Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37352e302f32342d3234203d3e2037303138.roa
File: 3231332e3133392e37352e302f32342d3234203d3e2037303138.roa (raw, json)
Hash identifier: COGp8d7KKgCdyyyCB2No7YIZlVSiU2X3WkC9BRBYufs=
Subject key identifier: 72:72:F7:1D:44:26:C2:E1:3C:75:FC:B5:9F:B0:10:96:0E:CA:C2:B4
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 2BF1D9CFE7CC21275D8167D9D6C1F781D985EE7A
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37352e302f32342d3234203d3e2037303138.roa
Signing time: Thu 29 Feb 2024 03:17:53 +0000
ROA not before: Thu 29 Feb 2024 03:12:53 +0000
ROA not after: Thu 27 Feb 2025 03:17:53 +0000
asID: 7018
IP address blocks: 213.139.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:f1:d9:cf:e7:cc:21:27:5d:81:67:d9:d6:c1:f7:81:d9:85:ee:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Feb 29 03:12:53 2024 GMT
Not After : Feb 27 03:17:53 2025 GMT
Subject: CN=7272F71D4426C2E13C75FCB59FB010960ECAC2B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:19:59:f2:ad:07:f3:53:1c:f7:dd:b0:08:bb:
d8:0b:85:57:63:68:13:8b:aa:99:22:10:de:74:4f:
fb:0a:0f:ae:86:d4:fe:d0:e8:26:de:87:8b:3d:4e:
ec:5a:6f:2d:8a:5d:72:2f:cf:31:49:f8:da:8d:e8:
4d:a1:b6:d3:4a:55:0a:54:97:04:3f:75:6c:20:5b:
12:06:af:f9:74:79:95:56:82:80:d0:ca:ad:ea:2b:
42:e7:67:08:b5:ed:bb:8b:9c:91:cd:6e:35:2e:ab:
df:1f:32:d9:65:f1:5f:b8:45:8f:9c:36:15:86:26:
7b:22:ff:f0:72:48:4d:70:56:c3:bb:5a:eb:fa:4b:
23:15:ca:0b:68:5d:d8:95:88:98:b3:4b:25:29:ce:
ba:da:87:c7:8b:67:b2:ed:62:07:16:93:96:82:74:
d0:c9:f6:ed:9e:c2:a7:8f:d1:8b:87:92:e8:0c:e4:
60:3c:86:cb:74:d6:8c:63:7f:35:cc:d1:ae:ed:60:
da:70:1c:58:bd:58:b3:a5:0a:cb:9a:42:ca:2b:ca:
48:5e:0e:95:ad:29:df:52:4b:84:a2:5c:52:f2:2f:
62:18:e4:d0:d5:fc:1a:df:2e:62:3f:86:9f:5f:5a:
ee:51:53:df:36:ad:27:67:27:79:66:36:24:01:89:
b1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:72:F7:1D:44:26:C2:E1:3C:75:FC:B5:9F:B0:10:96:0E:CA:C2:B4
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37352e302f32342d3234203d3e2037303138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.75.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:1e:93:47:a8:1e:e0:bd:9f:b0:b8:f6:fe:04:c3:85:b0:fc:
99:eb:79:bf:99:4e:e1:b9:d7:02:8f:a7:e2:56:ec:13:4c:60:
ad:75:4d:82:d2:42:d0:7c:33:10:a8:29:7f:21:39:08:59:8b:
14:d8:98:ab:5b:a5:bb:21:54:c9:9c:e2:d2:23:f1:dc:d0:80:
74:e3:c4:6d:1e:d9:c3:e5:e0:d5:95:0d:d1:18:dd:7c:36:3b:
6a:45:7b:50:4b:55:b1:aa:2c:ed:81:59:83:a8:36:62:64:d0:
dd:68:df:a6:06:7a:b4:5a:82:21:e0:bc:02:f4:82:fa:7b:6e:
12:cc:c2:8b:aa:3a:04:0c:68:2a:f5:1f:77:97:42:f9:29:bb:
a4:7d:73:79:22:c3:dd:90:00:9e:a6:bd:d7:32:9d:72:9d:84:
18:8a:2f:8c:0c:3c:2f:e9:4e:4e:aa:e7:02:2c:e1:18:e1:ac:
5b:1f:e3:bb:e7:b3:b4:f2:72:45:a2:26:98:4c:19:e3:1c:51:
ee:9f:9e:00:bb:c7:fe:8a:3b:d8:f2:d3:56:90:67:bf:4a:a1:
47:33:b6:2c:82:a4:d5:67:e9:f9:94:8a:82:ae:22:9a:b7:23:
50:8d:03:2e:04:63:3d:46:93:5d:c6:2a:84:8f:46:00:5e:8c:
81:19:da:a4
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUK/HZz+fMISddgWfZ1sH3gdmF7nowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjY4M2YyZWI1MGM1OTk5YTc3NDU2ZTg4MjY4MzE2MDlk
NDhjN2QzZTAeFw0yNDAyMjkwMzEyNTNaFw0yNTAyMjcwMzE3NTNaMDMxMTAvBgNV
BAMTKDcyNzJGNzFENDQyNkMyRTEzQzc1RkNCNTlGQjAxMDk2MEVDQUMyQjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3GVnyrQfzUxz33bAIu9gLhVdj
aBOLqpkiEN50T/sKD66G1P7Q6Cbeh4s9Tuxaby2KXXIvzzFJ+NqN6E2httNKVQpU
lwQ/dWwgWxIGr/l0eZVWgoDQyq3qK0LnZwi17buLnJHNbjUuq98fMtll8V+4RY+c
NhWGJnsi//BySE1wVsO7Wuv6SyMVygtoXdiViJizSyUpzrrah8eLZ7LtYgcWk5aC
dNDJ9u2ewqeP0YuHkugM5GA8hst01oxjfzXM0a7tYNpwHFi9WLOlCsuaQsorykhe
DpWtKd9SS4SiXFLyL2IY5NDV/BrfLmI/hp9fWu5RU982rSdnJ3lmNiQBibFvAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUcnL3HUQmwuE8dfy1n7AQlg7KwrQwHwYDVR0j
BBgwFoAUtoPy61DFmZp3RW6IJoMWCdSMfT4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmItYjY2MC00ODlkLTllOWYtOTQwMmU5ZTJj
MmUyLzAvQjY4M0YyRUI1MEM1OTk5QTc3NDU2RTg4MjY4MzE2MDlENDhDN0QzRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3RvUHk2MURGbVpwM1JXNklKb01XQ2RT
TWZUNC5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmIt
YjY2MC00ODlkLTllOWYtOTQwMmU5ZTJjMmUyLzAvMzIzMTMzMmUzMTMzMzkyZTM3
MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNzMwMzEzOC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANWL
SzANBgkqhkiG9w0BAQsFAAOCAQEAfR6TR6ge4L2fsLj2/gTDhbD8met5v5lO4bnX
Ao+n4lbsE0xgrXVNgtJC0HwzEKgpfyE5CFmLFNiYq1uluyFUyZzi0iPx3NCAdOPE
bR7Zw+Xg1ZUN0RjdfDY7akV7UEtVsaos7YFZg6g2YmTQ3WjfpgZ6tFqCIeC8AvSC
+ntuEszCi6o6BAxoKvUfd5dC+Sm7pH1zeSLD3ZAAnqa91zKdcp2EGIovjAw8L+lO
TqrnAizhGOGsWx/ju+eztPJyRaImmEwZ4xxR7p+eALvH/oo72PLTVpBnv0qhRzO2
LIKk1Wfp+ZSKgq4imrcjUI0DLgRjPUaTXcYqhI9GAF6MgRnapA==
-----END CERTIFICATE-----
Generated at Sat May 4 03:15:29 2024 by rpki-client on console-fra.rpki-client.org