Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e35392e3235332e302f32342d3234203d3e20313336373837.roa
File: 3139342e35392e3235332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: kNbwxyggmpGDbWeX/lESZm9Snc3PgawKKlXavrisgHA=
Subject key identifier: EF:B9:2E:A7:36:28:86:4A:4B:FB:49:CF:47:7C:28:AF:48:5F:52:FC
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 18B3C7E99D402EDDE867F5D72681D848567C188E
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e35392e3235332e302f32342d3234203d3e20313336373837.roa
Signing time: Wed 07 Feb 2024 12:34:10 +0000
ROA not before: Wed 07 Feb 2024 12:29:10 +0000
ROA not after: Wed 05 Feb 2025 12:34:10 +0000
asID: 136787
IP address blocks: 194.59.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:b3:c7:e9:9d:40:2e:dd:e8:67:f5:d7:26:81:d8:48:56:7c:18:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 7 12:29:10 2024 GMT
Not After : Feb 5 12:34:10 2025 GMT
Subject: CN=EFB92EA73628864A4BFB49CF477C28AF485F52FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:61:e0:87:a2:b6:ec:8d:d6:ab:8f:d1:4e:9a:
d8:91:c7:aa:98:48:ae:6d:21:22:83:31:80:cf:49:
b6:bb:0e:a3:33:79:7b:4e:d5:e1:0d:1a:1a:ae:bd:
75:ae:e0:37:9f:f4:ca:35:70:2b:5f:21:85:61:b7:
35:3f:e6:16:76:11:0e:fb:7b:ca:40:cb:15:3c:2e:
fa:fe:5b:c2:c7:a9:51:a5:07:5c:30:49:81:e0:33:
5e:ec:2c:06:b9:93:f4:ff:90:89:05:10:42:54:fd:
1b:e2:0b:0b:64:0d:41:eb:fb:cc:b6:77:e1:25:61:
84:05:93:c9:73:c7:10:0a:d5:c5:35:12:4f:7a:a9:
85:0c:8c:d4:20:b3:89:99:08:c9:90:58:ee:34:c7:
9f:78:a0:a5:b3:9b:fe:b5:a8:ac:4a:33:f6:be:dd:
5f:f0:e6:99:0b:32:67:21:bb:1a:35:38:b9:64:38:
a6:4c:70:45:cc:03:d6:30:29:e3:b6:ab:2d:8d:f1:
f6:e3:57:4d:86:51:b2:37:1e:cc:13:8b:1e:85:6d:
a8:a2:3e:2d:2a:ab:16:80:c1:91:5b:cc:ed:53:b2:
7a:b2:60:9c:61:75:27:71:1d:0d:f6:fe:61:3c:f7:
75:59:c4:46:51:2d:36:78:ee:4f:94:60:09:48:5e:
5d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:B9:2E:A7:36:28:86:4A:4B:FB:49:CF:47:7C:28:AF:48:5F:52:FC
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/3139342e35392e3235332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.253.0/24
Signature Algorithm: sha256WithRSAEncryption
38:5b:3c:6e:e2:43:ac:fd:dd:9b:37:8c:22:36:44:55:21:c8:
06:53:bf:eb:cb:bf:13:cb:a0:13:ef:28:4d:85:77:23:45:a6:
26:7e:ae:f6:38:a6:d2:d9:1f:1d:79:72:4c:a4:8d:e9:03:93:
7c:9f:ed:ce:75:02:6f:23:af:35:60:d9:c3:59:a3:e8:d5:62:
8e:f5:f2:b4:fb:65:2c:ec:84:66:54:9d:77:ff:b2:20:3e:63:
96:e0:d4:22:e5:8e:d2:04:ab:3a:cd:26:37:fd:e6:56:65:fb:
75:a4:9e:6b:fb:25:43:e7:6a:56:27:8a:e4:79:96:f8:a3:c1:
68:14:79:ce:ff:6b:5e:3b:36:73:4f:e9:df:35:ab:01:98:75:
06:7c:35:3c:e5:c2:2e:b5:dd:15:c4:5d:15:17:e0:6d:67:7d:
b4:fb:72:dd:16:60:00:0b:52:93:58:15:67:0f:ba:de:3e:29:
1d:d9:11:87:cf:65:de:f1:db:97:d9:a9:b6:5d:0c:b9:29:e6:
83:2f:4a:fa:0d:00:f4:73:02:c0:a0:d9:26:64:2f:81:aa:61:
82:9b:74:5d:b9:79:e7:75:b1:5b:2f:44:33:8f:68:46:34:53:
4e:6a:df:df:2e:af:00:f3:42:f6:bc:db:d5:89:80:03:7b:d4:
74:58:f3:46
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUGLPH6Z1ALt3oZ/XXJoHYSFZ8GI4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDhmYjliYTgyN2U2ZjEwYTdhZjM3NDkwODAzZGQ1YTA3
NjM5NzIzNTAeFw0yNDAyMDcxMjI5MTBaFw0yNTAyMDUxMjM0MTBaMDMxMTAvBgNV
BAMTKEVGQjkyRUE3MzYyODg2NEE0QkZCNDlDRjQ3N0MyOEFGNDg1RjUyRkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFYeCHorbsjdarj9FOmtiRx6qY
SK5tISKDMYDPSba7DqMzeXtO1eENGhquvXWu4Def9Mo1cCtfIYVhtzU/5hZ2EQ77
e8pAyxU8Lvr+W8LHqVGlB1wwSYHgM17sLAa5k/T/kIkFEEJU/RviCwtkDUHr+8y2
d+ElYYQFk8lzxxAK1cU1Ek96qYUMjNQgs4mZCMmQWO40x594oKWzm/61qKxKM/a+
3V/w5pkLMmchuxo1OLlkOKZMcEXMA9YwKeO2qy2N8fbjV02GUbI3HswTix6Fbaii
Pi0qqxaAwZFbzO1TsnqyYJxhdSdxHQ32/mE893VZxEZRLTZ47k+UYAlIXl2FAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU77kupzYohkpL+0nPR3wor0hfUvwwHwYDVR0j
BBgwFoAUCPubqCfm8Qp683SQgD3VoHY5cjUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzIvMDhGQjlCQTgyN0U2RjEwQTdBRjM3NDkwODAzREQ1QTA3NjM5NzIzNS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NQdWJxQ2ZtOFFwNjgzU1FnRDNWb0hZ
NWNqVS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzIvMzEzOTM0MmUzNTM5MmUzMjM1
MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BADCO/0wDQYJKoZIhvcNAQELBQADggEBADhbPG7iQ6z93Zs3jCI2RFUhyAZTv+vL
vxPLoBPvKE2FdyNFpiZ+rvY4ptLZHx15ckykjekDk3yf7c51Am8jrzVg2cNZo+jV
Yo718rT7ZSzshGZUnXf/siA+Y5bg1CLljtIEqzrNJjf95lZl+3Wknmv7JUPnalYn
iuR5lvijwWgUec7/a147NnNP6d81qwGYdQZ8NTzlwi613RXEXRUX4G1nfbT7ct0W
YAALUpNYFWcPut4+KR3ZEYfPZd7x25fZqbZdDLkp5oMvSvoNAPRzAsCg2SZkL4Gq
YYKbdF25eed1sVsvRDOPaEY0U05q398urwDzQva829WJgAN71HRY80Y=
-----END CERTIFICATE-----
Generated at Tue May 7 22:52:25 2024 by rpki-client on console-ams.rpki-client.org