Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e352e302f32342d3234203d3e20313939343135.roa
File: 3139332e3234362e352e302f32342d3234203d3e20313939343135.roa (raw, json)
Hash identifier: R8fLk9Ouwz6JjPj7wRSgx3bLi0ifZ6zKgiC/NJ8y+08=
Subject key identifier: AF:64:3C:86:9F:B9:D4:1C:D5:15:2A:3B:6C:69:2E:D7:EF:5B:24:C5
Certificate issuer: /CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Certificate serial: 538BB15163364A00F3562C06CDE9B104035ABFDE
Authority key identifier: C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e352e302f32342d3234203d3e20313939343135.roa
Signing time: Tue 16 Jul 2024 16:09:55 +0000
ROA not before: Tue 16 Jul 2024 16:04:55 +0000
ROA not after: Tue 15 Jul 2025 16:09:55 +0000
asID: 199415
IP address blocks: 193.246.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.mft
rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 13:55:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:8b:b1:51:63:36:4a:00:f3:56:2c:06:cd:e9:b1:04:03:5a:bf:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c79d02c618861ad45baf78ce39023cbcb494a7bf
Validity
Not Before: Jul 16 16:04:55 2024 GMT
Not After : Jul 15 16:09:55 2025 GMT
Subject: CN=AF643C869FB9D41CD5152A3B6C692ED7EF5B24C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:61:48:be:62:38:05:e0:bd:22:70:45:64:62:
8d:ba:26:a5:5e:7a:48:da:42:2c:d5:d0:bb:82:93:
c7:04:1b:a9:49:c1:aa:d1:3f:76:89:64:26:9a:73:
7f:1f:68:12:34:fc:c3:e8:c6:61:0a:96:c6:3e:38:
8b:54:60:9d:f9:4b:fb:41:85:50:c4:1d:27:77:95:
97:37:53:67:03:91:3a:7b:ee:9d:b0:38:87:9a:f6:
aa:e0:59:dd:8f:20:0e:23:a0:6a:0f:b2:b5:06:a6:
70:37:a8:b4:cb:90:ff:2c:28:5c:fd:88:5c:40:39:
18:69:4e:33:c7:22:a8:47:0a:27:a5:f0:4d:ae:6e:
48:a2:bc:46:0a:5f:d2:b2:d6:69:05:a0:e9:42:4c:
4b:31:af:b2:96:a0:60:41:e2:8c:6e:5a:c3:9c:66:
8e:13:25:0c:b0:41:4e:4e:ed:a1:dc:03:5f:95:0a:
e0:d3:68:dd:20:f0:4c:24:a7:eb:f9:e5:cc:52:5f:
4a:21:e2:68:8e:47:17:13:ab:c7:83:81:4b:59:9e:
0a:f8:b4:eb:2f:c0:6f:8c:a2:af:ca:e5:e4:c6:59:
d5:e8:4b:c0:5d:e2:0a:e8:1f:2d:c9:ac:98:94:06:
10:b0:5c:fd:6b:c5:97:e9:fa:fd:e7:ad:99:6b:c0:
e0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:64:3C:86:9F:B9:D4:1C:D5:15:2A:3B:6C:69:2E:D7:EF:5B:24:C5
X509v3 Authority Key Identifier:
keyid:C7:9D:02:C6:18:86:1A:D4:5B:AF:78:CE:39:02:3C:BC:B4:94:A7:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/C79D02C618861AD45BAF78CE39023CBCB494A7BF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x50CxhiGGtRbr3jOOQI8vLSUp78.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d90a935a-a74d-4b98-9430-bc7ae5c24f28/0/3139332e3234362e352e302f32342d3234203d3e20313939343135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.5.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:61:12:18:c3:80:19:48:3f:a2:03:f9:91:56:94:cb:09:d3:
98:ab:1e:24:75:35:f1:7e:b3:5b:50:89:01:68:0a:e7:43:08:
22:80:1a:d5:55:5b:1f:55:aa:ea:90:66:57:93:1d:5e:65:d4:
ff:05:32:89:67:e4:e8:a7:0e:d0:c9:8e:0a:b3:05:25:e2:94:
85:cd:d2:ac:a7:fa:7e:41:3b:14:4f:f3:a3:7d:4e:1f:ca:32:
84:91:9b:10:9f:b3:27:49:f0:f3:53:7d:c4:f8:22:a2:62:66:
05:2f:ed:8b:10:33:17:7c:68:c2:29:b2:a5:a6:6c:03:f2:56:
a9:59:31:02:7f:4f:4f:48:86:7d:40:fe:aa:fd:97:37:c7:60:
de:2e:eb:f9:13:93:04:7a:d4:66:28:c4:8c:ab:d7:a2:32:e2:
96:3a:1a:48:6b:71:a2:d0:d2:c6:87:bb:ae:54:b5:87:e6:44:
96:2e:24:88:8b:2e:32:9d:8e:f5:5a:fb:36:d5:79:ea:94:86:
28:22:0c:e6:fd:aa:0d:f5:3e:ca:ac:2d:99:f1:a4:5d:35:5c:
b7:0e:21:31:9f:8b:30:fe:51:63:e4:ad:fe:c4:9e:a8:18:17:
5c:70:5d:f7:0b:93:2c:b7:a4:73:c1:c7:f8:9e:cc:2d:f8:a3:
36:d6:52:f7
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUU4uxUWM2SgDzViwGzemxBANav94wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYzc5ZDAyYzYxODg2MWFkNDViYWY3OGNlMzkwMjNjYmNi
NDk0YTdiZjAeFw0yNDA3MTYxNjA0NTVaFw0yNTA3MTUxNjA5NTVaMDMxMTAvBgNV
BAMTKEFGNjQzQzg2OUZCOUQ0MUNENTE1MkEzQjZDNjkyRUQ3RUY1QjI0QzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChYUi+YjgF4L0icEVkYo26JqVe
ekjaQizV0LuCk8cEG6lJwarRP3aJZCaac38faBI0/MPoxmEKlsY+OItUYJ35S/tB
hVDEHSd3lZc3U2cDkTp77p2wOIea9qrgWd2PIA4joGoPsrUGpnA3qLTLkP8sKFz9
iFxAORhpTjPHIqhHCiel8E2ubkiivEYKX9Ky1mkFoOlCTEsxr7KWoGBB4oxuWsOc
Zo4TJQywQU5O7aHcA1+VCuDTaN0g8Ewkp+v55cxSX0oh4miORxcTq8eDgUtZngr4
tOsvwG+Moq/K5eTGWdXoS8Bd4groHy3JrJiUBhCwXP1rxZfp+v3nrZlrwOBhAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUr2Q8hp+51BzVFSo7bGku1+9bJMUwHwYDVR0j
BBgwFoAUx50CxhiGGtRbr3jOOQI8vLSUp78wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZDkwYTkzNWEtYTc0ZC00Yjk4LTk0MzAtYmM3YWU1YzI0
ZjI4LzAvQzc5RDAyQzYxODg2MUFENDVCQUY3OENFMzkwMjNDQkNCNDk0QTdCRi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3g1MEN4aGlHR3RSYnIzak9PUUk4dkxT
VXA3OC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZDkwYTkzNWEt
YTc0ZC00Yjk4LTk0MzAtYmM3YWU1YzI0ZjI4LzAvMzEzOTMzMmUzMjM0MzYyZTM1
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzOTM5MzQzMTM1LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
wfYFMA0GCSqGSIb3DQEBCwUAA4IBAQC6YRIYw4AZSD+iA/mRVpTLCdOYqx4kdTXx
frNbUIkBaArnQwgigBrVVVsfVarqkGZXkx1eZdT/BTKJZ+Topw7QyY4KswUl4pSF
zdKsp/p+QTsUT/OjfU4fyjKEkZsQn7MnSfDzU33E+CKiYmYFL+2LEDMXfGjCKbKl
pmwD8lapWTECf09PSIZ9QP6q/Zc3x2DeLuv5E5MEetRmKMSMq9eiMuKWOhpIa3Gi
0NLGh7uuVLWH5kSWLiSIiy4ynY71Wvs21XnqlIYoIgzm/aoN9T7KrC2Z8aRdNVy3
DiExn4sw/lFj5K3+xJ6oGBdccF33C5Mst6Rzwcf4nswt+KM21lL3
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:50:10 2025 by rpki-client