Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136392e322e302f32342d3234203d3e203230383630.roa
File: 3138352e3136392e322e302f32342d3234203d3e203230383630.roa (raw, json)
Hash identifier: IqOcZsuS9R+EH6PQHtmps/Bh2teXAtgTAlHsfSlylXg=
Subject key identifier: F7:93:F8:95:DA:0F:4A:12:E8:73:D4:8E:73:27:C5:82:AF:E3:B5:AC
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 36CF88DECF7053A260DAA50E3F3C64B90005EDEB
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136392e322e302f32342d3234203d3e203230383630.roa
Signing time: Mon 26 Feb 2024 18:57:19 +0000
ROA not before: Mon 26 Feb 2024 18:52:19 +0000
ROA not after: Mon 24 Feb 2025 18:57:19 +0000
asID: 20860
IP address blocks: 185.169.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:cf:88:de:cf:70:53:a2:60:da:a5:0e:3f:3c:64:b9:00:05:ed:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Feb 26 18:52:19 2024 GMT
Not After : Feb 24 18:57:19 2025 GMT
Subject: CN=F793F895DA0F4A12E873D48E7327C582AFE3B5AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:3a:6d:17:4c:24:f9:85:f1:57:83:f7:35:8a:
dc:67:c9:1d:93:68:67:0f:36:e4:a3:fb:eb:92:5f:
15:dd:95:47:32:48:b3:da:70:a7:5f:e7:38:68:5f:
de:c5:96:ba:6a:8e:c1:d2:c6:2f:fd:77:26:a6:89:
ac:e1:c6:0e:8f:25:3d:a5:ac:d7:56:92:c7:ad:5d:
15:db:7f:4a:cf:8a:82:3a:40:d4:df:58:b8:6c:fc:
d9:bc:16:a3:7e:58:6a:45:fe:cd:48:46:5e:ed:f6:
d6:f6:d8:20:f4:88:2e:d5:bc:5a:1f:10:86:6d:11:
ff:4e:85:ba:d1:eb:6a:e9:db:97:04:c8:3f:9c:dd:
65:7b:0d:10:19:d4:50:50:9f:31:66:65:83:db:fb:
fc:36:0d:28:53:6e:7d:b4:93:1e:dc:e7:22:a4:f6:
0b:72:8f:92:ac:62:b7:8b:86:fd:cb:37:89:88:a6:
bb:8b:ac:63:0f:6f:94:46:99:ee:a8:1a:3e:98:fd:
db:22:30:39:34:6f:7d:4d:6b:eb:84:f5:17:ad:ed:
6c:3a:47:c7:f8:b8:4a:66:2b:8f:b1:7e:f2:db:83:
cb:9a:a3:cc:1f:51:1a:0b:83:53:d9:ce:c9:87:b9:
c7:7f:b0:74:4c:ae:b4:11:37:f2:35:74:24:23:cc:
e5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:93:F8:95:DA:0F:4A:12:E8:73:D4:8E:73:27:C5:82:AF:E3:B5:AC
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3136392e322e302f32342d3234203d3e203230383630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.2.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:f2:5a:86:5e:90:ee:17:f9:b4:d8:e6:08:4d:95:c8:dc:b0:
37:80:79:41:39:70:23:ee:c8:a6:8b:b8:d5:04:c9:c2:e6:df:
d3:6c:e8:62:2f:fc:b3:81:73:26:a1:d7:fd:5b:3e:36:dc:fa:
35:a0:e8:b6:a4:be:9e:9c:61:69:cb:e7:08:fc:29:38:db:57:
fb:a4:0d:42:d6:a5:a5:92:c3:d6:bf:31:57:0a:c2:67:c9:b8:
0e:b1:51:89:ef:e3:c4:e0:d2:ae:2e:b9:f1:2b:4a:26:04:df:
d7:b1:2a:c1:fd:dd:ae:78:c8:6b:1e:b1:a1:f1:45:63:2c:7a:
a2:f0:94:af:8d:8b:dc:5d:c0:57:33:f4:52:b1:3d:74:c4:cc:
20:f5:92:45:1e:44:ac:c9:81:9f:e7:d9:6c:76:8b:be:14:01:
46:5c:5c:de:16:19:85:a4:0d:8b:8e:3d:1f:09:63:87:5f:f0:
46:b9:06:c0:30:cf:0f:2d:19:0f:e0:0e:1e:15:85:54:0d:ae:
f7:c1:3d:03:bd:ec:2a:93:1a:58:23:66:87:36:e2:8c:bd:4e:
2e:24:2d:7d:af:43:db:90:2c:10:c5:dd:bd:37:e9:23:d2:45:
f6:7d:32:8d:9e:6a:e0:2e:af:e9:b6:55:45:b8:e7:c7:6e:09:
8f:90:2a:26
-----BEGIN CERTIFICATE-----
MIIFNjCCBB6gAwIBAgIUNs+I3s9wU6Jg2qUOPzxkuQAF7eswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi
YmUzYTk1OTAeFw0yNDAyMjYxODUyMTlaFw0yNTAyMjQxODU3MTlaMDMxMTAvBgNV
BAMTKEY3OTNGODk1REEwRjRBMTJFODczRDQ4RTczMjdDNTgyQUZFM0I1QUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyOm0XTCT5hfFXg/c1itxnyR2T
aGcPNuSj++uSXxXdlUcySLPacKdf5zhoX97FlrpqjsHSxi/9dyamiazhxg6PJT2l
rNdWksetXRXbf0rPioI6QNTfWLhs/Nm8FqN+WGpF/s1IRl7t9tb22CD0iC7VvFof
EIZtEf9OhbrR62rp25cEyD+c3WV7DRAZ1FBQnzFmZYPb+/w2DShTbn20kx7c5yKk
9gtyj5KsYreLhv3LN4mIpruLrGMPb5RGme6oGj6Y/dsiMDk0b31Na+uE9Ret7Ww6
R8f4uEpmK4+xfvLbg8uao8wfURoLg1PZzsmHucd/sHRMrrQRN/I1dCQjzOXXAgMB
AAGjggJAMIICPDAdBgNVHQ4EFgQU95P4ldoPShLoc9SOcyfFgq/jtawwHwYDVR0j
BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV
HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi
OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1
OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku
cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5
bzd2anFWay5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJz
eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4
YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM4MzUyZTMxMzYz
OTJlMzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzgzNjMwLnJvYTAYBgNV
HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAuakCMA0GCSqGSIb3DQEBCwUAA4IBAQDS8lqGXpDuF/m02OYITZXI3LA3gHlB
OXAj7simi7jVBMnC5t/TbOhiL/yzgXMmodf9Wz423Po1oOi2pL6enGFpy+cI/Ck4
21f7pA1C1qWlksPWvzFXCsJnybgOsVGJ7+PE4NKuLrnxK0omBN/XsSrB/d2ueMhr
HrGh8UVjLHqi8JSvjYvcXcBXM/RSsT10xMwg9ZJFHkSsyYGf59lsdou+FAFGXFze
FhmFpA2Ljj0fCWOHX/BGuQbAMM8PLRkP4A4eFYVUDa73wT0DvewqkxpYI2aHNuKM
vU4uJC19r0PbkCwQxd29N+kj0kX2fTKNnmrgLq/ptlVFuOfHbgmPkCom
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:21 2024 by rpki-client on console-ams.rpki-client.org