Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3138302e3137372e302f32342d3332203d3e20313431393935.roa
File: 3139342e3138302e3137372e302f32342d3332203d3e20313431393935.roa (raw, json)
Hash identifier: P4UyxENezk2bTR+yVKx2wzCtFhUEhmDpx6jcNUkcUDI=
Subject key identifier: 8F:48:AD:6F:7B:BB:38:A9:62:55:A2:7C:3E:66:0E:6B:7E:AE:59:C3
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 57EA9E3D9DFD44FF653EC6DD05ED8EE9DAB26DA1
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3138302e3137372e302f32342d3332203d3e20313431393935.roa
Signing time: Fri 20 Dec 2024 15:23:36 +0000
ROA not before: Fri 20 Dec 2024 15:18:36 +0000
ROA not after: Fri 19 Dec 2025 15:23:36 +0000
asID: 141995
IP address blocks: 194.180.177.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 09 Mar 2025 13:42:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:ea:9e:3d:9d:fd:44:ff:65:3e:c6:dd:05:ed:8e:e9:da:b2:6d:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 20 15:18:36 2024 GMT
Not After : Dec 19 15:23:36 2025 GMT
Subject: CN=8F48AD6F7BBB38A96255A27C3E660E6B7EAE59C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:69:6a:4b:26:8a:2e:69:91:fd:84:59:e6:c8:
5d:66:ad:01:bc:47:81:6d:f4:49:73:8f:b1:4d:46:
93:2d:92:3c:76:42:0b:d0:ba:00:d8:fb:27:9a:da:
22:6c:eb:63:7e:79:e7:63:93:ae:4f:83:eb:bb:23:
74:a3:d6:84:c7:b7:36:5f:45:5e:22:6c:87:35:6a:
f3:06:81:74:1e:fa:e0:d6:61:19:c1:c8:03:53:74:
3e:4f:ff:2c:aa:d7:1f:cf:d2:95:7a:46:54:4d:2d:
85:3d:61:81:12:17:3e:1a:c4:94:3c:20:35:48:d6:
cd:f8:2a:ff:7f:ae:79:df:fc:e7:b4:d6:ff:37:0a:
3a:2a:80:aa:32:b7:3f:8a:9d:82:3d:be:bf:88:21:
17:a1:bd:b7:d5:7f:9b:51:8f:8c:b4:43:3b:0e:c7:
95:4b:21:f8:48:6c:3b:69:b0:fa:68:5f:b9:fa:40:
e7:9b:b3:f3:44:7f:e1:05:7a:d3:9e:89:53:31:36:
69:f7:2c:7b:75:92:d0:c1:98:c5:62:cb:fe:db:7e:
52:6e:dd:90:1a:7c:f2:32:fb:a1:7f:95:f9:25:03:
e9:43:e6:ad:bb:da:4c:79:72:2b:3e:3b:bb:1f:10:
91:c0:11:bb:3f:c6:79:09:fd:f0:17:5c:5b:8b:b0:
16:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:48:AD:6F:7B:BB:38:A9:62:55:A2:7C:3E:66:0E:6B:7E:AE:59:C3
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3138302e3137372e302f32342d3332203d3e20313431393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.177.0/24
Signature Algorithm: sha256WithRSAEncryption
30:f7:43:91:8e:97:49:36:ef:f0:a9:5e:5b:6b:b3:3d:4b:ad:
37:28:01:25:99:7c:5d:92:b7:d5:3b:fb:0d:fb:5e:ef:2f:95:
6c:5c:a1:61:32:18:6f:6e:32:62:dc:56:a3:9f:58:ff:28:cc:
2b:e9:91:2f:7f:f9:a8:21:3a:30:54:37:f9:27:1c:ee:8c:70:
e0:a3:dc:a1:9d:49:3f:5d:f3:8e:33:e4:20:28:82:33:1a:ce:
3f:45:ea:5d:b4:cd:0e:1b:38:f9:0b:d3:b0:c8:42:8a:8f:b5:
c7:35:7e:68:c2:cd:60:3e:53:7c:d3:8c:e0:17:7a:6a:da:7b:
9b:5f:ff:ad:26:7f:8c:78:2f:98:91:d0:48:fe:27:42:96:76:
f4:cc:00:c1:4c:f7:40:3a:6a:48:09:ae:44:61:60:01:cd:48:
fe:c3:1a:23:30:e6:2b:9a:a2:de:b3:4a:aa:22:7b:bd:ad:4c:
0c:8c:85:c3:45:30:b2:b5:b3:33:33:09:15:78:15:ea:69:e7:
fd:05:2e:0c:81:2a:f6:b2:1f:aa:8e:46:fb:9c:b6:99:9a:50:
2b:b8:64:b4:b9:69:35:3c:e1:de:2d:04:3a:5d:3e:c4:99:4b:
e9:aa:f2:e8:ec:f3:9c:e1:2c:f7:d3:e0:6e:a9:28:a4:99:93:
8c:8d:c9:f9
-----BEGIN CERTIFICATE-----
MIIFPDCCBCSgAwIBAgIUV+qePZ39RP9lPsbdBe2O6dqybaEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi
YmUzYTk1OTAeFw0yNDEyMjAxNTE4MzZaFw0yNTEyMTkxNTIzMzZaMDMxMTAvBgNV
BAMTKDhGNDhBRDZGN0JCQjM4QTk2MjU1QTI3QzNFNjYwRTZCN0VBRTU5QzMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpaWpLJoouaZH9hFnmyF1mrQG8
R4Ft9Elzj7FNRpMtkjx2QgvQugDY+yea2iJs62N+eedjk65Pg+u7I3Sj1oTHtzZf
RV4ibIc1avMGgXQe+uDWYRnByANTdD5P/yyq1x/P0pV6RlRNLYU9YYESFz4axJQ8
IDVI1s34Kv9/rnnf/Oe01v83CjoqgKoytz+KnYI9vr+IIRehvbfVf5tRj4y0QzsO
x5VLIfhIbDtpsPpoX7n6QOebs/NEf+EFetOeiVMxNmn3LHt1ktDBmMViy/7bflJu
3ZAafPIy+6F/lfklA+lD5q272kx5cis+O7sfEJHAEbs/xnkJ/fAXXFuLsBbBAgMB
AAGjggJGMIICQjAdBgNVHQ4EFgQUj0itb3u7OKliVaJ8PmYOa36uWcMwHwYDVR0j
BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV
HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi
OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1
OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku
cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5
bzd2anFWay5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3Jz
eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4
YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM5MzQyZTMxMzgz
MDJlMzEzNzM3MmUzMDJmMzIzNDJkMzMzMjIwM2QzZTIwMzEzNDMxMzkzOTM1LnJv
YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQAwrSxMA0GCSqGSIb3DQEBCwUAA4IBAQAw90ORjpdJNu/wqV5ba7M9
S603KAElmXxdkrfVO/sN+17vL5VsXKFhMhhvbjJi3Fajn1j/KMwr6ZEvf/moITow
VDf5JxzujHDgo9yhnUk/XfOOM+QgKIIzGs4/RepdtM0OGzj5C9OwyEKKj7XHNX5o
ws1gPlN804zgF3pq2nubX/+tJn+MeC+YkdBI/idClnb0zADBTPdAOmpICa5EYWAB
zUj+wxojMOYrmqLes0qqInu9rUwMjIXDRTCytbMzMwkVeBXqaef9BS4MgSr2sh+q
jkb7nLaZmlAruGS0uWk1POHeLQQ6XT7EmUvpqvLo7POc4Sz30+BuqSikmZOMjcn5
-----END CERTIFICATE-----
Generated at Sun Mar 9 02:32:52 2025 by rpki-client