Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3137322e35352e302f32342d3234203d3e20313336373837.roa
File: 3138352e3137322e35352e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 3dVelz7BWyEODxBoB2vjISFlIvJ7nID3V+DZaHlSHqY=
Subject key identifier: ED:A7:7B:E6:13:73:03:85:0F:F0:8D:45:77:4D:39:6E:77:D9:DC:E1
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 06FF4F04FE1773A7EF4F584A7FAB900D6113AF25
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3137322e35352e302f32342d3234203d3e20313336373837.roa
Signing time: Sat 02 Mar 2024 21:54:33 +0000
ROA not before: Sat 02 Mar 2024 21:49:33 +0000
ROA not after: Sat 01 Mar 2025 21:54:33 +0000
asID: 136787
IP address blocks: 185.172.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:ff:4f:04:fe:17:73:a7:ef:4f:58:4a:7f:ab:90:0d:61:13:af:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Mar 2 21:49:33 2024 GMT
Not After : Mar 1 21:54:33 2025 GMT
Subject: CN=EDA77BE6137303850FF08D45774D396E77D9DCE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:78:51:4e:9c:a6:5d:5b:73:27:a8:9f:57:15:
3a:a0:8d:d8:e4:12:61:50:58:ba:56:18:c1:c0:c6:
d8:fb:ff:9e:56:a1:6c:6a:20:68:65:0f:6b:fd:35:
92:21:c0:69:1e:7f:fb:10:c4:64:81:87:75:46:13:
1a:45:3a:6f:74:c9:d4:23:e2:55:4e:d3:09:d3:9c:
74:7a:33:45:f3:16:b9:db:82:83:29:c7:49:bf:f2:
d3:dc:0f:34:f7:f8:69:94:8d:ca:7b:be:b1:a1:ba:
22:90:e0:3b:8f:6f:46:bd:dc:00:66:cb:51:21:d3:
8b:a9:58:62:c8:b1:c8:4a:2d:72:b1:29:9e:37:a1:
8d:d2:ed:d8:ae:9a:57:bc:5b:0f:d0:92:90:61:cd:
d9:25:ef:cb:5b:5b:a6:35:d2:da:65:b3:f8:46:52:
ed:96:06:f7:04:6d:48:56:ac:72:a0:31:62:66:96:
c5:7a:b3:2e:52:c6:b8:04:99:5a:55:ee:68:75:bf:
d3:8e:a8:45:ac:73:18:9b:21:8a:49:42:b8:6a:d0:
3a:95:8a:f1:e1:c6:08:dd:40:57:b2:68:4f:2a:38:
75:89:b2:12:84:96:60:13:35:84:7c:10:f9:7f:49:
cb:7b:3c:16:67:cb:db:ef:b5:ff:14:ae:6d:9c:2a:
4f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:A7:7B:E6:13:73:03:85:0F:F0:8D:45:77:4D:39:6E:77:D9:DC:E1
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3137322e35352e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.55.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:7a:bb:21:5d:44:f8:9e:79:5a:80:6a:d7:97:cb:2e:d6:3b:
e9:08:10:75:2f:38:12:e4:77:5e:ad:3a:25:2b:f1:12:32:51:
8f:eb:ee:40:11:8f:52:14:78:ee:76:00:be:4c:08:16:35:91:
e8:42:c9:8a:90:03:e5:1c:42:47:fe:0b:2d:cf:c4:cb:2f:1c:
db:a8:1c:ac:fe:02:a4:28:23:08:a1:c5:b3:79:63:e9:7a:47:
b1:4c:3c:9d:5f:97:17:9a:f4:69:a5:e1:5d:ef:c1:ac:18:b5:
1a:4d:eb:47:fa:a6:5f:80:64:0c:90:e5:b9:10:34:7e:7e:9e:
47:a1:0b:4a:dd:73:63:1b:83:e6:e9:24:b5:87:b1:b4:b1:8e:
de:00:6d:79:e5:22:11:40:4c:bb:d2:a2:d6:d6:fc:d3:ff:7a:
e1:74:cb:c3:bc:b4:0c:7e:52:fb:ff:94:a7:ae:8c:c0:d9:bd:
d4:e7:9f:7a:55:1f:1c:3b:bb:2c:1c:9e:58:bb:cb:50:c1:1d:
5e:a5:6f:4d:1a:73:29:fc:00:56:05:d2:b3:5a:7b:45:9c:a5:
51:f5:c2:4a:b3:99:39:05:6d:6d:d0:c3:79:65:38:4f:76:c0:
1b:5f:c9:02:9d:10:f7:10:f7:b1:a0:14:5a:85:72:a4:a2:06:
13:58:26:bb
-----BEGIN CERTIFICATE-----
MIIFOjCCBCKgAwIBAgIUBv9PBP4Xc6fvT1hKf6uQDWETryUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi
YmUzYTk1OTAeFw0yNDAzMDIyMTQ5MzNaFw0yNTAzMDEyMTU0MzNaMDMxMTAvBgNV
BAMTKEVEQTc3QkU2MTM3MzAzODUwRkYwOEQ0NTc3NEQzOTZFNzdEOURDRTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCceFFOnKZdW3MnqJ9XFTqgjdjk
EmFQWLpWGMHAxtj7/55WoWxqIGhlD2v9NZIhwGkef/sQxGSBh3VGExpFOm90ydQj
4lVO0wnTnHR6M0XzFrnbgoMpx0m/8tPcDzT3+GmUjcp7vrGhuiKQ4DuPb0a93ABm
y1Eh04upWGLIschKLXKxKZ43oY3S7diumle8Ww/QkpBhzdkl78tbW6Y10tpls/hG
Uu2WBvcEbUhWrHKgMWJmlsV6sy5SxrgEmVpV7mh1v9OOqEWscxibIYpJQrhq0DqV
ivHhxgjdQFeyaE8qOHWJshKElmATNYR8EPl/Sct7PBZny9vvtf8Urm2cKk+rAgMB
AAGjggJEMIICQDAdBgNVHQ4EFgQU7ad75hNzA4UP8I1Fd005bnfZ3OEwHwYDVR0j
BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV
HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi
OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1
OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku
cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5
bzd2anFWay5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJz
eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4
YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM4MzUyZTMxMzcz
MjJlMzUzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM3MzgzNy5yb2Ew
GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEALmsNzANBgkqhkiG9w0BAQsFAAOCAQEAp3q7IV1E+J55WoBq15fLLtY7
6QgQdS84EuR3Xq06JSvxEjJRj+vuQBGPUhR47nYAvkwIFjWR6ELJipAD5RxCR/4L
Lc/Eyy8c26gcrP4CpCgjCKHFs3lj6XpHsUw8nV+XF5r0aaXhXe/BrBi1Gk3rR/qm
X4BkDJDluRA0fn6eR6ELSt1zYxuD5ukktYextLGO3gBteeUiEUBMu9Ki1tb80/96
4XTLw7y0DH5S+/+Up66MwNm91OefelUfHDu7LByeWLvLUMEdXqVvTRpzKfwAVgXS
s1p7RZylUfXCSrOZOQVtbdDDeWU4T3bAG1/JAp0Q9xD3saAUWoVypKIGE1gmuw==
-----END CERTIFICATE-----
Generated at Tue May 7 21:49:14 2024 by rpki-client on console-ams.rpki-client.org