Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37392e302f32342d3234203d3e2036303739.roa
File: 3231332e3133392e37392e302f32342d3234203d3e2036303739.roa (raw, json)
Hash identifier: HhOOQwX7m6iytgoMVxNbY1GI7gtWWU+7Uxm93RErcio=
Subject key identifier: 68:2E:72:68:CF:1B:64:6B:EF:82:88:0E:F0:1E:3B:3E:6B:D0:5C:8B
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 3926B39B323D19A8D497DC27FE727A621E119B52
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37392e302f32342d3234203d3e2036303739.roa
Signing time: Wed 14 Feb 2024 13:30:25 +0000
ROA not before: Wed 14 Feb 2024 13:25:25 +0000
ROA not after: Wed 12 Feb 2025 13:30:25 +0000
asID: 6079
IP address blocks: 213.139.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:26:b3:9b:32:3d:19:a8:d4:97:dc:27:fe:72:7a:62:1e:11:9b:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Feb 14 13:25:25 2024 GMT
Not After : Feb 12 13:30:25 2025 GMT
Subject: CN=682E7268CF1B646BEF82880EF01E3B3E6BD05C8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:38:d2:15:27:eb:a5:ec:dd:13:1a:aa:c7:ab:
ed:30:50:af:c6:2c:a8:25:c0:2e:b9:f7:e1:b9:93:
37:de:62:db:39:07:3c:e9:16:7f:d9:2c:b1:cf:a7:
fb:73:49:43:41:ae:0a:1f:54:c5:20:01:45:1e:aa:
fa:1b:8f:58:43:fd:0b:5e:77:d6:9b:6d:f7:85:3a:
0b:e1:1c:5e:86:74:84:6a:38:1a:d5:c8:0c:57:f6:
97:41:a8:bf:13:b3:88:72:49:b8:d9:75:55:66:de:
f3:3e:36:a8:ee:0a:8b:c9:9f:84:d5:70:5d:05:be:
9d:47:8a:ca:9f:85:90:13:bf:35:fe:bf:86:29:37:
e2:f7:00:8f:d8:b3:98:c3:7b:06:69:7b:0e:3c:e6:
5f:b8:ca:34:54:a3:62:60:8c:3a:61:66:23:9b:e2:
1e:5b:1b:43:e0:66:1d:97:ca:56:2f:6f:e0:11:89:
b9:8b:46:24:d9:01:aa:17:d1:71:52:e3:c4:f6:38:
0b:e1:4c:02:61:9c:09:cb:c8:03:56:af:90:c4:45:
4c:99:3f:47:ae:32:fc:54:13:c1:d3:4e:1c:0a:1d:
09:83:85:46:ef:28:39:b2:9c:92:a0:6f:0b:82:e7:
aa:74:fd:85:71:f6:e6:7d:25:c8:84:bf:a2:e1:17:
02:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:2E:72:68:CF:1B:64:6B:EF:82:88:0E:F0:1E:3B:3E:6B:D0:5C:8B
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37392e302f32342d3234203d3e2036303739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.79.0/24
Signature Algorithm: sha256WithRSAEncryption
89:84:58:16:c5:1d:3a:02:b9:00:bd:c4:d0:81:87:7b:5e:ce:
2e:a9:7c:27:c5:01:57:a1:bb:a3:8b:3d:70:a9:bc:df:fb:b2:
f8:7c:28:fd:02:ef:ba:98:db:a9:61:2d:d2:b5:e1:df:2d:35:
fb:1f:59:b9:73:32:a7:70:a6:3a:dc:ad:3a:f7:07:e8:74:3d:
c8:af:a7:f7:4d:80:1b:a8:ad:12:70:3b:9d:6c:85:6a:82:8a:
93:11:bb:63:52:5c:44:f6:be:cb:60:90:04:cf:56:d9:62:ea:
fa:38:1e:8f:f7:58:d6:7e:70:f2:ff:c2:18:31:37:17:9e:56:
e8:45:10:d5:c3:9d:ea:be:d0:ca:31:b1:5a:d1:31:4a:e8:2e:
db:ac:98:04:a8:d3:7a:d6:f8:75:01:14:2e:43:ec:84:f6:03:
e6:84:3a:04:4c:5c:83:84:f1:e5:a8:17:23:63:5d:a5:30:0a:
78:65:b5:83:18:33:3e:00:2c:01:59:4f:ab:1f:bd:d0:f5:5c:
8a:3e:21:6e:b2:93:fe:e7:ff:45:f2:65:ab:f3:91:27:f6:a2:
33:aa:64:38:1f:43:52:93:b4:3f:1d:ef:51:84:50:7d:1f:06:
36:dc:3d:30:97:bd:07:10:69:25:75:d8:a2:0c:69:08:4b:e6:
c0:ec:50:1f
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUOSazmzI9GajUl9wn/nJ6Yh4Rm1IwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjY4M2YyZWI1MGM1OTk5YTc3NDU2ZTg4MjY4MzE2MDlk
NDhjN2QzZTAeFw0yNDAyMTQxMzI1MjVaFw0yNTAyMTIxMzMwMjVaMDMxMTAvBgNV
BAMTKDY4MkU3MjY4Q0YxQjY0NkJFRjgyODgwRUYwMUUzQjNFNkJEMDVDOEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTONIVJ+ul7N0TGqrHq+0wUK/G
LKglwC659+G5kzfeYts5BzzpFn/ZLLHPp/tzSUNBrgofVMUgAUUeqvobj1hD/Qte
d9abbfeFOgvhHF6GdIRqOBrVyAxX9pdBqL8Ts4hySbjZdVVm3vM+NqjuCovJn4TV
cF0Fvp1HisqfhZATvzX+v4YpN+L3AI/Ys5jDewZpew485l+4yjRUo2JgjDphZiOb
4h5bG0PgZh2XylYvb+ARibmLRiTZAaoX0XFS48T2OAvhTAJhnAnLyANWr5DERUyZ
P0euMvxUE8HTThwKHQmDhUbvKDmynJKgbwuC56p0/YVx9uZ9JciEv6LhFwLJAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUaC5yaM8bZGvvgogO8B47PmvQXIswHwYDVR0j
BBgwFoAUtoPy61DFmZp3RW6IJoMWCdSMfT4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmItYjY2MC00ODlkLTllOWYtOTQwMmU5ZTJj
MmUyLzAvQjY4M0YyRUI1MEM1OTk5QTc3NDU2RTg4MjY4MzE2MDlENDhDN0QzRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3RvUHk2MURGbVpwM1JXNklKb01XQ2RT
TWZUNC5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmIt
YjY2MC00ODlkLTllOWYtOTQwMmU5ZTJjMmUyLzAvMzIzMTMzMmUzMTMzMzkyZTM3
MzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMwMzczOS5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANWL
TzANBgkqhkiG9w0BAQsFAAOCAQEAiYRYFsUdOgK5AL3E0IGHe17OLql8J8UBV6G7
o4s9cKm83/uy+Hwo/QLvupjbqWEt0rXh3y01+x9ZuXMyp3CmOtytOvcH6HQ9yK+n
902AG6itEnA7nWyFaoKKkxG7Y1JcRPa+y2CQBM9W2WLq+jgej/dY1n5w8v/CGDE3
F55W6EUQ1cOd6r7QyjGxWtExSugu26yYBKjTetb4dQEULkPshPYD5oQ6BExcg4Tx
5agXI2NdpTAKeGW1gxgzPgAsAVlPqx+90PVcij4hbrKT/uf/RfJlq/ORJ/aiM6pk
OB9DUpO0Px3vUYRQfR8GNtw9MJe9BxBpJXXYogxpCEvmwOxQHw==
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:40:00 2024 by rpki-client on console-ams.rpki-client.org