Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3134372e35362e302f32332d3234203d3e203631333137.roa
File: 3139342e3134372e35362e302f32332d3234203d3e203631333137.roa (raw, json)
Hash identifier: 8VjC6C/yYmWtJmBIeen9q3n3uDjS2rNrnwZ82bw4Zgs=
Subject key identifier: 25:D9:5F:EC:BE:69:D7:70:F7:E2:95:53:E1:2C:76:2B:E9:24:58:6E
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 53C1F9924D702220F3D5A6E3B681116358FF56EA
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3134372e35362e302f32332d3234203d3e203631333137.roa
Signing time: Mon 26 Feb 2024 08:52:50 +0000
ROA not before: Mon 26 Feb 2024 08:47:50 +0000
ROA not after: Mon 24 Feb 2025 08:52:50 +0000
asID: 61317
IP address blocks: 194.147.56.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Apr 2024 19:21:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:c1:f9:92:4d:70:22:20:f3:d5:a6:e3:b6:81:11:63:58:ff:56:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:50 2024 GMT
Not After : Feb 24 08:52:50 2025 GMT
Subject: CN=25D95FECBE69D770F7E29553E12C762BE924586E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:40:46:44:8f:ee:a0:c8:e0:5e:e7:1c:be:47:
c3:5f:65:c1:55:38:92:98:8b:8c:27:92:5a:4e:67:
6b:da:98:c3:7a:c2:6b:81:d1:8d:3c:22:13:be:a9:
e9:8a:b3:c8:8c:49:6d:7d:41:24:c8:26:74:ca:31:
0c:0a:a7:56:a0:cf:1b:e4:1d:41:b4:38:f5:1f:c5:
41:b9:56:d5:b3:eb:d3:67:12:8b:11:a2:0c:55:de:
97:39:91:1b:a2:a4:8d:ca:29:e1:c4:41:73:1a:b7:
ec:f4:66:65:74:04:3c:10:f6:69:f0:f8:8a:7f:4b:
b2:62:85:09:ae:57:30:98:54:f4:e2:bb:b8:45:17:
e1:20:d8:0f:aa:fb:f9:f3:56:b0:70:c9:d9:b3:cd:
07:2b:dc:22:0c:f9:88:6a:f1:70:90:e2:25:77:e1:
3b:38:96:fe:39:5e:9b:c5:1e:99:46:dc:fa:c3:ee:
67:3b:a9:20:3f:d1:4b:f0:17:2a:80:dd:04:22:34:
08:e8:15:9a:f4:c1:6d:04:68:d0:bc:f4:19:a8:a3:
fa:95:4c:9d:8b:81:50:3a:99:ca:31:a9:2a:c6:16:
9b:2e:e1:b7:1e:28:c8:70:04:83:8b:16:72:81:a1:
d1:a2:61:84:12:09:40:7e:e3:3e:e6:dd:d2:a7:9a:
d6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D9:5F:EC:BE:69:D7:70:F7:E2:95:53:E1:2C:76:2B:E9:24:58:6E
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e3134372e35362e302f32332d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.56.0/23
Signature Algorithm: sha256WithRSAEncryption
71:31:61:d5:6e:5d:8f:b1:8e:00:92:3e:24:08:a3:1f:b3:ab:
5d:1d:fe:93:b3:78:05:86:34:a0:bc:6c:c3:b9:3a:2c:cb:e2:
58:4a:97:a1:12:34:72:28:a0:80:88:5b:d1:fd:20:73:e6:30:
7d:3c:46:0a:5a:be:71:7a:b6:de:17:2d:e3:d4:7a:cc:5a:0b:
c3:bd:a6:57:c5:48:7e:22:6e:22:05:2b:8c:c2:c2:8e:41:1e:
5b:ab:be:3b:31:ce:8c:ff:77:e8:e7:bb:f7:23:cb:5c:a0:95:
2f:0e:ab:43:dc:4e:83:e7:55:ea:e5:02:f2:7e:a6:72:56:17:
61:a3:17:38:34:8b:84:08:ad:b2:19:d4:be:ff:44:68:8c:94:
20:14:b1:82:5a:56:96:52:fa:f9:29:4b:88:95:8f:8b:73:84:
b1:c4:f9:d4:3e:8d:53:a9:ae:fe:38:ac:78:51:07:39:69:51:
2e:f6:a0:bc:29:ea:01:97:f9:a0:19:c8:ea:fa:a2:c4:03:21:
0c:95:5b:34:61:32:8d:4f:a8:d6:e2:de:8d:97:2f:44:d1:16:
7f:8f:10:6c:0a:bc:8b:13:c1:03:d8:fa:a7:f6:30:1c:43:fc:
be:35:aa:9c:e2:2e:b2:fe:59:fa:34:85:c9:22:4c:4d:dc:e4:
ab:cd:6c:6f
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUU8H5kk1wIiDz1abjtoERY1j/VuowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDhmYjliYTgyN2U2ZjEwYTdhZjM3NDkwODAzZGQ1YTA3
NjM5NzIzNTAeFw0yNDAyMjYwODQ3NTBaFw0yNTAyMjQwODUyNTBaMDMxMTAvBgNV
BAMTKDI1RDk1RkVDQkU2OUQ3NzBGN0UyOTU1M0UxMkM3NjJCRTkyNDU4NkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRQEZEj+6gyOBe5xy+R8NfZcFV
OJKYi4wnklpOZ2vamMN6wmuB0Y08IhO+qemKs8iMSW19QSTIJnTKMQwKp1agzxvk
HUG0OPUfxUG5VtWz69NnEosRogxV3pc5kRuipI3KKeHEQXMat+z0ZmV0BDwQ9mnw
+Ip/S7JihQmuVzCYVPTiu7hFF+Eg2A+q+/nzVrBwydmzzQcr3CIM+Yhq8XCQ4iV3
4Ts4lv45XpvFHplG3PrD7mc7qSA/0UvwFyqA3QQiNAjoFZr0wW0EaNC89Bmoo/qV
TJ2LgVA6mcoxqSrGFpsu4bceKMhwBIOLFnKBodGiYYQSCUB+4z7m3dKnmtbpAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUJdlf7L5p13D34pVT4Sx2K+kkWG4wHwYDVR0j
BBgwFoAUCPubqCfm8Qp683SQgD3VoHY5cjUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzIvMDhGQjlCQTgyN0U2RjEwQTdBRjM3NDkwODAzREQ1QTA3NjM5NzIzNS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NQdWJxQ2ZtOFFwNjgzU1FnRDNWb0hZ
NWNqVS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzIvMzEzOTM0MmUzMTM0MzcyZTM1
MzYyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
wpM4MA0GCSqGSIb3DQEBCwUAA4IBAQBxMWHVbl2PsY4Akj4kCKMfs6tdHf6Ts3gF
hjSgvGzDuTosy+JYSpehEjRyKKCAiFvR/SBz5jB9PEYKWr5xerbeFy3j1HrMWgvD
vaZXxUh+Im4iBSuMwsKOQR5bq747Mc6M/3fo57v3I8tcoJUvDqtD3E6D51Xq5QLy
fqZyVhdhoxc4NIuECK2yGdS+/0RojJQgFLGCWlaWUvr5KUuIlY+Lc4SxxPnUPo1T
qa7+OKx4UQc5aVEu9qC8KeoBl/mgGcjq+qLEAyEMlVs0YTKNT6jW4t6Nly9E0RZ/
jxBsCryLE8ED2Pqn9jAcQ/y+Naqc4i6y/ln6NIXJIkxN3OSrzWxv
-----END CERTIFICATE-----
Generated at Tue Apr 16 03:55:21 2024 by rpki-client on console-ams.rpki-client.org