Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3131302e38342e302f32342d3234203d3e20323037313337.roa
File: 3139342e3131302e38342e302f32342d3234203d3e20323037313337.roa (raw, json)
Hash identifier: DDVT5BgUMI70gU9z7Cew1IAqy33ReUr7FijeHfVFvzo=
Subject key identifier: 87:CE:D4:A4:4B:0A:39:71:F4:2B:FA:38:34:80:93:A6:75:FA:2D:C9
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 59D59B23651DCE4B413ED3AA1F7B2302ADEECC37
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3131302e38342e302f32342d3234203d3e20323037313337.roa
Signing time: Mon 26 Feb 2024 08:52:48 +0000
ROA not before: Mon 26 Feb 2024 08:47:48 +0000
ROA not after: Mon 24 Feb 2025 08:52:48 +0000
asID: 207137
IP address blocks: 194.110.84.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 13 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:d5:9b:23:65:1d:ce:4b:41:3e:d3:aa:1f:7b:23:02:ad:ee:cc:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:48 2024 GMT
Not After : Feb 24 08:52:48 2025 GMT
Subject: CN=87CED4A44B0A3971F42BFA38348093A675FA2DC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3a:a1:19:94:17:03:61:0e:96:aa:3f:91:6b:
99:6a:29:b2:56:68:11:84:30:e4:7e:09:9b:5e:9c:
05:8c:34:a0:58:29:cc:5c:0f:ca:cb:53:a3:78:46:
e4:cf:7d:43:bb:99:c3:ea:59:55:07:82:f5:f9:32:
40:b2:32:bf:42:f1:5e:79:ae:b2:b0:5d:78:5e:7d:
ce:63:1e:32:40:c0:99:62:71:50:e2:b6:d1:41:e8:
d2:e5:ad:40:2a:6b:e2:bb:22:e2:47:e2:71:cb:b9:
fd:3c:5c:08:59:11:63:63:99:06:71:6f:dd:d1:8a:
45:c2:00:ba:7d:93:92:27:35:de:06:a2:55:40:6e:
30:c2:f0:11:e9:4a:d9:94:2d:13:5a:17:b7:77:0d:
8c:88:b4:d4:50:c6:25:4e:d1:eb:cf:9c:ed:e1:70:
fa:94:cd:f6:6b:15:c4:15:03:14:78:8d:22:0c:99:
e2:29:fd:c0:c4:a0:e0:eb:a0:8d:34:83:ca:7e:c2:
57:01:0c:4a:39:6e:24:70:ef:fc:ee:f9:8f:1b:0f:
d7:a9:11:13:1f:70:6b:8a:f3:d7:54:a8:8c:92:a4:
9a:d6:7d:f5:66:91:5c:49:7d:e8:5a:da:d5:e7:bc:
16:a3:e3:c3:92:8e:f8:1e:79:f9:07:f4:76:33:b0:
64:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:CE:D4:A4:4B:0A:39:71:F4:2B:FA:38:34:80:93:A6:75:FA:2D:C9
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3131302e38342e302f32342d3234203d3e20323037313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.84.0/24
Signature Algorithm: sha256WithRSAEncryption
54:b2:b8:41:0c:06:c4:b4:0c:ee:76:47:ff:c9:90:d4:94:78:
3d:43:83:6f:73:7e:6c:cc:f6:49:c2:d1:c2:8b:21:72:f1:5d:
96:9c:52:4c:ec:de:56:41:11:11:06:ae:bd:7c:43:a2:ce:d4:
8a:a4:6d:72:c2:fb:59:93:b3:54:20:d3:5f:53:f0:6f:e1:2f:
54:eb:68:7d:52:cb:c5:fd:84:de:d7:0e:5b:44:45:8e:5d:51:
6a:81:88:11:b7:90:e2:b8:98:0c:b4:cb:35:f4:34:0a:58:4f:
e9:81:ff:d7:b0:fe:0c:02:a7:61:e8:a0:c0:e2:b5:da:f7:45:
86:64:a5:41:0c:d0:46:7b:1c:c1:ef:49:3c:a0:24:83:50:89:
e3:0b:9d:82:6e:6a:b0:d4:a5:79:2e:77:74:cb:23:11:55:e0:
f7:c4:b6:38:fa:25:d5:5a:38:25:20:15:b2:8a:20:a5:2a:30:
6f:02:84:97:64:cc:d6:b2:5b:18:03:7a:20:c9:9e:81:51:32:
e6:b2:9d:95:8e:9e:2a:fd:58:34:41:51:1a:9b:bc:52:bb:17:
c1:8c:c1:13:36:c3:9d:dc:69:77:d5:0b:16:e6:50:85:06:24:
13:fb:9f:c7:d8:95:d0:e6:ae:01:9c:2f:d4:64:38:1b:fc:6f:
ee:f2:8a:37
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUWdWbI2UdzktBPtOqH3sjAq3uzDcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDhmYjliYTgyN2U2ZjEwYTdhZjM3NDkwODAzZGQ1YTA3
NjM5NzIzNTAeFw0yNDAyMjYwODQ3NDhaFw0yNTAyMjQwODUyNDhaMDMxMTAvBgNV
BAMTKDg3Q0VENEE0NEIwQTM5NzFGNDJCRkEzODM0ODA5M0E2NzVGQTJEQzkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3OqEZlBcDYQ6Wqj+Ra5lqKbJW
aBGEMOR+CZtenAWMNKBYKcxcD8rLU6N4RuTPfUO7mcPqWVUHgvX5MkCyMr9C8V55
rrKwXXhefc5jHjJAwJlicVDittFB6NLlrUAqa+K7IuJH4nHLuf08XAhZEWNjmQZx
b93RikXCALp9k5InNd4GolVAbjDC8BHpStmULRNaF7d3DYyItNRQxiVO0evPnO3h
cPqUzfZrFcQVAxR4jSIMmeIp/cDEoODroI00g8p+wlcBDEo5biRw7/zu+Y8bD9ep
ERMfcGuK89dUqIySpJrWffVmkVxJfeha2tXnvBaj48OSjvgeefkH9HYzsGRfAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUh87UpEsKOXH0K/o4NICTpnX6LckwHwYDVR0j
BBgwFoAUCPubqCfm8Qp683SQgD3VoHY5cjUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzIvMDhGQjlCQTgyN0U2RjEwQTdBRjM3NDkwODAzREQ1QTA3NjM5NzIzNS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NQdWJxQ2ZtOFFwNjgzU1FnRDNWb0hZ
NWNqVS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzIvMzEzOTM0MmUzMTMxMzAyZTM4
MzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzczMTMzMzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BADCblQwDQYJKoZIhvcNAQELBQADggEBAFSyuEEMBsS0DO52R//JkNSUeD1Dg29z
fmzM9knC0cKLIXLxXZacUkzs3lZBEREGrr18Q6LO1IqkbXLC+1mTs1Qg019T8G/h
L1TraH1Sy8X9hN7XDltERY5dUWqBiBG3kOK4mAy0yzX0NApYT+mB/9ew/gwCp2Ho
oMDitdr3RYZkpUEM0EZ7HMHvSTygJINQieMLnYJuarDUpXkud3TLIxFV4PfEtjj6
JdVaOCUgFbKKIKUqMG8ChJdkzNayWxgDeiDJnoFRMuaynZWOnir9WDRBURqbvFK7
F8GMwRM2w53caXfVCxbmUIUGJBP7n8fYldDmrgGcL9RkOBv8b+7yijc=
-----END CERTIFICATE-----
Generated at Sun May 12 14:13:08 2024 by rpki-client on console-ams.rpki-client.org