Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133372e302f32342d3234203d3e20333939363431.roa
File: 37372e38312e3133372e302f32342d3234203d3e20333939363431.roa (raw, json)
Hash identifier: NZcAKMAEu2FS5Zqz0hBFL7Zpu38dDC8QIhg4PJE0Lh4=
Subject key identifier: BD:26:1A:AC:B7:EB:B1:C0:79:6D:34:21:B8:A4:38:46:19:63:86:92
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 08BC411F5E5099585D1A41C194595AD7F51E65C0
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133372e302f32342d3234203d3e20333939363431.roa
Signing time: Fri 04 Oct 2024 20:43:22 +0000
ROA not before: Fri 04 Oct 2024 20:38:22 +0000
ROA not after: Fri 03 Oct 2025 20:43:22 +0000
asID: 399641
IP address blocks: 77.81.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:bc:41:1f:5e:50:99:58:5d:1a:41:c1:94:59:5a:d7:f5:1e:65:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Oct 4 20:38:22 2024 GMT
Not After : Oct 3 20:43:22 2025 GMT
Subject: CN=BD261AACB7EBB1C0796D3421B8A4384619638692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:63:f8:a9:4d:5d:99:ce:c4:b2:34:63:ff:f4:
58:2b:54:a6:3f:7b:82:5c:e0:80:cf:98:d7:ff:2a:
41:f6:77:50:6f:52:67:f1:04:8c:92:53:49:a4:1f:
3d:30:4a:27:24:f8:6c:7f:b4:38:35:51:57:08:8f:
db:e3:1e:77:bf:8d:2e:c9:fa:bb:d0:b8:cd:26:c4:
c0:a3:db:71:17:5c:6c:a0:10:ff:93:de:4e:53:3f:
a9:a6:6b:02:aa:fb:9c:0b:4d:75:a2:df:7a:b7:2b:
b8:90:1a:be:fb:9b:01:9f:63:92:73:b9:b1:0c:c1:
80:72:78:28:d4:e6:5a:7b:4b:8d:07:21:66:a8:d6:
b5:74:17:a6:37:76:c6:42:92:cc:3a:d4:05:03:c3:
dd:29:e8:ce:62:18:79:16:ff:6a:12:20:99:0d:1c:
ad:a2:bd:2b:d7:4c:bc:6e:15:bd:b5:ec:4b:45:76:
68:3f:da:b1:e1:ee:8a:49:c0:8e:de:61:69:7c:ec:
35:98:a0:fc:9c:03:45:f4:cd:90:47:8e:94:e1:29:
b0:cf:b5:9b:7e:63:70:9d:11:6b:8b:83:99:ac:4d:
9e:ab:ff:14:15:37:40:f8:8e:8a:b4:71:7b:88:10:
9b:39:ef:93:fb:b8:b5:83:7e:37:e8:18:61:08:83:
62:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:26:1A:AC:B7:EB:B1:C0:79:6D:34:21:B8:A4:38:46:19:63:86:92
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133372e302f32342d3234203d3e20333939363431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.137.0/24
Signature Algorithm: sha256WithRSAEncryption
48:60:b4:89:63:75:78:91:8b:c7:9a:f9:e8:3f:8a:81:4b:ba:
13:b1:38:7b:e6:2c:63:c3:64:36:26:8b:f0:b4:25:11:d3:72:
8f:a4:90:e3:b4:2e:10:33:d3:9a:85:5a:c2:e4:5e:e9:9b:07:
c3:c8:bd:ee:71:da:c1:8d:48:07:38:05:0d:59:f2:6d:3e:0d:
fa:cf:c1:89:65:bb:2b:c7:da:f5:c6:35:23:ad:c7:ed:0b:cb:
49:f8:5b:e8:3c:20:7c:db:1d:5b:b2:34:c1:76:3e:92:06:8a:
23:5a:e9:43:09:37:0a:e0:9a:4a:1a:b3:37:c7:74:8a:5c:1e:
76:ac:fc:d8:06:b4:60:54:2d:ad:ce:3a:10:7f:db:4a:bb:42:
a1:45:4c:1b:44:6d:f8:62:af:f6:69:0c:ce:cc:d8:dc:3c:ce:
2e:2d:f9:28:20:2e:ba:4c:a3:f4:47:05:06:a2:1c:ef:be:05:
24:4d:b4:60:59:30:72:84:92:04:c3:64:0f:8b:26:12:7e:0f:
de:34:b8:1f:47:f3:61:fc:f5:e0:bd:8a:c1:15:e5:fe:70:4a:
ca:7f:90:d5:9a:3e:81:7f:1a:47:2d:54:7c:b6:71:d3:2b:cc:
2b:b0:fd:98:27:1b:99:ec:15:bc:27:b7:8b:ea:7c:c1:01:6a:
8c:dc:96:74
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUCLxBH15QmVhdGkHBlFla1/UeZcAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZWQ5ZWRiMmExNTg3MTc4NWZiYWUzOGUyM2MzODgyMGRi
ZmEyY2NhNDAeFw0yNDEwMDQyMDM4MjJaFw0yNTEwMDMyMDQzMjJaMDMxMTAvBgNV
BAMTKEJEMjYxQUFDQjdFQkIxQzA3OTZEMzQyMUI4QTQzODQ2MTk2Mzg2OTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZY/ipTV2ZzsSyNGP/9FgrVKY/
e4Jc4IDPmNf/KkH2d1BvUmfxBIySU0mkHz0wSick+Gx/tDg1UVcIj9vjHne/jS7J
+rvQuM0mxMCj23EXXGygEP+T3k5TP6mmawKq+5wLTXWi33q3K7iQGr77mwGfY5Jz
ubEMwYByeCjU5lp7S40HIWao1rV0F6Y3dsZCksw61AUDw90p6M5iGHkW/2oSIJkN
HK2ivSvXTLxuFb217EtFdmg/2rHh7opJwI7eYWl87DWYoPycA0X0zZBHjpThKbDP
tZt+Y3CdEWuLg5msTZ6r/xQVN0D4joq0cXuIEJs575P7uLWDfjfoGGEIg2K/AgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUvSYarLfrscB5bTQhuKQ4RhljhpIwHwYDVR0j
BBgwFoAU7Z7bKhWHF4X7rjjiPDiCDb+izKQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZWEwZGU5N2YtN2VlOC00Y2UwLWIwNDUtZWZhYzhjMjQz
Yzc5LzAvRUQ5RURCMkExNTg3MTc4NUZCQUUzOEUyM0MzODgyMERCRkEyQ0NBNC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzdaN2JLaFdIRjRYN3JqamlQRGlDRGIt
aXpLUS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZWEwZGU5N2Yt
N2VlOC00Y2UwLWIwNDUtZWZhYzhjMjQzYzc5LzAvMzczNzJlMzgzMTJlMzEzMzM3
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzMzOTM5MzYzNDMxLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
TVGJMA0GCSqGSIb3DQEBCwUAA4IBAQBIYLSJY3V4kYvHmvnoP4qBS7oTsTh75ixj
w2Q2JovwtCUR03KPpJDjtC4QM9OahVrC5F7pmwfDyL3ucdrBjUgHOAUNWfJtPg36
z8GJZbsrx9r1xjUjrcftC8tJ+FvoPCB82x1bsjTBdj6SBoojWulDCTcK4JpKGrM3
x3SKXB52rPzYBrRgVC2tzjoQf9tKu0KhRUwbRG34Yq/2aQzOzNjcPM4uLfkoIC66
TKP0RwUGohzvvgUkTbRgWTByhJIEw2QPiyYSfg/eNLgfR/Nh/PXgvYrBFeX+cErK
f5DVmj6BfxpHLVR8tnHTK8wrsP2YJxuZ7BW8J7eL6nzBAWqM3JZ0
-----END CERTIFICATE-----
Generated at Mon Nov 25 19:59:02 2024 by rpki-client on console-ams.rpki-client.org