Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139332e32322e32342e302f32342d3234203d3e20313336373837.roa
File: 3139332e32322e32342e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: b0GO3NuXzA3mb9iSw9/UTp5wM4nBOZ3bQ/FX0xijWtI=
Subject key identifier: 1E:84:43:94:09:5F:37:33:6B:CD:E8:D0:97:70:F9:C4:D5:2C:90:07
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 2278815F83D4218B4B3C09691605A0912597FCA9
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139332e32322e32342e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:42 +0000
ROA not before: Fri 27 Dec 2024 11:42:42 +0000
ROA not after: Fri 26 Dec 2025 11:47:42 +0000
asID: 136787
IP address blocks: 193.22.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 10 Apr 2025 14:13:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:78:81:5f:83:d4:21:8b:4b:3c:09:69:16:05:a0:91:25:97:fc:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:42 2024 GMT
Not After : Dec 26 11:47:42 2025 GMT
Subject: CN=1E844394095F37336BCDE8D09770F9C4D52C9007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:25:47:9d:0e:30:74:3f:f4:82:3b:13:ac:57:
9f:aa:35:57:8e:06:0d:6f:c6:5f:fe:7d:32:77:76:
35:1d:97:4d:44:ec:ea:c7:00:b0:f9:85:68:35:ff:
18:0a:71:38:cd:49:42:9d:0f:88:05:8e:7a:40:80:
35:17:5e:25:82:73:3e:d7:2b:c6:76:ba:c6:1f:05:
4a:ab:b3:bb:dc:93:ec:06:af:4e:2c:f9:1c:8c:d2:
51:07:00:fa:57:95:2d:0e:fb:ba:64:a3:a3:a9:9b:
b5:90:8c:c4:57:ea:97:7f:98:29:b7:05:50:82:74:
0f:74:b1:89:24:6c:34:60:f1:69:09:e2:fa:e9:bd:
69:f0:a1:ae:b8:b8:93:ca:11:a0:22:ef:e1:bc:cd:
73:2f:02:f0:e7:8e:ac:f4:de:fb:9d:a2:04:48:28:
ab:f0:f3:73:b1:e3:28:9a:d5:75:6b:08:f7:80:31:
e6:1a:e6:73:de:02:7a:9f:c4:c7:1d:8b:f5:6f:43:
8d:c3:fa:2a:50:1d:87:84:e6:4e:c3:3f:d4:69:89:
e1:b4:ef:c4:50:7d:5a:19:f4:d5:cf:ad:42:c1:33:
f5:57:d0:85:70:a0:c8:48:70:e1:a1:4c:72:81:7d:
8b:be:16:9d:9d:7d:6a:de:cd:7c:fa:a4:67:a3:bf:
f9:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:84:43:94:09:5F:37:33:6B:CD:E8:D0:97:70:F9:C4:D5:2C:90:07
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139332e32322e32342e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.24.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:21:ac:6d:f7:be:9c:70:63:ab:e0:69:60:ba:05:b0:d8:e4:
3d:ae:14:b1:15:4f:76:91:07:ca:75:f5:7b:89:3c:22:e0:e3:
80:bb:76:fb:c8:fd:2f:df:ab:a7:7b:e0:c6:3a:fc:32:b4:c6:
ea:02:cc:49:c5:97:7c:60:46:9a:1d:ec:8a:dd:e5:6e:c0:9c:
d0:e9:6f:f6:65:d7:5e:5c:ef:f6:a4:d8:74:64:8a:b0:33:1e:
a2:a2:4c:1d:7d:76:fe:20:fe:9f:ae:f9:c6:8d:6b:1d:cf:83:
fc:f4:2c:f0:80:9e:39:6f:80:e9:fa:6e:79:59:64:53:cc:96:
c9:a5:b6:ce:61:ee:fa:55:4e:61:b5:64:c3:21:5c:2e:a5:66:
d2:c5:20:e8:12:93:b9:3c:90:1c:0a:2b:1d:fe:6b:11:2b:19:
7c:3a:9e:98:1f:91:06:9d:7f:db:5f:dc:e7:11:5c:d8:45:a0:
c2:90:92:1b:89:f2:bd:93:84:c6:c9:a5:7a:aa:7f:46:96:3f:
08:2e:a3:81:f7:bf:9e:d0:00:80:cd:ca:31:a4:36:e3:1a:5b:
b6:4f:fb:dc:85:70:f9:dc:01:d9:7d:2c:48:df:b5:06:b6:6f:
fe:f6:f9:bd:a5:06:22:2d:1c:dd:17:4b:ba:f8:0f:50:a0:f2:
26:a5:b2:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 20:35:31 2025 by rpki-client