Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3131302e38362e302f32342d3234203d3e20313336373837.roa
File: 3139342e3131302e38362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: No74s1C5qPx35URtG2rSy45EqjyEAZYOasFAEpNwP7w=
Subject key identifier: 75:63:15:91:96:9E:C7:44:AB:C1:C3:83:4F:3D:AB:04:4E:10:6A:2C
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 7D95F1B10430CEAE2C7BEB51C500502DC81010D8
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3131302e38362e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:07 +0000
ROA not before: Fri 27 Dec 2024 11:42:07 +0000
ROA not after: Fri 26 Dec 2025 11:47:07 +0000
asID: 136787
IP address blocks: 194.110.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:95:f1:b1:04:30:ce:ae:2c:7b:eb:51:c5:00:50:2d:c8:10:10:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:07 2024 GMT
Not After : Dec 26 11:47:07 2025 GMT
Subject: CN=75631591969EC744ABC1C3834F3DAB044E106A2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f4:6f:8c:af:7d:d6:7e:03:86:50:20:1c:04:
01:24:51:3a:21:24:99:21:c3:dd:f1:94:ee:9e:d7:
26:37:dc:24:35:bb:82:d2:86:f6:4c:a3:1d:e6:6b:
c9:15:b3:0b:26:2d:1d:a6:bf:f5:8f:02:fd:fa:02:
d2:b5:61:45:7c:02:5f:c4:3a:e5:5f:be:0f:58:b1:
12:1a:ee:5b:93:67:bc:76:72:6f:bb:9e:6b:6f:54:
f2:b9:58:d1:81:55:ef:ab:d4:42:f1:71:df:28:71:
a2:dd:eb:41:da:ee:e5:51:72:44:96:06:df:9d:33:
5d:0d:0f:16:9e:e1:b6:e8:25:4e:3d:ad:34:8b:78:
5e:37:7e:9d:90:5f:c8:36:55:03:38:46:4e:b7:eb:
6f:91:46:30:87:3f:74:33:0c:66:36:7b:f2:bb:ca:
fc:69:fb:aa:f3:a2:3d:bc:94:8e:05:5c:b0:0f:03:
46:3e:dc:e3:98:93:38:48:c3:86:83:b6:68:22:8f:
a9:30:da:a4:c7:a6:f5:69:31:54:61:99:c1:fb:84:
0c:38:62:14:65:b6:c0:b0:22:2a:86:01:10:91:da:
9b:23:da:d4:21:b3:98:ae:2d:24:8d:b7:62:cf:42:
d0:8f:ee:f0:8a:d1:65:5c:fc:1d:d2:5c:72:a6:9b:
f4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:63:15:91:96:9E:C7:44:AB:C1:C3:83:4F:3D:AB:04:4E:10:6A:2C
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3131302e38362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.86.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:99:db:f6:7f:4c:c4:95:8e:14:a9:00:3c:e9:b4:2e:c9:9d:
d6:52:ca:ee:50:f8:87:58:7a:6d:72:d4:ed:82:73:3b:48:23:
96:ed:20:8e:58:b3:f1:45:74:28:b5:1c:b2:0a:a1:8e:69:af:
7b:66:f5:81:bc:16:49:88:17:e3:61:99:bf:33:65:4d:ee:0e:
bd:a0:04:56:37:37:5e:c6:c4:31:18:8f:76:51:aa:83:cb:2d:
58:83:01:77:50:aa:7a:eb:76:27:a3:c5:c4:e0:2a:cd:31:b8:
50:f8:40:f2:a6:3d:58:2a:a8:2c:12:45:99:7a:fc:c4:bc:ae:
d9:f5:55:11:e5:6d:33:38:8b:96:94:a5:12:4e:17:a4:0e:3a:
39:46:20:af:d9:fe:81:55:65:be:74:61:e9:99:71:80:a8:0b:
c8:53:93:70:a1:4c:dc:d6:93:8f:6a:3d:e3:3f:1e:03:53:dd:
bd:c4:10:30:38:51:a9:ec:c4:7a:12:57:07:04:1e:80:10:78:
36:83:5b:4a:5a:c6:6f:e5:eb:6a:ed:47:d2:8f:fe:b3:71:8c:
38:3e:4a:11:17:c1:7d:74:aa:b3:0c:c5:d8:a8:af:48:89:fc:
e9:15:bc:30:71:6a:b3:d2:c5:17:30:f0:76:ec:dc:ae:4f:2c:
3d:45:86:fb
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 08:51:15 2025 by rpki-client