Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/3133392e32382e32342e302f32342d3234203d3e20323131343430.roa
File: 3133392e32382e32342e302f32342d3234203d3e20323131343430.roa (raw, json)
Hash identifier: twTgGBKMQSloCx30j6eSor6ZzVTUosOPJ0PDPTSoACo=
Subject key identifier: A9:42:69:24:F2:72:BF:71:A7:A9:78:84:B5:AE:0A:AD:38:8D:17:1A
Certificate issuer: /CN=637fd1ba3fed44454d6d7030247709d28db3491a
Certificate serial: 0B474AB8B5543AA4F86BCF204F1416973C2A22A6
Authority key identifier: 63:7F:D1:BA:3F:ED:44:45:4D:6D:70:30:24:77:09:D2:8D:B3:49:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/3133392e32382e32342e302f32342d3234203d3e20323131343430.roa
Signing time: Fri 27 Oct 2023 14:01:16 +0000
ROA not before: Fri 27 Oct 2023 13:56:16 +0000
ROA not after: Fri 25 Oct 2024 14:01:16 +0000
asID: 211440
IP address blocks: 139.28.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.crl
rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 04:53:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:47:4a:b8:b5:54:3a:a4:f8:6b:cf:20:4f:14:16:97:3c:2a:22:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=637fd1ba3fed44454d6d7030247709d28db3491a
Validity
Not Before: Oct 27 13:56:16 2023 GMT
Not After : Oct 25 14:01:16 2024 GMT
Subject: CN=A9426924F272BF71A7A97884B5AE0AAD388D171A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:3a:24:d8:8f:f4:83:60:ac:28:bb:76:96:f1:
8e:d5:f7:48:11:8f:cc:32:f4:a0:ae:a7:32:ba:bf:
c1:9f:d5:79:56:8c:25:b5:be:64:11:d3:70:3f:ca:
e7:61:37:fa:29:6d:c6:cd:b0:f8:ea:d4:c2:db:51:
15:af:1d:5b:bd:e4:fe:5c:3c:eb:f3:19:93:d8:7b:
7c:37:ba:31:d5:74:f1:71:a3:98:7e:56:b4:c9:d7:
f4:39:38:4a:c2:db:c6:66:36:a4:33:cb:71:66:9e:
cb:10:26:b1:6a:03:ee:97:46:18:8f:34:d0:a5:cb:
56:72:dd:13:24:07:2d:e7:ea:fd:96:ec:39:ec:20:
46:cf:10:f9:10:d4:42:47:6c:73:6a:d2:ff:ad:d4:
cc:6e:ad:e2:9d:ae:15:51:a4:93:33:fd:c6:e0:a5:
cb:21:5c:e6:bc:c4:7b:f4:ab:1e:c9:55:52:b6:ba:
8b:c6:b0:f1:1e:33:5c:d9:07:76:9a:bd:29:98:e9:
65:e5:00:12:6d:39:be:2b:b9:94:cf:c1:45:08:7b:
a5:f2:70:fb:c3:3f:bf:b3:eb:21:35:ee:ff:ea:5f:
3b:0d:c2:9a:13:29:16:9a:6b:9d:cd:01:5d:97:d3:
f4:79:19:96:e1:fe:66:0e:f3:d7:8c:d7:01:b6:31:
c6:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:42:69:24:F2:72:BF:71:A7:A9:78:84:B5:AE:0A:AD:38:8D:17:1A
X509v3 Authority Key Identifier:
keyid:63:7F:D1:BA:3F:ED:44:45:4D:6D:70:30:24:77:09:D2:8D:B3:49:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/3133392e32382e32342e302f32342d3234203d3e20323131343430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.24.0/24
Signature Algorithm: sha256WithRSAEncryption
93:fe:91:6a:a4:7d:02:7e:58:96:5f:3d:bd:56:a8:36:2b:22:
28:1e:a9:60:1e:3a:48:ac:69:57:81:67:c4:82:50:c7:96:87:
70:f6:24:1a:dd:7b:69:c0:43:be:47:99:8d:56:da:6d:53:ae:
74:76:0a:e6:e7:00:13:72:62:bc:eb:fb:35:0a:29:50:e6:bd:
cd:cf:d7:a1:74:8c:d4:f3:7e:65:ef:72:28:dc:f0:5e:6c:9c:
56:6e:bc:6a:e7:a0:54:70:48:df:ee:8f:6c:1b:14:1f:32:12:
c0:3b:47:4d:28:0a:09:a7:d0:dc:86:57:62:2c:4b:b7:26:7b:
5b:d9:b3:36:06:a1:fd:f8:56:59:08:2c:82:ca:08:ce:d8:4b:
e0:dd:02:81:3b:51:77:b9:5b:0b:ad:06:b1:11:38:d9:12:87:
6c:2a:a3:e2:13:e4:76:11:08:72:de:e6:46:c2:1e:af:e9:0b:
d8:4d:74:73:67:d2:28:a4:2e:03:43:bd:dd:13:64:ef:35:b6:
38:c3:64:68:69:f8:62:2b:15:2e:bc:20:23:f4:2e:b6:b0:40:
e6:34:e4:10:02:74:a6:cf:4f:ad:a7:fa:fe:bc:0a:84:48:ea:
5c:52:32:89:ed:7f:70:6a:53:c4:33:0a:5d:04:05:73:fb:a7:
6f:a9:84:99
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUC0dKuLVUOqT4a88gTxQWlzwqIqYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM3ZmQxYmEzZmVkNDQ0NTRkNmQ3MDMwMjQ3NzA5ZDI4
ZGIzNDkxYTAeFw0yMzEwMjcxMzU2MTZaFw0yNDEwMjUxNDAxMTZaMDMxMTAvBgNV
BAMTKEE5NDI2OTI0RjI3MkJGNzFBN0E5Nzg4NEI1QUUwQUFEMzg4RDE3MUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsOiTYj/SDYKwou3aW8Y7V90gR
j8wy9KCupzK6v8Gf1XlWjCW1vmQR03A/yudhN/opbcbNsPjq1MLbURWvHVu95P5c
POvzGZPYe3w3ujHVdPFxo5h+VrTJ1/Q5OErC28ZmNqQzy3FmnssQJrFqA+6XRhiP
NNCly1Zy3RMkBy3n6v2W7DnsIEbPEPkQ1EJHbHNq0v+t1MxureKdrhVRpJMz/cbg
pcshXOa8xHv0qx7JVVK2uovGsPEeM1zZB3aavSmY6WXlABJtOb4ruZTPwUUIe6Xy
cPvDP7+z6yE17v/qXzsNwpoTKRaaa53NAV2X0/R5GZbh/mYO89eM1wG2Mca1AgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUqUJpJPJyv3GnqXiEta4KrTiNFxowHwYDVR0j
BBgwFoAUY3/Ruj/tREVNbXAwJHcJ0o2zSRowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTk0ZGY3MTQtZDM3ZC00OTQyLThlOTQtOTFkZDg1M2Vm
N2UzLzAvNjM3RkQxQkEzRkVENDQ0NTRENkQ3MDMwMjQ3NzA5RDI4REIzNDkxQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1kzX1J1al90UkVWTmJYQXdKSGNKMG8y
elNSby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTk0ZGY3MTQt
ZDM3ZC00OTQyLThlOTQtOTFkZDg1M2VmN2UzLzAvMzEzMzM5MmUzMjM4MmUzMjM0
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMTMxMzQzNDMwLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
ixwYMA0GCSqGSIb3DQEBCwUAA4IBAQCT/pFqpH0CfliWXz29Vqg2KyIoHqlgHjpI
rGlXgWfEglDHlodw9iQa3XtpwEO+R5mNVtptU650dgrm5wATcmK86/s1CilQ5r3N
z9ehdIzU835l73Io3PBebJxWbrxq56BUcEjf7o9sGxQfMhLAO0dNKAoJp9Dchldi
LEu3Jntb2bM2BqH9+FZZCCyCygjO2Evg3QKBO1F3uVsLrQaxETjZEodsKqPiE+R2
EQhy3uZGwh6v6QvYTXRzZ9IopC4DQ73dE2TvNbY4w2RoafhiKxUuvCAj9C62sEDm
NOQQAnSmz0+tp/r+vAqESOpcUjKJ7X9walPEMwpdBAVz+6dvqYSZ
-----END CERTIFICATE-----
Generated at Sun May 19 11:33:18 2024 by rpki-client on console-fra.rpki-client.org