Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/3139332e33362e3130372e302f32342d3234203d3e20323130363137.roa
File: 3139332e33362e3130372e302f32342d3234203d3e20323130363137.roa (raw, json)
Hash identifier: jkriskThxG1KyYqfjGrvtwXMn5mCuY+uIvlSK0E2Dfs=
Subject key identifier: E7:D3:62:D0:E1:0F:F1:F1:46:37:4E:C6:18:B9:6A:B7:13:30:E1:59
Certificate issuer: /CN=87d48146623246673056151f64abb8d1ee6b7727
Certificate serial: 398A41DC7F1E6592D1301DB2607679B89F570D07
Authority key identifier: 87:D4:81:46:62:32:46:67:30:56:15:1F:64:AB:B8:D1:EE:6B:77:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9SBRmIyRmcwVhUfZKu40e5rdyc.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/3139332e33362e3130372e302f32342d3234203d3e20323130363137.roa
Signing time: Mon 15 Jan 2024 15:37:27 +0000
ROA not before: Mon 15 Jan 2024 15:32:27 +0000
ROA not after: Mon 13 Jan 2025 15:37:27 +0000
asID: 210617
IP address blocks: 193.36.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/87D48146623246673056151F64ABB8D1EE6B7727.crl
rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/87D48146623246673056151F64ABB8D1EE6B7727.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9SBRmIyRmcwVhUfZKu40e5rdyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:8a:41:dc:7f:1e:65:92:d1:30:1d:b2:60:76:79:b8:9f:57:0d:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d48146623246673056151f64abb8d1ee6b7727
Validity
Not Before: Jan 15 15:32:27 2024 GMT
Not After : Jan 13 15:37:27 2025 GMT
Subject: CN=E7D362D0E10FF1F146374EC618B96AB71330E159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9c:38:d9:43:a9:b3:bf:f2:85:aa:8f:72:f4:
a4:24:f0:01:ea:9b:cd:ac:30:b1:9d:bb:8e:2f:88:
e8:cc:12:1d:3f:fb:4b:5d:ea:a3:59:94:0a:64:66:
be:ee:87:0f:54:90:3e:80:9e:2d:c0:8e:d3:5e:bc:
d0:32:26:3c:1d:23:7d:89:7a:53:82:06:9e:00:05:
25:05:0f:0e:f9:aa:b3:d0:d6:e4:f4:53:b0:6e:2b:
bf:58:a5:dc:88:e7:d2:4e:e0:7c:51:2d:59:b4:81:
dd:4d:a2:a6:41:42:ef:c4:3c:48:5b:b0:1a:b1:1b:
1d:34:58:81:46:f3:16:91:79:cc:c9:88:c4:02:aa:
4d:d7:fa:f1:20:c8:df:e2:95:63:71:6e:a5:02:d5:
96:d5:b5:80:ba:e3:49:91:64:a2:f9:6f:da:67:b0:
02:78:ce:09:38:5f:3e:20:ea:41:ad:49:0c:ec:bd:
26:4e:05:42:83:3e:2f:12:db:26:d7:22:b8:2a:df:
1e:e5:fd:b8:60:5d:d4:1d:c2:10:38:de:1b:30:c2:
2a:c6:b8:c9:c8:ec:1e:5e:90:94:cb:83:d7:7d:a6:
0f:7f:3e:b9:75:92:ff:64:91:ae:fa:b1:25:07:7e:
8c:ee:36:38:62:5d:a3:3d:15:08:39:0d:16:af:4d:
81:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D3:62:D0:E1:0F:F1:F1:46:37:4E:C6:18:B9:6A:B7:13:30:E1:59
X509v3 Authority Key Identifier:
keyid:87:D4:81:46:62:32:46:67:30:56:15:1F:64:AB:B8:D1:EE:6B:77:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/87D48146623246673056151F64ABB8D1EE6B7727.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9SBRmIyRmcwVhUfZKu40e5rdyc.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a84b548c-275a-476e-bfbe-540e73e62383/0/3139332e33362e3130372e302f32342d3234203d3e20323130363137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.107.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:d3:5c:b0:d1:32:d1:f3:c2:ec:5b:55:41:e8:e5:78:ac:7c:
93:3a:f9:7c:b5:40:fd:e1:b1:bf:38:66:0b:48:c9:1c:72:f0:
08:02:f8:15:2a:35:51:fa:a3:d0:2c:5e:61:cc:18:a2:19:a8:
40:3b:e7:e2:a0:ab:bf:5a:be:c4:bb:ff:ee:94:9f:33:a8:bd:
05:1f:b5:57:6b:b9:27:e0:33:33:73:84:8a:90:b9:f9:96:db:
85:ad:2d:fa:60:60:b2:3f:ee:4b:50:f3:e9:23:3e:88:f3:8f:
dc:94:b7:43:88:e7:c0:7f:b1:b1:3e:b2:55:25:31:e4:62:1a:
e0:13:2c:f3:d0:70:ab:00:52:9c:1e:61:ec:c7:5c:81:46:84:
45:8a:47:f4:a6:de:d4:e2:44:80:09:5f:44:b2:08:5e:03:df:
db:20:55:a5:f6:b8:13:f2:81:ef:81:b1:53:13:b8:32:b0:c5:
33:ae:3a:23:da:bf:4c:59:ff:7b:fd:33:c6:21:a1:67:68:30:
01:2e:64:fa:d7:de:21:b0:a1:ac:55:86:06:b7:eb:2e:f2:f4:
ce:51:b0:4f:6e:1a:48:8b:c6:47:d5:9c:72:92:11:fb:33:10:
fc:6a:2b:02:10:14:90:c5:a5:25:7d:3c:43:8f:1c:52:87:e1:
08:b4:db:2d
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUOYpB3H8eZZLRMB2yYHZ5uJ9XDQcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODdkNDgxNDY2MjMyNDY2NzMwNTYxNTFmNjRhYmI4ZDFl
ZTZiNzcyNzAeFw0yNDAxMTUxNTMyMjdaFw0yNTAxMTMxNTM3MjdaMDMxMTAvBgNV
BAMTKEU3RDM2MkQwRTEwRkYxRjE0NjM3NEVDNjE4Qjk2QUI3MTMzMEUxNTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrnDjZQ6mzv/KFqo9y9KQk8AHq
m82sMLGdu44viOjMEh0/+0td6qNZlApkZr7uhw9UkD6Ani3AjtNevNAyJjwdI32J
elOCBp4ABSUFDw75qrPQ1uT0U7BuK79YpdyI59JO4HxRLVm0gd1NoqZBQu/EPEhb
sBqxGx00WIFG8xaReczJiMQCqk3X+vEgyN/ilWNxbqUC1ZbVtYC640mRZKL5b9pn
sAJ4zgk4Xz4g6kGtSQzsvSZOBUKDPi8S2ybXIrgq3x7l/bhgXdQdwhA43hswwirG
uMnI7B5ekJTLg9d9pg9/Prl1kv9kka76sSUHfozuNjhiXaM9FQg5DRavTYHZAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU59Ni0OEP8fFGN07GGLlqtxMw4VkwHwYDVR0j
BBgwFoAUh9SBRmIyRmcwVhUfZKu40e5rdycwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTg0YjU0OGMtMjc1YS00NzZlLWJmYmUtNTQwZTczZTYy
MzgzLzAvODdENDgxNDY2MjMyNDY2NzMwNTYxNTFGNjRBQkI4RDFFRTZCNzcyNy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2g5U0JSbUl5Um1jd1ZoVWZaS3U0MGU1
cmR5Yy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTg0YjU0OGMt
Mjc1YS00NzZlLWJmYmUtNTQwZTczZTYyMzgzLzAvMzEzOTMzMmUzMzM2MmUzMTMw
MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMxMzAzNjMxMzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BADBJGswDQYJKoZIhvcNAQELBQADggEBAI7TXLDRMtHzwuxbVUHo5XisfJM6+Xy1
QP3hsb84ZgtIyRxy8AgC+BUqNVH6o9AsXmHMGKIZqEA75+Kgq79avsS7/+6UnzOo
vQUftVdruSfgMzNzhIqQufmW24WtLfpgYLI/7ktQ8+kjPojzj9yUt0OI58B/sbE+
slUlMeRiGuATLPPQcKsAUpweYezHXIFGhEWKR/Sm3tTiRIAJX0SyCF4D39sgVaX2
uBPyge+BsVMTuDKwxTOuOiPav0xZ/3v9M8YhoWdoMAEuZPrX3iGwoaxVhga36y7y
9M5RsE9uGkiLxkfVnHKSEfszEPxqKwIQFJDFpSV9PEOPHFKH4Qi02y0=
-----END CERTIFICATE-----
Generated at Fri Jun 7 11:39:55 2024 by rpki-client on console-ams.rpki-client.org