Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136302e302f32342d3234203d3e2037303138.roa
File: 3139332e3234362e3136302e302f32342d3234203d3e2037303138.roa (raw, json)
Hash identifier: QnPk+I23UOVZwYyvecTSXjzbdmnPQe8WWTW5c2NKesk=
Subject key identifier: AB:12:AC:4B:86:EA:9E:D9:47:C2:05:FB:48:3A:56:34:ED:6E:3C:55
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 1A0E15BF7FF02642F5101C9FAEBAE88F561E81DD
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136302e302f32342d3234203d3e2037303138.roa
Signing time: Thu 11 Jan 2024 15:33:00 +0000
ROA not before: Thu 11 Jan 2024 15:28:00 +0000
ROA not after: Thu 09 Jan 2025 15:33:00 +0000
asID: 7018
IP address blocks: 193.246.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:0e:15:bf:7f:f0:26:42:f5:10:1c:9f:ae:ba:e8:8f:56:1e:81:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jan 11 15:28:00 2024 GMT
Not After : Jan 9 15:33:00 2025 GMT
Subject: CN=AB12AC4B86EA9ED947C205FB483A5634ED6E3C55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:32:67:81:8f:db:f3:54:f3:4c:60:0a:00:b8:
be:92:5a:3a:44:2f:4a:60:2a:23:2e:75:9b:c2:cf:
2f:b7:09:66:63:87:ec:b7:03:a5:a1:5f:c5:78:46:
fc:d7:7d:8b:46:7d:cb:a1:22:51:f6:f2:23:8d:77:
2d:c9:f5:75:b5:93:09:d8:1c:72:4e:a8:1e:20:94:
4b:bb:2c:5a:51:8f:07:b5:95:ba:31:8a:fb:ed:42:
a8:c4:73:0f:9d:b4:66:ed:1d:2a:6b:fb:1c:47:3f:
bd:f8:0c:3f:7d:a0:74:72:bf:73:1c:a1:90:0a:ad:
03:62:c6:dc:ec:32:18:ca:f1:8c:76:6b:50:4c:7d:
86:96:f7:12:1a:fb:d3:1a:38:24:19:7f:03:a0:d5:
0d:93:67:87:f4:16:d3:26:2d:5f:cb:0e:11:65:35:
30:18:92:e8:e2:fc:d0:11:3a:00:4e:73:31:bb:37:
a0:48:ec:4b:a5:69:5b:e4:ef:90:f3:b6:1c:ee:fc:
8f:fa:d1:97:39:a4:22:c5:59:60:1f:39:44:08:0c:
fc:f5:2c:e2:80:cd:87:b4:f3:ba:77:52:7a:36:cd:
a4:3e:da:60:46:a6:c1:b3:4e:c9:ef:ee:67:e3:fb:
d2:b5:8f:25:18:f1:05:06:d0:47:28:82:49:74:b6:
33:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:12:AC:4B:86:EA:9E:D9:47:C2:05:FB:48:3A:56:34:ED:6E:3C:55
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3139332e3234362e3136302e302f32342d3234203d3e2037303138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.160.0/24
Signature Algorithm: sha256WithRSAEncryption
97:44:e7:d0:5d:bf:26:a2:56:fc:96:84:2b:d7:15:2d:26:06:
61:42:f0:f7:3e:d8:70:76:bf:e2:82:a1:85:df:0d:32:c2:52:
03:d7:d2:08:52:d8:28:f8:55:52:8e:d0:df:b2:60:95:d8:93:
fe:b0:28:4b:db:b7:f9:08:61:74:92:c1:5e:a6:52:7e:6d:9a:
59:20:cf:22:5a:b5:67:9f:f8:90:d0:61:02:f0:7a:71:09:40:
3c:1e:ca:db:95:02:22:b4:93:a0:64:6b:95:e5:5c:c9:6b:86:
09:9f:0e:fb:32:1f:e6:6f:34:2a:fa:e5:05:77:50:68:49:11:
2a:ac:2d:c0:f8:21:9c:ab:27:6b:0a:57:02:1c:3b:5d:36:88:
72:0c:8e:15:c0:ed:e5:cf:d5:ee:83:1a:51:6f:79:7b:fd:f5:
b0:a9:5c:9c:57:14:bf:1b:84:6e:9a:96:62:66:fc:53:76:44:
02:7a:ce:4f:63:98:1a:22:de:d0:d0:4d:e9:d3:e0:bc:55:73:
49:53:71:ea:0b:71:5c:ac:4f:35:b8:f2:f1:88:1e:23:4b:62:
48:25:07:41:b4:c2:b9:c9:3a:ad:a6:49:70:9e:dd:1e:a1:64:
f3:bb:8f:7b:ab:ac:a4:44:15:18:9b:42:c9:1f:42:9a:bf:0b:
e8:9c:ba:e0
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUGg4Vv3/wJkL1EByfrrroj1Yegd0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl
ODZlMGVmYzAeFw0yNDAxMTExNTI4MDBaFw0yNTAxMDkxNTMzMDBaMDMxMTAvBgNV
BAMTKEFCMTJBQzRCODZFQTlFRDk0N0MyMDVGQjQ4M0E1NjM0RUQ2RTNDNTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1MmeBj9vzVPNMYAoAuL6SWjpE
L0pgKiMudZvCzy+3CWZjh+y3A6WhX8V4RvzXfYtGfcuhIlH28iONdy3J9XW1kwnY
HHJOqB4glEu7LFpRjwe1lboxivvtQqjEcw+dtGbtHSpr+xxHP734DD99oHRyv3Mc
oZAKrQNixtzsMhjK8Yx2a1BMfYaW9xIa+9MaOCQZfwOg1Q2TZ4f0FtMmLV/LDhFl
NTAYkuji/NAROgBOczG7N6BI7EulaVvk75Dzthzu/I/60Zc5pCLFWWAfOUQIDPz1
LOKAzYe087p3Uno2zaQ+2mBGpsGzTsnv7mfj+9K1jyUY8QUG0Ecogkl0tjMZAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUqxKsS4bqntlHwgX7SDpWNO1uPFUwHwYDVR0j
BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi
MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo
dUR2dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt
OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzOTMzMmUzMjM0MzYyZTMx
MzYzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM3MzAzMTM4LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
wfagMA0GCSqGSIb3DQEBCwUAA4IBAQCXROfQXb8molb8loQr1xUtJgZhQvD3Pthw
dr/igqGF3w0ywlID19IIUtgo+FVSjtDfsmCV2JP+sChL27f5CGF0ksFeplJ+bZpZ
IM8iWrVnn/iQ0GEC8HpxCUA8HsrblQIitJOgZGuV5VzJa4YJnw77Mh/mbzQq+uUF
d1BoSREqrC3A+CGcqydrClcCHDtdNohyDI4VwO3lz9XugxpRb3l7/fWwqVycVxS/
G4RumpZiZvxTdkQCes5PY5gaIt7Q0E3p0+C8VXNJU3HqC3FcrE81uPLxiB4jS2JI
JQdBtMK5yTqtpklwnt0eoWTzu497q6ykRBUYm0LJH0KavwvonLrg
-----END CERTIFICATE-----
Generated at Sat May 4 15:08:39 2024 by rpki-client on console-fra.rpki-client.org