Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3134362e31392e38382e302f32342d3234203d3e20313336373837.roa
File: 3134362e31392e38382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: k/16OjibAm+bwJ+FEweKPy7ljijdjCmdtFR4ek+yJxA=
Subject key identifier: 25:68:61:37:38:3E:38:7F:8A:7E:30:C3:B2:C1:3C:CE:D0:A2:22:F3
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 4826DE14F36E7AAC6B339E21331776933BEBFEAB
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3134362e31392e38382e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 22 Dec 2023 07:26:07 +0000
ROA not before: Fri 22 Dec 2023 07:21:07 +0000
ROA not after: Fri 20 Dec 2024 07:26:07 +0000
asID: 136787
IP address blocks: 146.19.88.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:26:de:14:f3:6e:7a:ac:6b:33:9e:21:33:17:76:93:3b:eb:fe:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 22 07:21:07 2023 GMT
Not After : Dec 20 07:26:07 2024 GMT
Subject: CN=25686137383E387F8A7E30C3B2C13CCED0A222F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c7:11:12:fb:a8:74:33:26:9b:3b:77:fb:ea:
bc:f9:db:51:0c:98:b8:e6:ab:d3:ec:9d:e8:fd:d6:
05:c3:9a:f1:9f:67:74:38:ca:8b:e3:d6:2b:b9:3f:
c1:b7:22:12:fa:4c:c3:a2:5a:aa:33:b6:21:ea:0f:
86:85:fc:e5:06:15:5e:a2:93:20:79:dc:49:be:83:
3f:62:13:14:a3:cc:92:53:06:42:6c:83:d8:33:5a:
35:15:95:e4:5f:0d:ae:57:24:6f:c5:02:32:8a:bb:
98:97:55:36:ee:84:83:d9:35:62:62:99:e5:b0:04:
6d:be:81:70:3f:3b:d7:95:3a:d8:39:fc:f8:d5:00:
d5:cb:7f:9c:2a:be:0f:b0:1e:ff:f2:90:d6:1a:91:
b1:1c:54:88:67:a1:e6:e6:1d:e5:17:4e:09:77:f6:
5d:8e:7e:35:d5:79:e5:7c:54:83:21:29:c8:99:1d:
f9:f2:b0:81:a1:0e:16:07:91:46:41:28:55:fa:54:
b8:3b:6b:bd:45:b7:ea:b0:48:e2:38:f3:ba:19:f9:
bb:c3:e2:dc:98:a7:b3:c5:42:a4:8e:eb:05:80:84:
61:58:29:51:2c:fd:a0:89:97:63:f8:4b:f3:6e:fd:
27:19:a5:12:b2:06:c0:64:ff:44:8e:ab:97:8b:6f:
d3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:68:61:37:38:3E:38:7F:8A:7E:30:C3:B2:C1:3C:CE:D0:A2:22:F3
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3134362e31392e38382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.88.0/24
Signature Algorithm: sha256WithRSAEncryption
90:19:8c:38:00:cd:c8:d4:80:26:e5:b0:6b:21:bb:2f:42:25:
0f:f1:00:88:8d:dd:bb:f0:c0:eb:e9:0b:bb:c8:c3:30:95:7e:
c4:b2:9f:81:98:00:9a:ef:60:89:8b:f8:8d:81:a9:6a:b8:3e:
6b:b6:e8:af:00:ae:b1:62:7e:53:85:ca:26:a8:08:e3:c9:ed:
df:e7:8c:96:32:fe:c6:49:07:68:8f:17:7f:ef:e4:ee:5c:33:
54:a8:36:b4:4e:fa:26:28:3e:37:03:d8:a0:88:c4:55:1f:ed:
d6:04:21:77:2a:1d:3c:b0:55:5e:b5:e2:cd:e3:d1:fd:fe:23:
16:fd:37:14:f9:61:1d:82:4b:c8:34:61:e9:e6:97:91:23:62:
48:37:55:6d:62:d5:f8:4c:0d:74:ff:5c:aa:bb:45:b6:49:2b:
ab:86:67:80:3a:74:98:14:3b:b8:df:41:4c:4d:27:56:a0:2b:
da:1b:fa:03:48:0e:74:9e:33:1a:05:d4:84:1e:37:bf:7e:87:
38:de:15:88:07:75:88:cc:e2:7a:f5:36:d9:e5:ee:17:26:be:
38:6d:6a:20:92:a2:ee:2a:2b:1f:43:98:7d:98:73:36:71:2e:
8a:b5:b9:95:9c:df:a1:43:df:f0:61:ef:83:34:3a:05:cc:ea:
18:82:95:57
-----BEGIN CERTIFICATE-----
MIIFODCCBCCgAwIBAgIUSCbeFPNueqxrM54hMxd2kzvr/qswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi
YmUzYTk1OTAeFw0yMzEyMjIwNzIxMDdaFw0yNDEyMjAwNzI2MDdaMDMxMTAvBgNV
BAMTKDI1Njg2MTM3MzgzRTM4N0Y4QTdFMzBDM0IyQzEzQ0NFRDBBMjIyRjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaxxES+6h0MyabO3f76rz521EM
mLjmq9Psnej91gXDmvGfZ3Q4yovj1iu5P8G3IhL6TMOiWqoztiHqD4aF/OUGFV6i
kyB53Em+gz9iExSjzJJTBkJsg9gzWjUVleRfDa5XJG/FAjKKu5iXVTbuhIPZNWJi
meWwBG2+gXA/O9eVOtg5/PjVANXLf5wqvg+wHv/ykNYakbEcVIhnoebmHeUXTgl3
9l2OfjXVeeV8VIMhKciZHfnysIGhDhYHkUZBKFX6VLg7a71Ft+qwSOI487oZ+bvD
4tyYp7PFQqSO6wWAhGFYKVEs/aCJl2P4S/Nu/ScZpRKyBsBk/0SOq5eLb9O9AgMB
AAGjggJCMIICPjAdBgNVHQ4EFgQUJWhhNzg+OH+KfjDDssE8ztCiIvMwHwYDVR0j
BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV
HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi
OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1
OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku
cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5
bzd2anFWay5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3Jz
eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4
YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM0MzYyZTMxMzky
ZTM4MzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBACSE1gwDQYJKoZIhvcNAQELBQADggEBAJAZjDgAzcjUgCblsGshuy9CJQ/x
AIiN3bvwwOvpC7vIwzCVfsSyn4GYAJrvYImL+I2BqWq4Pmu26K8ArrFiflOFyiao
COPJ7d/njJYy/sZJB2iPF3/v5O5cM1SoNrRO+iYoPjcD2KCIxFUf7dYEIXcqHTyw
VV614s3j0f3+Ixb9NxT5YR2CS8g0Yenml5EjYkg3VW1i1fhMDXT/XKq7RbZJK6uG
Z4A6dJgUO7jfQUxNJ1agK9ob+gNIDnSeMxoF1IQeN79+hzjeFYgHdYjM4nr1Ntnl
7hcmvjhtaiCSou4qKx9DmH2YczZxLoq1uZWc36FD3/Bh74M0OgXM6hiClVc=
-----END CERTIFICATE-----
Generated at Wed May 8 20:21:23 2024 by rpki-client on console-fra.rpki-client.org