Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139332e32322e32362e302f32342d3234203d3e20313336373837.roa
File: 3139332e32322e32362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: nvM/9eJlq05BbH+X9gf0wUQic3mG1C8VPlexiWhQpZ4=
Subject key identifier: 82:26:0B:00:36:78:05:FA:F8:54:FF:80:18:0C:75:89:69:3E:FB:8D
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 56CF7151E33FED14C63618A4F9ED3EED67EC87FA
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139332e32322e32362e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:40 +0000
ROA not before: Fri 27 Dec 2024 11:42:40 +0000
ROA not after: Fri 26 Dec 2025 11:47:40 +0000
asID: 136787
IP address blocks: 193.22.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 14:45:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:cf:71:51:e3:3f:ed:14:c6:36:18:a4:f9:ed:3e:ed:67:ec:87:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:40 2024 GMT
Not After : Dec 26 11:47:40 2025 GMT
Subject: CN=82260B00367805FAF854FF80180C7589693EFB8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:25:22:2e:dd:89:7f:93:a1:a9:51:d4:f7:95:
4a:a8:75:93:93:c7:56:23:96:1b:ec:ba:fb:c6:35:
c4:c1:b6:ac:0d:d7:fd:22:02:d9:cb:0f:e0:95:a2:
32:93:74:7d:ae:14:11:89:16:c2:77:81:e4:9a:e3:
02:59:fd:3c:f2:4c:92:1d:fd:4e:84:45:ef:7a:4b:
6b:3e:95:62:5a:97:ec:0d:d0:39:e4:76:84:b8:3c:
fb:bf:91:08:5a:2b:24:ce:db:86:93:50:4d:d4:70:
0f:30:54:c8:3b:46:4f:5a:df:c9:a0:d6:b5:84:9c:
a8:b6:9b:aa:c9:e1:c3:cc:69:93:c5:e2:37:7b:78:
01:41:48:a3:99:f9:2a:18:e9:77:e7:dd:ea:2d:0e:
c2:7c:9f:c1:d5:fd:e3:ee:fa:58:08:a2:a5:dc:6d:
6c:cc:20:a4:a6:4b:3f:ea:96:57:00:01:e0:02:27:
32:b0:5f:1f:45:1d:8a:41:cb:09:9a:28:21:59:64:
3e:78:08:e9:c5:55:7c:9d:88:9c:8d:e7:38:d0:4f:
1e:fd:56:a0:fb:33:6e:64:13:68:99:77:ee:56:80:
5e:38:5b:ae:f4:fe:bc:6d:b8:17:f4:47:28:7d:9d:
ff:70:2c:aa:44:a9:03:e3:54:5f:8f:3c:8d:03:36:
f7:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:26:0B:00:36:78:05:FA:F8:54:FF:80:18:0C:75:89:69:3E:FB:8D
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139332e32322e32362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.26.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:b7:cf:36:a2:30:7e:6a:31:77:01:27:01:2c:98:d9:d6:27:
d1:26:f9:cc:21:86:ec:82:36:72:60:5c:8e:32:36:75:dc:bf:
e0:c6:91:a0:b3:55:e6:96:c1:05:05:f0:2b:d7:89:aa:0e:1e:
5e:cd:fd:c8:36:2b:07:a0:89:f1:94:00:08:16:34:3b:d3:6e:
be:35:9a:d7:13:c9:1f:61:41:b6:9c:0e:49:b2:a0:cb:ab:bd:
71:fa:2f:86:b5:d8:27:b5:44:47:71:da:14:57:cb:f8:f1:2d:
01:13:a0:f6:98:ca:e2:a6:68:e8:9a:f7:cc:ef:af:4a:9a:f7:
85:7b:da:c3:50:8b:bf:dd:72:25:17:31:33:a1:2b:f2:63:a2:
b1:bd:14:2c:21:88:0e:4e:7a:7a:cd:09:be:52:b8:72:71:52:
1e:bb:51:4c:09:69:d4:42:9b:63:7a:dd:bf:3a:5e:c7:d9:50:
e5:12:28:ea:33:c0:94:88:f8:9f:aa:ab:f8:c6:33:07:3a:84:
09:64:6d:2c:ff:2e:20:07:5e:2a:82:60:11:76:45:a7:a7:f7:
43:a8:f9:bf:d4:f8:69:53:02:cb:6e:00:9b:fc:c1:d6:e9:9b:
27:e9:b2:a2:f4:d5:02:24:0f:50:cf:94:89:ef:3a:f0:7f:23:
70:ee:8f:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:59:36 2025 by rpki-client