Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e352e3135322e302f32342d3332203d3e203531313637.roa
File: 3139342e352e3135322e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: 9RhUgx1aGu/bVaaZOQPBCKt2P6yUUgPfyQ0iMp4dXns=
Subject key identifier: AE:C0:3E:3E:93:FB:5B:CD:D6:77:A3:F0:E9:30:07:DA:11:2E:D7:55
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 2DE84C01FE6C3FB23350D00049366AABB48F637C
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e352e3135322e302f32342d3332203d3e203531313637.roa
Signing time: Fri 20 Dec 2024 15:23:29 +0000
ROA not before: Fri 20 Dec 2024 15:18:29 +0000
ROA not after: Fri 19 Dec 2025 15:23:29 +0000
asID: 51167
IP address blocks: 194.5.152.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Apr 2025 14:31:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:e8:4c:01:fe:6c:3f:b2:33:50:d0:00:49:36:6a:ab:b4:8f:63:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 20 15:18:29 2024 GMT
Not After : Dec 19 15:23:29 2025 GMT
Subject: CN=AEC03E3E93FB5BCDD677A3F0E93007DA112ED755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:06:c6:6f:6d:86:90:e9:d7:c1:3a:3f:25:f6:
2d:94:9c:84:ef:ce:f4:15:03:79:1b:2c:a5:b3:cc:
74:04:9f:a1:5e:97:93:3e:86:bd:ac:74:77:75:45:
9d:90:d8:84:e1:1f:2e:7e:97:a0:91:9c:e7:1d:d4:
df:ea:3a:a7:21:b8:fe:0e:f4:93:fd:01:3d:e0:56:
c1:fb:54:34:f0:e8:f6:ae:7d:e0:dc:7b:ea:0a:31:
3f:36:61:25:dc:2a:06:e4:62:02:1f:cc:24:5b:bc:
49:b6:4e:bd:6f:b2:36:ae:d3:34:01:42:28:ed:75:
48:f9:05:2f:ac:ba:e5:09:18:65:64:eb:aa:ff:8a:
9a:c7:f9:aa:23:44:48:58:79:09:f0:12:ba:9b:a5:
6f:91:31:3f:b2:7c:43:d9:82:48:de:6d:7f:4e:21:
0f:10:42:04:48:f9:95:9f:0e:13:c6:ab:39:ef:20:
56:1c:54:0d:3a:a5:a9:ad:fa:1b:f5:90:11:52:47:
f0:78:a5:72:74:da:d4:1f:f8:f9:f0:1d:04:c7:98:
88:19:1c:ce:42:e2:57:34:3a:15:8d:0b:1c:19:eb:
5e:4d:b8:62:99:1e:d6:23:5d:b0:56:98:0e:f3:93:
97:33:26:7e:21:f2:d1:b3:3d:59:69:e1:16:0c:f2:
60:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:C0:3E:3E:93:FB:5B:CD:D6:77:A3:F0:E9:30:07:DA:11:2E:D7:55
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e352e3135322e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.152.0/24
Signature Algorithm: sha256WithRSAEncryption
97:45:66:63:16:43:11:7d:a2:bb:64:8a:9f:e6:17:25:7c:87:
5c:e3:a7:fc:c4:8b:db:47:39:e3:5b:28:16:ac:7b:3f:c0:02:
f6:c9:46:04:0b:b4:6f:05:78:d0:49:f2:2b:42:a7:eb:69:09:
82:28:38:5a:64:d7:f5:92:e3:57:51:3c:11:ab:29:5a:18:77:
d9:1b:2c:31:4d:79:e7:64:97:e5:9e:8c:df:d0:b5:3d:ae:f2:
f0:1e:bf:c5:61:56:c9:f8:ac:ba:a5:3e:d0:17:af:25:2b:37:
ab:32:29:67:1a:12:3b:67:20:1b:00:51:70:8a:9b:1a:3c:70:
f5:84:5d:de:a9:60:35:37:2f:5f:d5:1b:ce:6e:4e:42:c9:be:
b1:b8:38:99:34:68:f7:60:7b:c1:11:f1:fe:43:ef:7d:5e:d6:
5f:e7:7b:57:cc:d5:87:7f:fc:c5:c9:66:bb:cc:cb:65:7d:c7:
ac:d2:47:e6:80:dc:e5:13:c5:bc:3d:34:b9:61:31:7f:ca:26:
67:e9:14:88:2f:d6:29:58:8d:9c:1a:92:44:2f:3c:2c:94:e9:
e0:13:d4:c3:04:db:d5:bc:a2:24:62:ef:f8:1a:e1:96:ba:69:
02:a8:e2:c8:dc:28:e3:78:4c:98:89:b1:17:58:e8:72:bb:15:
12:dd:5c:c0
-----BEGIN CERTIFICATE-----
MIIFNjCCBB6gAwIBAgIULehMAf5sP7IzUNAASTZqq7SPY3wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi
YmUzYTk1OTAeFw0yNDEyMjAxNTE4MjlaFw0yNTEyMTkxNTIzMjlaMDMxMTAvBgNV
BAMTKEFFQzAzRTNFOTNGQjVCQ0RENjc3QTNGMEU5MzAwN0RBMTEyRUQ3NTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChBsZvbYaQ6dfBOj8l9i2UnITv
zvQVA3kbLKWzzHQEn6Fel5M+hr2sdHd1RZ2Q2IThHy5+l6CRnOcd1N/qOqchuP4O
9JP9AT3gVsH7VDTw6PaufeDce+oKMT82YSXcKgbkYgIfzCRbvEm2Tr1vsjau0zQB
QijtdUj5BS+suuUJGGVk66r/iprH+aojREhYeQnwErqbpW+RMT+yfEPZgkjebX9O
IQ8QQgRI+ZWfDhPGqznvIFYcVA06pamt+hv1kBFSR/B4pXJ02tQf+PnwHQTHmIgZ
HM5C4lc0OhWNCxwZ615NuGKZHtYjXbBWmA7zk5czJn4h8tGzPVlp4RYM8mBRAgMB
AAGjggJAMIICPDAdBgNVHQ4EFgQUrsA+PpP7W83Wd6Pw6TAH2hEu11UwHwYDVR0j
BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV
HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi
OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1
OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku
cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5
bzd2anFWay5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJz
eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4
YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zMTM5MzQyZTM1MmUz
MTM1MzIyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzNTMxMzEzNjM3LnJvYTAYBgNV
HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAwgWYMA0GCSqGSIb3DQEBCwUAA4IBAQCXRWZjFkMRfaK7ZIqf5hclfIdc46f8
xIvbRznjWygWrHs/wAL2yUYEC7RvBXjQSfIrQqfraQmCKDhaZNf1kuNXUTwRqyla
GHfZGywxTXnnZJflnozf0LU9rvLwHr/FYVbJ+Ky6pT7QF68lKzerMilnGhI7ZyAb
AFFwipsaPHD1hF3eqWA1Ny9f1RvObk5Cyb6xuDiZNGj3YHvBEfH+Q+99XtZf53tX
zNWHf/zFyWa7zMtlfces0kfmgNzlE8W8PTS5YTF/yiZn6RSIL9YpWI2cGpJELzws
lOngE9TDBNvVvKIkYu/4GuGWumkCqOLI3CjjeEyYibEXWOhyuxUS3VzA
-----END CERTIFICATE-----
Generated at Thu Apr 3 05:09:13 2025 by rpki-client