Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39332e302f32342d3234203d3e2039303039.roa
File: 3231332e3133392e39332e302f32342d3234203d3e2039303039.roa (raw, json)
Hash identifier: BpwFTe7Yxv8spCXtI6SlrcvqkmRSrqF7TJL8D0ERvYc=
Subject key identifier: B0:B2:31:94:59:1B:EE:96:AE:7F:44:2C:2E:C2:BF:C5:9C:00:C2:31
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 019EBED1289C13D47054937B5BC178C608BC5EF3
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39332e302f32342d3234203d3e2039303039.roa
Signing time: Tue 21 May 2024 08:14:46 +0000
ROA not before: Tue 21 May 2024 08:09:46 +0000
ROA not after: Tue 20 May 2025 08:14:46 +0000
asID: 9009
IP address blocks: 213.139.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:d1:28:9c:13:d4:70:54:93:7b:5b:c1:78:c6:08:bc:5e:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: May 21 08:09:46 2024 GMT
Not After : May 20 08:14:46 2025 GMT
Subject: CN=B0B23194591BEE96AE7F442C2EC2BFC59C00C231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3e:b7:19:64:97:15:b4:4d:2f:b6:5e:f8:2c:
92:f8:8e:b7:53:24:0c:af:07:41:d0:27:ba:37:7f:
52:6f:bf:0b:db:4a:42:48:87:ae:a8:2c:15:3a:85:
7a:dd:7e:b6:57:7a:da:35:ac:19:d4:67:cc:79:66:
ee:d2:05:89:e5:27:8d:f4:9c:23:69:57:ec:9a:aa:
ce:fa:a4:8e:2b:8c:04:25:d0:5a:2a:9b:d3:e5:f9:
a9:6b:11:90:01:98:0d:87:6c:02:2c:82:09:22:bc:
e7:7d:93:e7:0f:5b:1b:c8:f3:d9:e8:2f:50:db:16:
09:32:cc:d0:e7:81:d0:4a:6f:d8:d5:5e:0d:9a:fc:
09:88:f8:2c:a0:04:07:89:26:e7:56:f9:59:ee:e2:
f6:d8:6c:50:81:63:af:83:2b:c6:bb:07:2c:e9:8d:
56:f8:8c:5a:67:b2:e0:fa:bf:3f:d4:70:eb:95:cc:
9a:a5:db:f9:4b:23:d2:ba:28:7d:46:ba:e6:75:a0:
8a:20:4b:fa:ce:81:2b:cd:98:90:b8:89:6a:b9:e0:
6d:43:f1:f1:4f:3e:50:c2:e0:6f:eb:ef:35:c1:9f:
01:b5:13:8d:73:2c:a2:15:9b:5b:0d:1b:26:42:e4:
66:27:44:04:59:c8:14:1d:fb:c7:f6:4e:89:fa:31:
6f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:B2:31:94:59:1B:EE:96:AE:7F:44:2C:2E:C2:BF:C5:9C:00:C2:31
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e39332e302f32342d3234203d3e2039303039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.93.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:a2:12:e3:1d:11:c4:10:8e:bb:0a:05:19:2b:04:94:6d:55:
ea:87:cf:0e:1f:ad:0c:43:5e:a5:dd:c9:28:5a:57:28:d3:58:
48:0b:ba:0f:f8:d8:7f:b6:61:6b:d8:26:07:24:de:fa:67:29:
6d:5a:f7:f9:21:7e:ff:95:0e:dd:4a:06:e0:e7:96:5f:35:e4:
2d:5a:7a:ba:ec:be:ce:46:f4:91:29:39:a3:aa:07:04:ef:8f:
15:21:d3:83:ab:55:18:5e:aa:92:04:1a:64:db:b5:ca:9f:50:
5a:18:af:23:c1:ec:4e:68:43:b3:5a:f3:98:42:9b:40:81:56:
ff:92:26:aa:26:a5:d6:f3:9d:44:28:75:e0:bd:3f:41:b2:33:
71:1e:58:0b:2b:d1:91:b9:51:7b:5d:82:3b:d8:35:45:90:f7:
c5:1f:ca:b8:3a:ba:ef:90:48:f3:d2:b4:8c:7f:9a:ca:d0:d7:
a1:5d:63:10:8b:c9:90:f8:ee:0a:f4:d3:02:bb:09:59:cd:c2:
b4:bf:04:b5:ec:d2:b4:a8:8a:8d:7f:60:aa:43:82:62:8c:af:
2a:0c:30:bb:3e:bc:9c:d7:18:da:b1:16:5c:89:cd:63:89:94:
62:d7:53:b4:46:db:07:54:02:93:0a:13:12:77:e6:82:c7:ae:
0c:ff:a6:84
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUAZ6+0SicE9RwVJN7W8F4xgi8XvMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjY4M2YyZWI1MGM1OTk5YTc3NDU2ZTg4MjY4MzE2MDlk
NDhjN2QzZTAeFw0yNDA1MjEwODA5NDZaFw0yNTA1MjAwODE0NDZaMDMxMTAvBgNV
BAMTKEIwQjIzMTk0NTkxQkVFOTZBRTdGNDQyQzJFQzJCRkM1OUMwMEMyMzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYPrcZZJcVtE0vtl74LJL4jrdT
JAyvB0HQJ7o3f1JvvwvbSkJIh66oLBU6hXrdfrZXeto1rBnUZ8x5Zu7SBYnlJ430
nCNpV+yaqs76pI4rjAQl0Foqm9Pl+alrEZABmA2HbAIsggkivOd9k+cPWxvI89no
L1DbFgkyzNDngdBKb9jVXg2a/AmI+CygBAeJJudW+Vnu4vbYbFCBY6+DK8a7Byzp
jVb4jFpnsuD6vz/UcOuVzJql2/lLI9K6KH1GuuZ1oIogS/rOgSvNmJC4iWq54G1D
8fFPPlDC4G/r7zXBnwG1E41zLKIVm1sNGyZC5GYnRARZyBQd+8f2Ton6MW87AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUsLIxlFkb7pauf0QsLsK/xZwAwjEwHwYDVR0j
BBgwFoAUtoPy61DFmZp3RW6IJoMWCdSMfT4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmItYjY2MC00ODlkLTllOWYtOTQwMmU5ZTJj
MmUyLzAvQjY4M0YyRUI1MEM1OTk5QTc3NDU2RTg4MjY4MzE2MDlENDhDN0QzRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3RvUHk2MURGbVpwM1JXNklKb01XQ2RT
TWZUNC5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmIt
YjY2MC00ODlkLTllOWYtOTQwMmU5ZTJjMmUyLzAvMzIzMTMzMmUzMTMzMzkyZTM5
MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzOTMwMzAzOS5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANWL
XTANBgkqhkiG9w0BAQsFAAOCAQEAKqIS4x0RxBCOuwoFGSsElG1V6ofPDh+tDENe
pd3JKFpXKNNYSAu6D/jYf7Zha9gmByTe+mcpbVr3+SF+/5UO3UoG4OeWXzXkLVp6
uuy+zkb0kSk5o6oHBO+PFSHTg6tVGF6qkgQaZNu1yp9QWhivI8HsTmhDs1rzmEKb
QIFW/5Imqial1vOdRCh14L0/QbIzcR5YCyvRkblRe12CO9g1RZD3xR/KuDq675BI
89K0jH+aytDXoV1jEIvJkPjuCvTTArsJWc3CtL8EtezStKiKjX9gqkOCYoyvKgww
uz68nNcY2rEWXInNY4mUYtdTtEbbB1QCkwoTEnfmgseuDP+mhA==
-----END CERTIFICATE-----
Generated at Thu Nov 21 06:58:17 2024 by rpki-client on console-fra.rpki-client.org