Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3133302e3139332e37352e302f32342d3234203d3e20323135373237.roa
File: 3133302e3139332e37352e302f32342d3234203d3e20323135373237.roa (raw, json)
Hash identifier: 6RpkFGUytBbpPYpiYeQU8RLNy0XHMLVUHEtirH/7vUw=
Subject key identifier: 3C:DC:CF:50:39:3F:F9:07:CC:48:E0:2E:77:C1:99:30:CE:9D:DC:F7
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 5692A82B92A79F57D0DBA7117E212A2A27B3C5F0
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3133302e3139332e37352e302f32342d3234203d3e20323135373237.roa
Signing time: Sun 15 Dec 2024 16:53:48 +0000
ROA not before: Sun 15 Dec 2024 16:48:48 +0000
ROA not after: Sun 14 Dec 2025 16:53:48 +0000
asID: 215727
IP address blocks: 130.193.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 13:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:92:a8:2b:92:a7:9f:57:d0:db:a7:11:7e:21:2a:2a:27:b3:c5:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Dec 15 16:48:48 2024 GMT
Not After : Dec 14 16:53:48 2025 GMT
Subject: CN=3CDCCF50393FF907CC48E02E77C19930CE9DDCF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0c:ef:e9:2b:33:65:dd:37:11:51:d4:31:21:
f7:5d:c7:d5:3e:6a:e6:da:ab:d7:ed:b5:0f:8f:17:
e8:7d:42:ef:f8:a3:50:aa:0d:03:d4:28:7f:6c:6c:
39:f5:04:2c:9a:b5:63:85:80:9f:b4:b2:5f:b9:81:
6a:8e:da:83:0c:9f:43:45:d8:c9:06:65:8d:43:3c:
07:d7:d4:c1:b4:8c:2a:ca:ab:10:b4:f0:18:e3:95:
bb:f7:14:86:79:db:cb:3f:60:21:8b:89:51:87:8c:
e8:0c:a7:e7:0b:49:76:72:b3:69:2c:3a:b0:64:ef:
52:1d:1d:e4:8b:8d:4f:d9:d2:84:5b:42:44:0d:1d:
14:a8:1e:b6:01:4a:48:77:35:2f:56:6b:56:2e:84:
fc:02:24:50:24:8f:7f:a2:f2:49:cb:7f:73:5c:bc:
21:01:9c:20:58:e0:3f:62:07:36:2a:ae:b3:9d:91:
e0:24:08:9d:66:93:32:3d:5a:81:05:2f:f1:94:1a:
56:c8:12:9f:4a:cd:21:31:ba:45:19:f2:d1:3a:46:
91:cf:10:58:36:33:9f:99:43:35:0f:92:6e:78:3b:
9e:2a:03:5f:06:43:0d:28:4a:85:7f:57:89:1b:dc:
67:a3:6b:0c:51:3d:5a:fa:1b:4d:0f:80:3f:c7:79:
3b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:DC:CF:50:39:3F:F9:07:CC:48:E0:2E:77:C1:99:30:CE:9D:DC:F7
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/3133302e3139332e37352e302f32342d3234203d3e20323135373237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.193.75.0/24
Signature Algorithm: sha256WithRSAEncryption
03:d9:c4:45:1e:a8:69:e5:06:19:00:90:02:79:ee:51:70:5d:
10:f7:98:25:20:a1:2d:eb:2d:d7:66:bc:61:e4:24:f6:c7:60:
9b:f9:e2:21:bc:1e:88:4e:ee:e5:9b:d9:59:b4:a2:0c:69:81:
fc:d5:07:7b:6f:3b:f5:d6:4d:48:0a:7a:68:6e:ec:c0:f8:cd:
c2:f7:c9:cb:4b:ae:ea:58:81:e1:bb:4a:ca:47:cb:d7:a9:3a:
79:5d:da:78:00:42:62:11:59:9f:e5:54:73:2d:5a:30:69:65:
aa:cf:fc:5f:db:ba:96:bc:ff:53:ce:6a:da:9a:c3:ae:e3:1f:
d7:c5:e5:bf:ae:a2:9b:85:e1:cd:8c:0e:3d:61:6c:9d:08:5f:
3a:35:f5:1c:24:65:b7:58:52:c9:c1:37:4b:22:43:66:3d:d7:
e2:f4:51:d7:b7:2f:37:35:37:f2:3f:f6:87:43:cc:33:5b:37:
88:b6:1d:f5:c7:96:db:2a:3a:e8:06:df:18:4b:a8:25:c5:ae:
99:ed:32:7c:c1:ce:3b:15:3e:2a:c4:71:9c:0c:60:ed:b7:de:
2f:59:c2:5b:3a:0b:5a:7b:cd:03:9f:67:b1:a2:05:2e:cc:32:
41:27:b4:7b:e0:f5:b8:42:34:f3:6a:53:30:45:b7:53:2a:3e:
02:64:11:15
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUVpKoK5Knn1fQ26cRfiEqKiezxfAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoY2VmY2U0NDliZWE4ZGVhZWRiMTgwNGRiYTI1YzU4NGRm
NTg3M2RjNDAeFw0yNDEyMTUxNjQ4NDhaFw0yNTEyMTQxNjUzNDhaMDMxMTAvBgNV
BAMTKDNDRENDRjUwMzkzRkY5MDdDQzQ4RTAyRTc3QzE5OTMwQ0U5RERDRjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvDO/pKzNl3TcRUdQxIfddx9U+
aubaq9fttQ+PF+h9Qu/4o1CqDQPUKH9sbDn1BCyatWOFgJ+0sl+5gWqO2oMMn0NF
2MkGZY1DPAfX1MG0jCrKqxC08Bjjlbv3FIZ528s/YCGLiVGHjOgMp+cLSXZys2ks
OrBk71IdHeSLjU/Z0oRbQkQNHRSoHrYBSkh3NS9Wa1YuhPwCJFAkj3+i8knLf3Nc
vCEBnCBY4D9iBzYqrrOdkeAkCJ1mkzI9WoEFL/GUGlbIEp9KzSExukUZ8tE6RpHP
EFg2M5+ZQzUPkm54O54qA18GQw0oSoV/V4kb3GejawxRPVr6G00PgD/HeTvFAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUPNzPUDk/+QfMSOAud8GZMM6d3PcwHwYDVR0j
BBgwFoAUzvzkSb6o3q7bGATbolxYTfWHPcQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZDFiMzVmOGItNmY0OC00YmFkLWIxODUtNWMxZGFhOGFj
ZGE5LzAvQ0VGQ0U0NDlCRUE4REVBRURCMTgwNERCQTI1QzU4NERGNTg3M0RDNC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3p2emtTYjZvM3E3YkdBVGJvbHhZVGZX
SFBjUS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZDFiMzVmOGIt
NmY0OC00YmFkLWIxODUtNWMxZGFhOGFjZGE5LzAvMzEzMzMwMmUzMTM5MzMyZTM3
MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMxMzUzNzMyMzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACCwUswDQYJKoZIhvcNAQELBQADggEBAAPZxEUeqGnlBhkAkAJ57lFwXRD3mCUg
oS3rLddmvGHkJPbHYJv54iG8HohO7uWb2Vm0ogxpgfzVB3tvO/XWTUgKemhu7MD4
zcL3yctLrupYgeG7SspHy9epOnld2ngAQmIRWZ/lVHMtWjBpZarP/F/bupa8/1PO
atqaw67jH9fF5b+uopuF4c2MDj1hbJ0IXzo19RwkZbdYUsnBN0siQ2Y91+L0Ude3
Lzc1N/I/9odDzDNbN4i2HfXHltsqOugG3xhLqCXFrpntMnzBzjsVPirEcZwMYO23
3i9Zwls6C1p7zQOfZ7GiBS7MMkEntHvg9bhCNPNqUzBFt1MqPgJkERU=
-----END CERTIFICATE-----
Generated at Sat Apr 5 04:37:44 2025 by rpki-client