Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139332e3136302e3234352e302f32342d3234203d3e20313336373837.roa
File: 3139332e3136302e3234352e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: HVUB/RGvKlV6rlnc/SM7WI35HfEf8uZP9LTv7VfBioA=
Subject key identifier: 30:42:08:3F:65:4B:95:40:1A:88:40:F6:DD:36:7D:94:F9:9E:DA:05
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 6007724E4A81DBAA3E03CBAE9CBEC6E5440DCB6B
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139332e3136302e3234352e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:43 +0000
ROA not before: Fri 27 Dec 2024 11:42:43 +0000
ROA not after: Fri 26 Dec 2025 11:47:43 +0000
asID: 136787
IP address blocks: 193.160.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 14:45:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:07:72:4e:4a:81:db:aa:3e:03:cb:ae:9c:be:c6:e5:44:0d:cb:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:43 2024 GMT
Not After : Dec 26 11:47:43 2025 GMT
Subject: CN=3042083F654B95401A8840F6DD367D94F99EDA05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:65:55:bf:5a:97:28:60:81:5f:f4:43:ef:42:
72:f7:8e:e1:c2:b7:d6:2b:d8:71:e1:28:8e:53:96:
f4:69:21:73:ef:59:19:cb:cf:16:11:93:e9:54:da:
e8:be:c3:06:82:04:9c:2e:cc:73:db:25:9e:48:24:
71:64:7c:b3:7a:6a:3e:5b:94:fe:99:53:4d:21:a5:
79:bd:5a:c0:05:a6:55:42:f5:76:b3:5a:01:3c:c0:
99:89:3f:ba:e4:82:92:0d:1d:9c:d7:87:5f:b8:e5:
28:fe:23:9a:57:73:4c:fd:af:12:68:52:45:20:37:
b3:8a:dd:57:ec:05:c3:80:8d:a8:48:f5:e7:df:38:
ce:c1:c1:84:32:e7:f7:a3:1b:f6:3e:6b:b3:74:fd:
61:cd:d7:15:2c:f6:3d:0f:29:04:35:0d:f0:6a:19:
3f:ca:f6:97:f3:0f:cb:43:51:c0:45:2b:e9:24:05:
bd:fc:74:24:3d:7f:b1:1b:76:b1:80:14:4d:3c:0a:
03:4d:0a:c7:94:fd:84:4e:0e:2e:29:d5:a1:66:5e:
09:82:00:a6:a0:93:88:28:b8:df:7d:68:31:91:55:
5f:eb:ef:53:1d:47:d3:cf:93:62:84:f8:03:e2:3e:
72:ae:a4:ce:27:ee:fc:09:8e:51:15:ad:a1:18:96:
21:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:42:08:3F:65:4B:95:40:1A:88:40:F6:DD:36:7D:94:F9:9E:DA:05
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139332e3136302e3234352e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.245.0/24
Signature Algorithm: sha256WithRSAEncryption
43:4e:28:86:ee:ef:bb:05:40:2c:f5:10:25:39:ab:69:86:99:
a5:ed:b3:b9:2a:f5:74:3b:0a:51:4d:76:08:8e:04:12:82:c7:
7b:64:b5:35:a0:a5:62:f1:a4:65:74:58:25:13:51:4b:ca:d3:
fe:32:ac:91:70:22:d9:26:ef:55:cb:ee:4a:fc:27:7d:dc:cb:
52:97:a1:55:7c:05:89:12:53:c2:8c:48:ab:95:be:c4:35:59:
9b:e6:a1:b8:fd:99:76:91:c6:8c:69:17:8e:89:e8:05:f2:82:
e7:7e:f3:b3:b2:b2:74:56:8b:08:b2:4f:e1:61:fe:bd:29:92:
08:28:ce:8e:f0:a7:6a:3d:24:95:5b:15:f3:05:f3:f5:c7:87:
3b:cf:b8:0e:20:8a:33:1b:39:c1:40:4c:dc:b0:2c:6c:16:95:
81:27:bc:c4:7c:90:87:72:4e:f0:61:41:b6:e4:ca:eb:38:d8:
4a:44:77:75:5e:6c:d8:09:af:00:81:9b:78:a3:7f:1e:ce:92:
fc:55:8a:f0:90:4a:0a:ff:97:99:54:b6:67:8b:4c:dd:1d:95:
17:19:5b:44:cf:4b:0a:1a:aa:1c:87:b9:c1:0d:6b:f0:a3:be:
d9:fd:8d:82:32:64:26:27:fb:9e:0c:53:55:e2:5b:35:21:34:
31:a1:5b:81
-----BEGIN CERTIFICATE-----
MIIFPDCCBCSgAwIBAgIUYAdyTkqB26o+A8uunL7G5UQNy2swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi
YmUzYTk1OTAeFw0yNDEyMjcxMTQyNDNaFw0yNTEyMjYxMTQ3NDNaMDMxMTAvBgNV
BAMTKDMwNDIwODNGNjU0Qjk1NDAxQTg4NDBGNkREMzY3RDk0Rjk5RURBMDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCZVW/WpcoYIFf9EPvQnL3juHC
t9Yr2HHhKI5TlvRpIXPvWRnLzxYRk+lU2ui+wwaCBJwuzHPbJZ5IJHFkfLN6aj5b
lP6ZU00hpXm9WsAFplVC9XazWgE8wJmJP7rkgpINHZzXh1+45Sj+I5pXc0z9rxJo
UkUgN7OK3VfsBcOAjahI9effOM7BwYQy5/ejG/Y+a7N0/WHN1xUs9j0PKQQ1DfBq
GT/K9pfzD8tDUcBFK+kkBb38dCQ9f7EbdrGAFE08CgNNCseU/YRODi4p1aFmXgmC
AKagk4gouN99aDGRVV/r71MdR9PPk2KE+APiPnKupM4n7vwJjlEVraEYliEDAgMB
AAGjggJGMIICQjAdBgNVHQ4EFgQUMEIIP2VLlUAaiED23TZ9lPme2gUwHwYDVR0j
BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV
HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi
OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1
OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku
cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5
bzd2anFWay5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3Jz
eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4
YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM5MzMyZTMxMzYz
MDJlMzIzNDM1MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJv
YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQAwaD1MA0GCSqGSIb3DQEBCwUAA4IBAQBDTiiG7u+7BUAs9RAlOatp
hpml7bO5KvV0OwpRTXYIjgQSgsd7ZLU1oKVi8aRldFglE1FLytP+MqyRcCLZJu9V
y+5K/Cd93MtSl6FVfAWJElPCjEirlb7ENVmb5qG4/Zl2kcaMaReOiegF8oLnfvOz
srJ0VosIsk/hYf69KZIIKM6O8KdqPSSVWxXzBfP1x4c7z7gOIIozGznBQEzcsCxs
FpWBJ7zEfJCHck7wYUG25MrrONhKRHd1XmzYCa8AgZt4o38ezpL8VYrwkEoK/5eZ
VLZni0zdHZUXGVtEz0sKGqoch7nBDWvwo77Z/Y2CMmQmJ/ueDFNV4ls1ITQxoVuB
-----END CERTIFICATE-----
Generated at Sat Apr 5 00:22:29 2025 by rpki-client