:a6:b1:47:a3:66:
ba:ce:3c:17:f4:14:79:61:1b:35:33:65:7f:14:ed:
ea:a0:5e:1e:c6:db:d9:2e:8f:4f:27:db:c7:ce:d4:
13:fe:d2:4c:e4:45:97:76:f7:d5:ad:3b:30:5b:dc:
2e:a5:98:b1:4d:88:2d:3d:34:7f:f5:59:0c:82:d5:
1c:d9:69:16:db:db:41:94:b6:0f:c2:dd:68:a1:54:
69:fe:e9:ae:e5:87:46:d6:94:aa:3f:2f:07:50:e4:
92:00:89:d5:fb:b0:65:55:74:e7:ae:5a:de:e9:70:
c9:94:12:af:db:72:45:4d:92:b4:c7:4f:30:91:3e:
c7:3e:c2:64:6d:d5:31:4a:20:a4:d5:f6:18:12:91:
6f:66:eb:89:80:3a:53:6c:8b:13:5f:06:1c:a8:23:
ac:34:d1:1f:91:b3:6b:bf:2b:b6:69:e6:1d:a3:dc:
a9:16:b2:f3:06:71:0a:74:e9:66:99:f6:6c:fc:29:
b2:7e:2e:8f:f8:63:6f:f5:c9:ef:d0:04:95:dd:a6:
d4:7c:ed:13:80:f0:c1:33:a1:02:ca:dc:5c:52:27:
d4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:1C:82:8E:55:B1:2A:16:11:E7:DE:A0:EA:2E:A5:3F:EC:E7:8F:37
X509v3 Authority Key Identifier:
keyid:8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/39312e3139302e3135372e302f32342d3234203d3e20323130383330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.190.157.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:0c:b1:d4:93:61:67:91:21:88:6f:e5:c3:91:7b:f7:02:6a:
66:df:e9:eb:b3:4d:db:75:04:b6:b4:06:53:f9:44:05:03:87:
53:32:2a:e1:dc:8b:44:a9:fe:51:72:5a:b4:70:78:99:a7:e5:
f5:ea:e4:20:26:99:a9:69:ba:6d:c7:da:a4:44:a6:5e:b3:a4:
cf:20:ff:cd:ee:78:23:5d:26:af:4b:35:ce:4e:a8:a8:3d:48:
db:0d:1d:f8:c1:bd:9a:4f:ba:18:3f:73:65:01:40:8c:75:cd:
3d:10:f3:53:0a:55:00:42:dc:73:d8:1d:e3:a0:17:7e:87:03:
6e:35:67:6b:fa:7e:17:26:85:27:fb:7e:a5:66:b6:d0:b5:20:
26:a2:6a:c8:0c:f7:13:7c:2f:5b:78:75:4f:2d:62:3d:84:93:
7e:e6:2a:10:20:31:d2:7a:98:36:9c:ef:65:d0:a4:16:00:d0:
88:47:25:e0:a7:82:14:a6:5e:56:1d:41:e9:ad:4f:6b:0e:bb:
14:b8:1a:df:57:7c:72:d1:48:02:bf:e9:a0:da:2b:be:7f:bb:
2d:1b:93:cd:0f:46:3e:bb:0c:90:d8:68:ea:98:24:b6:cf:77:
f3:45:c8:87:1e:42:57:4c:44:b2:a4:9c:fb:cf:a3:f3:64:f9:
13:27:06:95
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUHlfz7uk8iki9mkWXggqrfSejX4EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGMxMmI0MjczODMyYjQxNTZmZTAwOTJmNmFlN2U1YjNj
ZTIzYWQ4YjAeFw0yNDA3MTgxMTU5MTdaFw0yNTA3MTcxMjA0MTdaMDMxMTAvBgNV
BAMTKDAyMUM4MjhFNTVCMTJBMTYxMUU3REVBMEVBMkVBNTNGRUNFNzhGMzcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOsXjWdp+wT4oP1yiKEYA7Ds5S
zUbIROnvpNBZlfD1+JJnMv1elbOmsUejZrrOPBf0FHlhGzUzZX8U7eqgXh7G29ku
j08n28fO1BP+0kzkRZd299WtOzBb3C6lmLFNiC09NH/1WQyC1RzZaRbb20GUtg/C
3WihVGn+6a7lh0bWlKo/LwdQ5JIAidX7sGVVdOeuWt7pcMmUEq/bckVNkrTHTzCR
Psc+wmRt1TFKIKTV9hgSkW9m64mAOlNsixNfBhyoI6w00R+Rs2u/K7Zp5h2j3KkW
svMGcQp06WaZ9mz8KbJ+Lo/4Y2/1ye/QBJXdptR87ROA8MEzoQLK3FxSJ9RjAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUAhyCjlWxKhYR596g6i6lP+znjzcwHwYDVR0j
BBgwFoAUjBK0JzgytBVv4Akvaufls84jrYswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvOGJmZDY4ODItZDZiMy00YWE4LWJjMGEtNzExZDY4YmQx
OThiLzAvOEMxMkI0MjczODMyQjQxNTZGRTAwOTJGNkFFN0U1QjNDRTIzQUQ4Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2pCSzBKemd5dEJWdjRBa3ZhdWZsczg0
anJZcy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGJmZDY4ODIt
ZDZiMy00YWE4LWJjMGEtNzExZDY4YmQxOThiLzAvMzkzMTJlMzEzOTMwMmUzMTM1
MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMxMzAzODMzMzAucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BABbvp0wDQYJKoZIhvcNAQELBQADggEBAJ0MsdSTYWeRIYhv5cORe/cCambf6euz
Tdt1BLa0BlP5RAUDh1MyKuHci0Sp/lFyWrRweJmn5fXq5CAmmalpum3H2qREpl6z
pM8g/83ueCNdJq9LNc5OqKg9SNsNHfjBvZpPuhg/c2UBQIx1zT0Q81MKVQBC3HPY
HeOgF36HA241Z2v6fhcmhSf7fqVmttC1ICaiasgM9xN8L1t4dU8tYj2Ek37mKhAg
MdJ6mDac72XQpBYA0IhHJeCnghSmXlYdQemtT2sOuxS4Gt9XfHLRSAK/6aDaK75/
uy0bk80PRj67DJDYaOqYJLbPd/NFyIceQldMRLKknPvPo/Nk+RMnBpU=
-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:13 2024 by rpki-client on console-fra.rpki-client.org