Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/3139332e3136332e3132372e302f32342d3234203d3e20313439393438.roa
File: 3139332e3136332e3132372e302f32342d3234203d3e20313439393438.roa (raw, json)
Hash identifier: eWXMMSA0Rq5koOaRaaHhcbU4ocE3NTgDUdKA5XEeLVo=
Subject key identifier: 17:0A:2C:24:98:F6:21:0A:E0:78:F8:C3:B7:B6:80:AF:54:B7:F7:FB
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 76B546AC02630F461051036D7C8A7A9801F1CF2D
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/3139332e3136332e3132372e302f32342d3234203d3e20313439393438.roa
Signing time: Thu 29 Aug 2024 13:05:19 +0000
ROA not before: Thu 29 Aug 2024 13:00:19 +0000
ROA not after: Thu 28 Aug 2025 13:05:19 +0000
asID: 149948
IP address blocks: 193.163.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:b5:46:ac:02:63:0f:46:10:51:03:6d:7c:8a:7a:98:01:f1:cf:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Aug 29 13:00:19 2024 GMT
Not After : Aug 28 13:05:19 2025 GMT
Subject: CN=170A2C2498F6210AE078F8C3B7B680AF54B7F7FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:cc:88:26:2a:71:f2:4c:8d:d6:9e:11:6e:8b:
fb:eb:b5:5f:ad:49:8b:80:ae:43:57:2b:4f:e4:7f:
3c:d8:7a:f3:e2:6d:a4:a0:4f:55:7f:c7:52:95:bf:
62:28:5b:85:53:87:23:02:ed:8a:e4:09:4e:09:17:
56:31:dc:0b:70:1b:6a:d2:f8:9f:52:f0:04:2f:36:
7f:30:1e:2e:44:76:6c:bf:71:04:bf:85:24:af:1c:
5f:75:9b:e3:65:c0:90:0c:ad:7a:0d:8f:36:c6:ca:
2a:1d:53:4a:7c:64:e1:8d:a9:4d:0b:78:67:39:a3:
ec:36:59:a0:63:ac:4f:6c:ef:98:93:2b:a9:27:c8:
a8:b3:69:41:00:9c:86:0e:da:3c:a1:a8:06:71:72:
30:fa:1d:c1:4d:3c:a9:85:2e:de:06:e9:3c:79:2d:
98:3f:63:b0:8e:ee:6a:15:4a:c3:23:d8:88:d5:1a:
99:81:2d:18:23:b4:6e:30:32:3d:44:e2:f5:1d:0c:
a5:6d:3f:7e:1e:56:74:e4:75:34:6a:7f:a2:2c:54:
bd:e8:0f:29:9a:6d:31:1d:df:d3:ba:9f:c7:d5:b7:
dc:1f:46:a5:f4:aa:33:22:75:90:7a:a9:23:48:f6:
97:71:ad:d5:a7:b9:9a:65:59:90:9a:c3:db:92:c4:
c1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:0A:2C:24:98:F6:21:0A:E0:78:F8:C3:B7:B6:80:AF:54:B7:F7:FB
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/3139332e3136332e3132372e302f32342d3234203d3e20313439393438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.127.0/24
Signature Algorithm: sha256WithRSAEncryption
af:82:67:bf:05:f3:14:d4:6c:17:dd:d0:db:d8:fe:b8:1c:66:
85:b0:b9:71:30:dc:1d:b3:a0:e2:c4:24:e8:8c:43:73:b3:81:
9e:2c:e8:b7:10:c8:6c:c9:d1:a7:0d:09:44:68:e4:ae:e1:14:
b5:6b:5d:15:0f:c6:ba:34:48:cd:83:a9:cd:bd:12:97:1b:43:
1c:bd:30:d1:a1:ae:5a:fe:16:bf:f9:3f:9f:22:3b:c8:c8:82:
d1:0c:b2:07:33:10:53:db:18:f7:82:45:3a:e0:66:64:9d:49:
fe:08:3b:39:71:3c:73:7e:95:dd:d4:89:c7:b3:bf:93:13:be:
47:d5:45:c9:66:3b:55:3b:05:cf:aa:b1:2a:c8:62:9d:31:68:
05:08:47:40:22:1b:d2:90:78:47:da:40:23:90:1f:8a:54:9b:
ee:50:40:fe:3c:f8:b1:82:6a:80:19:28:f0:13:fa:21:fd:9c:
3d:13:14:67:3b:9c:2e:99:bc:0a:80:1b:b6:ae:f5:36:b4:6e:
f5:67:e5:ba:4f:df:d5:ea:06:55:a5:ef:7c:92:aa:ef:07:db:
46:80:4b:2d:5a:c6:9b:4c:07:20:f8:f2:ec:40:f7:ff:59:48:
6e:0f:8e:c9:f4:67:e1:af:85:71:94:a6:bb:3c:59:9d:1c:51:
aa:ff:53:17
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUdrVGrAJjD0YQUQNtfIp6mAHxzy0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGY0Y2U3NzIyZjk5MDc1ZDk0NzM4YjdlNjEwNzA0MDEy
NjllYjNkNjAeFw0yNDA4MjkxMzAwMTlaFw0yNTA4MjgxMzA1MTlaMDMxMTAvBgNV
BAMTKDE3MEEyQzI0OThGNjIxMEFFMDc4RjhDM0I3QjY4MEFGNTRCN0Y3RkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVzIgmKnHyTI3WnhFui/vrtV+t
SYuArkNXK0/kfzzYevPibaSgT1V/x1KVv2IoW4VThyMC7YrkCU4JF1Yx3AtwG2rS
+J9S8AQvNn8wHi5Edmy/cQS/hSSvHF91m+NlwJAMrXoNjzbGyiodU0p8ZOGNqU0L
eGc5o+w2WaBjrE9s75iTK6knyKizaUEAnIYO2jyhqAZxcjD6HcFNPKmFLt4G6Tx5
LZg/Y7CO7moVSsMj2IjVGpmBLRgjtG4wMj1E4vUdDKVtP34eVnTkdTRqf6IsVL3o
DymabTEd39O6n8fVt9wfRqX0qjMidZB6qSNI9pdxrdWnuZplWZCaw9uSxMERAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQUFwosJJj2IQrgePjDt7aAr1S39/swHwYDVR0j
BBgwFoAUj0znci+ZB12Uc4t+YQcEASaes9YwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWE5NzcxMTUtNTExMC00MjU3LTk0ZWYtNGQyYjQzODg0
MDQwLzAvOEY0Q0U3NzIyRjk5MDc1RDk0NzM4QjdFNjEwNzA0MDEyNjlFQjNENi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2owem5jaS1aQjEyVWM0dC1ZUWNFQVNh
ZXM5WS5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWE5NzcxMTUt
NTExMC00MjU3LTk0ZWYtNGQyYjQzODg0MDQwLzAvMzEzOTMzMmUzMTM2MzMyZTMx
MzIzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzQzOTM5MzQzOC5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAMGjfzANBgkqhkiG9w0BAQsFAAOCAQEAr4JnvwXzFNRsF93Q29j+uBxmhbC5
cTDcHbOg4sQk6IxDc7OBnizotxDIbMnRpw0JRGjkruEUtWtdFQ/GujRIzYOpzb0S
lxtDHL0w0aGuWv4Wv/k/nyI7yMiC0QyyBzMQU9sY94JFOuBmZJ1J/gg7OXE8c36V
3dSJx7O/kxO+R9VFyWY7VTsFz6qxKshinTFoBQhHQCIb0pB4R9pAI5AfilSb7lBA
/jz4sYJqgBko8BP6If2cPRMUZzucLpm8CoAbtq71NrRu9Wfluk/f1eoGVaXvfJKq
7wfbRoBLLVrGm0wHIPjy7ED3/1lIbg+OyfRn4a+FcZSmuzxZnRxRqv9TFw==
-----END CERTIFICATE-----
Generated at Mon Nov 25 18:39:34 2024 by rpki-client on console-fra.rpki-client.org