Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e3230332e31322e302f32342d3234203d3e20313336373837.roa
File: 3139332e3230332e31322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: eEtDa6DMNJnmQDdpQNQ/kcy8QaTlQ4cx5R4tPEYm2bw=
Subject key identifier: DB:FC:BC:80:A0:FF:A8:03:DF:50:36:8A:36:03:2E:EF:5B:33:95:12
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 4D74EAD9DC1510A3E8649445BDCB97090D3CC506
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e3230332e31322e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 01 Apr 2024 14:03:18 +0000
ROA not before: Mon 01 Apr 2024 13:58:18 +0000
ROA not after: Mon 31 Mar 2025 14:03:18 +0000
asID: 136787
IP address blocks: 193.203.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:74:ea:d9:dc:15:10:a3:e8:64:94:45:bd:cb:97:09:0d:3c:c5:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Apr 1 13:58:18 2024 GMT
Not After : Mar 31 14:03:18 2025 GMT
Subject: CN=DBFCBC80A0FFA803DF50368A36032EEF5B339512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:63:24:c3:3b:93:12:59:42:85:fb:88:f0:7e:
7b:4e:6c:fc:91:2f:fc:d6:18:33:ae:ee:1e:10:6f:
9b:99:cb:d2:3e:99:9c:e8:28:c7:1f:66:ef:81:8c:
d5:24:ab:b5:d1:fa:dc:1c:e7:b5:cb:fc:98:3e:8a:
63:10:10:50:bf:9d:57:3d:29:3a:c0:ca:96:82:6b:
2f:c5:4b:3f:bb:b5:25:0f:3b:c8:84:8b:41:c0:f6:
20:9f:76:bb:91:3b:53:f0:e8:91:75:6a:e9:4e:53:
54:10:a6:75:f7:61:3c:b6:c1:05:30:48:c9:d1:48:
f1:be:57:5e:1a:9d:e0:e4:12:c9:92:ad:74:42:37:
f1:27:85:30:9f:a2:29:cc:1e:5f:e5:6c:ae:1b:df:
ce:c7:e9:46:02:5c:cd:87:b0:fe:b0:02:6f:2d:10:
38:78:00:65:5b:d7:c2:6d:af:7d:c3:2e:11:a5:e6:
05:98:8a:67:6f:18:88:73:ff:b4:41:44:39:95:55:
25:ae:42:14:b0:f9:88:03:20:c1:95:50:28:21:9d:
69:e0:4f:89:f7:36:08:5e:c2:27:a5:ac:2c:24:4c:
ff:0c:c9:fb:ad:11:49:80:a6:36:5f:52:05:6f:7a:
88:62:40:1a:41:6e:66:3d:ff:85:fd:62:8d:dd:6d:
85:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:FC:BC:80:A0:FF:A8:03:DF:50:36:8A:36:03:2E:EF:5B:33:95:12
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139332e3230332e31322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.12.0/24
Signature Algorithm: sha256WithRSAEncryption
53:68:38:c4:f3:6c:37:b2:5b:05:c2:9f:14:3e:46:9d:ba:06:
9b:ee:1e:c7:34:40:af:f7:56:97:94:01:0b:f8:23:93:c2:59:
e7:5b:b0:c0:6a:75:56:45:0f:63:2b:c2:99:ba:77:18:07:31:
22:b1:38:68:8c:a4:49:34:23:37:90:91:b8:a3:1e:ad:aa:ae:
c6:e4:e4:c8:60:3d:8d:c6:e0:d4:a6:67:25:ac:64:59:bf:f2:
55:72:91:f1:4c:be:45:a5:7a:a7:6d:40:07:bd:ea:90:d2:3f:
3f:67:b7:fe:de:c4:70:28:92:dd:1e:c7:35:2a:98:27:8e:3d:
75:3b:d3:9b:9b:e2:a7:21:7c:73:4d:ce:a2:f8:b2:46:26:ad:
01:64:11:d4:db:af:72:b1:09:f9:30:e5:d4:00:6a:9e:a4:1f:
7b:f6:f1:90:0c:8a:58:94:4e:39:7c:e0:09:78:2e:49:5c:3c:
a3:43:27:ae:c3:e7:1c:f7:e7:54:cd:2c:65:7b:5d:a3:19:90:
6b:73:47:09:24:9a:3e:4e:77:13:10:ce:0c:7b:8d:89:74:2e:
67:10:6c:a1:43:52:2c:47:8a:c5:fd:ca:4d:65:46:7a:03:86:
72:34:64:9d:a2:06:98:2b:aa:46:55:6d:01:07:34:64:57:6e:
43:93:8d:b8
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUTXTq2dwVEKPoZJRFvcuXCQ08xQYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDhmYjliYTgyN2U2ZjEwYTdhZjM3NDkwODAzZGQ1YTA3
NjM5NzIzNTAeFw0yNDA0MDExMzU4MThaFw0yNTAzMzExNDAzMThaMDMxMTAvBgNV
BAMTKERCRkNCQzgwQTBGRkE4MDNERjUwMzY4QTM2MDMyRUVGNUIzMzk1MTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5YyTDO5MSWUKF+4jwfntObPyR
L/zWGDOu7h4Qb5uZy9I+mZzoKMcfZu+BjNUkq7XR+twc57XL/Jg+imMQEFC/nVc9
KTrAypaCay/FSz+7tSUPO8iEi0HA9iCfdruRO1Pw6JF1aulOU1QQpnX3YTy2wQUw
SMnRSPG+V14aneDkEsmSrXRCN/EnhTCfoinMHl/lbK4b387H6UYCXM2HsP6wAm8t
EDh4AGVb18Jtr33DLhGl5gWYimdvGIhz/7RBRDmVVSWuQhSw+YgDIMGVUCghnWng
T4n3NghewielrCwkTP8MyfutEUmApjZfUgVveohiQBpBbmY9/4X9Yo3dbYUdAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU2/y8gKD/qAPfUDaKNgMu71szlRIwHwYDVR0j
BBgwFoAUCPubqCfm8Qp683SQgD3VoHY5cjUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzIvMDhGQjlCQTgyN0U2RjEwQTdBRjM3NDkwODAzREQ1QTA3NjM5NzIzNS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NQdWJxQ2ZtOFFwNjgzU1FnRDNWb0hZ
NWNqVS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzIvMzEzOTMzMmUzMjMwMzMyZTMx
MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BADBywwwDQYJKoZIhvcNAQELBQADggEBAFNoOMTzbDeyWwXCnxQ+Rp26BpvuHsc0
QK/3VpeUAQv4I5PCWedbsMBqdVZFD2Mrwpm6dxgHMSKxOGiMpEk0IzeQkbijHq2q
rsbk5MhgPY3G4NSmZyWsZFm/8lVykfFMvkWleqdtQAe96pDSPz9nt/7exHAokt0e
xzUqmCeOPXU705ub4qchfHNNzqL4skYmrQFkEdTbr3KxCfkw5dQAap6kH3v28ZAM
iliUTjl84Al4LklcPKNDJ67D5xz351TNLGV7XaMZkGtzRwkkmj5OdxMQzgx7jYl0
LmcQbKFDUixHisX9yk1lRnoDhnI0ZJ2iBpgrqkZVbQEHNGRXbkOTjbg=
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:44 2024 by rpki-client on console-ams.rpki-client.org