Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e33352e31352e302f32342d3234203d3e20313336373837.roa
File: 3139342e33352e31352e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: p2K2LBrEUu/Hzfn3sOzCK9U9gZ+ENvA+wZUwX3yCvLM=
Subject key identifier: C2:27:EF:39:01:06:2D:3B:29:FD:63:2E:7F:02:D2:FC:20:BD:D5:35
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 691A734786FC32C98913720C50A5C4FF2ED800C8
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e33352e31352e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:27 +0000
ROA not before: Fri 27 Dec 2024 11:42:27 +0000
ROA not after: Fri 26 Dec 2025 11:47:27 +0000
asID: 136787
IP address blocks: 194.35.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 14:45:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:1a:73:47:86:fc:32:c9:89:13:72:0c:50:a5:c4:ff:2e:d8:00:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:27 2024 GMT
Not After : Dec 26 11:47:27 2025 GMT
Subject: CN=C227EF3901062D3B29FD632E7F02D2FC20BDD535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2c:96:83:bd:aa:ad:03:c6:e0:96:ad:3e:90:
80:99:57:54:cd:c8:66:91:6e:23:bc:2c:f3:10:db:
af:15:24:d7:f9:3b:9c:9c:b4:6b:80:fb:7c:1e:2d:
f7:29:bb:75:76:87:17:f6:c4:04:70:dc:e4:ac:50:
95:35:f8:08:c5:25:62:03:14:57:ad:64:6b:09:2c:
f2:d0:fb:34:d3:8a:a7:37:89:4e:57:c0:80:73:5a:
da:54:9e:64:d3:dc:27:48:6b:f6:0b:84:d4:bc:f2:
2e:6d:39:b1:8d:4b:75:f4:c1:d4:2a:26:6b:42:85:
a4:6e:55:bb:c7:2c:6f:80:59:9f:79:84:bb:c2:d0:
47:3d:cf:e1:fe:10:91:66:af:03:2b:57:72:9e:a7:
bf:b4:d7:71:ce:ae:26:64:9f:c7:0f:6e:6d:35:02:
bd:e3:57:d5:9f:f1:79:30:d0:56:96:44:8d:4a:68:
41:46:82:3f:33:af:df:28:70:90:7e:49:05:10:ee:
12:b0:36:e4:ad:2f:9b:f0:f2:6b:35:65:e4:69:89:
73:81:1a:1a:d9:25:26:69:6f:6f:5e:e6:28:f0:02:
82:58:f0:ca:18:34:55:c0:db:3f:28:ac:07:1d:c3:
19:37:06:6b:70:82:59:52:15:20:13:f3:ab:1f:88:
c1:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:27:EF:39:01:06:2D:3B:29:FD:63:2E:7F:02:D2:FC:20:BD:D5:35
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e33352e31352e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.35.15.0/24
Signature Algorithm: sha256WithRSAEncryption
86:57:72:42:90:21:ce:aa:7e:c9:82:c3:ef:ec:25:b5:19:eb:
c3:ad:a8:3b:5a:b5:ae:bd:31:b4:56:b1:6e:b6:65:0e:d4:3d:
07:4e:cd:1c:e9:b8:a4:7f:2f:df:2c:fd:98:2b:e1:4d:55:4e:
7f:f7:9e:65:9b:7e:f5:9f:2b:73:7a:31:a5:24:81:8f:4f:e0:
5c:90:2e:af:b1:cf:85:78:94:7b:c4:59:fd:e3:99:70:86:83:
b6:99:4f:33:fb:69:e3:f8:64:df:d6:ba:48:e8:4f:7c:63:03:
34:68:be:16:3c:5c:9d:78:26:15:c2:32:56:b1:57:98:7f:1d:
21:3a:a1:de:7f:cd:ac:b6:e5:c1:f4:0a:ac:a4:39:f6:e3:6c:
22:13:1f:67:89:4b:1a:34:2b:06:07:81:7f:99:65:7a:23:80:
65:01:c1:46:b5:23:ba:48:60:f9:0d:ac:3b:b7:6e:fd:d0:08:
c7:ef:89:5c:96:f4:d3:2d:f7:2a:d1:7f:ac:50:96:20:8d:4e:
c9:a3:ff:c9:09:13:73:59:9d:76:18:e9:8a:28:7e:cc:ba:66:
53:fc:fd:46:98:84:6b:3a:bf:6e:7c:98:77:66:2b:99:14:d0:
5d:12:8e:d7:55:37:1e:1e:35:f1:38:5c:af:8c:21:99:81:e0:
f2:61:12:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:23:04 2025 by rpki-client