Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139332e3134322e3230322e302f32342d3332203d3e20313336373837.roa
File: 3139332e3134322e3230322e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: AE+yQgSrZgWIerzqSFN0jAGZY+fJmvtNElE0uysY4yE=
Subject key identifier: 77:76:2E:E4:86:90:F5:1E:97:2E:92:0C:00:17:25:F1:DA:6D:B2:38
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 5A327096DA76B98C1A5F97F8547E9D5D35EB56AF
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139332e3134322e3230322e302f32342d3332203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:34 +0000
ROA not before: Fri 27 Dec 2024 11:42:34 +0000
ROA not after: Fri 26 Dec 2025 11:47:34 +0000
asID: 136787
IP address blocks: 193.142.202.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:32:70:96:da:76:b9:8c:1a:5f:97:f8:54:7e:9d:5d:35:eb:56:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:34 2024 GMT
Not After : Dec 26 11:47:34 2025 GMT
Subject: CN=77762EE48690F51E972E920C001725F1DA6DB238
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:82:4f:e1:5e:d2:b3:05:ec:37:14:48:36:2d:
52:64:f2:9d:d6:0e:06:fa:55:40:62:53:46:c8:26:
38:b6:56:c5:ce:e3:f3:85:d3:65:e4:3c:77:1d:14:
83:56:7f:03:97:e3:49:c1:28:15:ca:9a:73:c9:2e:
2c:90:2c:a2:10:73:08:72:36:0c:99:45:97:12:fd:
f5:cf:cc:4f:fb:d3:6f:78:f2:40:ca:42:b1:e6:58:
8d:5a:3b:c5:3e:a8:26:20:ae:45:3b:2e:5f:0f:e8:
d3:3a:c3:92:cb:88:ed:4e:53:9c:cc:31:ed:64:e5:
d2:87:de:cc:ab:ba:3a:8c:b6:69:01:5a:b5:ba:a6:
16:0f:c0:6f:46:30:c2:43:0c:30:d1:0a:5e:64:bd:
e7:cf:73:b4:84:67:47:4f:3e:25:f9:5b:2f:fa:9d:
a0:e0:5e:ae:c4:ac:f0:ca:f7:75:c6:36:74:39:8f:
3d:d6:38:ca:a9:f4:30:49:33:e3:14:e2:4f:f9:9b:
90:de:05:f1:63:06:5f:4c:fd:6f:73:bd:3a:ba:80:
26:d3:a8:d8:74:a2:b1:ca:f7:6c:91:3f:94:45:bc:
7f:a1:00:7d:90:78:f1:98:a9:de:4d:0c:79:24:7f:
9c:9c:61:46:8e:90:fe:6a:57:fa:27:21:30:43:1d:
6e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:76:2E:E4:86:90:F5:1E:97:2E:92:0C:00:17:25:F1:DA:6D:B2:38
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139332e3134322e3230322e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.202.0/24
Signature Algorithm: sha256WithRSAEncryption
e3:28:89:7d:3a:6f:8a:b0:b1:8a:97:12:68:76:4c:2f:15:fb:
23:79:74:ec:76:d7:22:c5:87:bb:13:01:25:97:db:ce:5a:76:
9f:d7:3d:cc:da:17:79:49:06:8b:2d:69:a2:28:09:3b:96:8b:
76:91:7c:18:2b:a9:73:dd:b1:9d:11:b6:32:7e:cf:50:8d:25:
57:4b:2f:fc:ab:31:69:5f:15:b6:57:61:91:f5:93:5d:ef:3d:
ed:be:81:b4:58:f7:35:47:0f:d1:10:46:70:ac:3f:9c:7d:70:
e8:b1:ff:9a:e4:f4:83:83:78:8b:62:43:b1:73:60:9b:ac:72:
f4:eb:6a:e0:ab:ce:98:8b:50:74:e6:d7:d5:0b:be:fb:2a:f8:
92:d6:45:22:8a:89:8f:0d:7e:10:91:03:28:22:8c:88:0c:39:
dd:29:d0:52:11:39:46:6a:c2:90:de:b4:4b:76:6c:9f:5c:47:
69:7c:f2:9a:91:f2:13:35:45:cf:ea:2d:be:3f:c8:06:9f:0f:
8e:9e:a8:23:31:05:51:c4:ab:0f:db:42:3a:dd:36:61:ee:17:
7c:47:99:04:31:c8:35:23:44:e4:43:17:7c:70:fc:60:4f:e3:
08:55:c1:30:cc:83:bf:9a:05:ff:7d:97:f0:1e:3f:1d:d9:3f:
ad:04:c6:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:51:16 2025 by rpki-client