Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39312e3234332e3137372e302f32342d3234203d3e20323033333830.roa
File: 39312e3234332e3137372e302f32342d3234203d3e20323033333830.roa (raw, json)
Hash identifier: 1rGJSoGMdmrf06rdiD43JDwC5LPgP/muI0BnlhEJBT0=
Subject key identifier: 2F:00:B5:DD:70:D6:49:2C:2D:BB:A8:95:B2:31:98:10:2E:A9:EC:78
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 146B508F95AD7567A283534CF55E4C652F46DC54
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39312e3234332e3137372e302f32342d3234203d3e20323033333830.roa
Signing time: Fri 19 Jul 2024 08:51:31 +0000
ROA not before: Fri 19 Jul 2024 08:46:31 +0000
ROA not after: Fri 18 Jul 2025 08:51:31 +0000
asID: 203380
IP address blocks: 91.243.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 13:21:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:6b:50:8f:95:ad:75:67:a2:83:53:4c:f5:5e:4c:65:2f:46:dc:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jul 19 08:46:31 2024 GMT
Not After : Jul 18 08:51:31 2025 GMT
Subject: CN=2F00B5DD70D6492C2DBBA895B23198102EA9EC78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:29:d6:fe:67:30:a1:70:6f:5a:62:22:d9:f3:
af:fb:2c:3d:d7:ee:98:44:29:2b:20:0a:a4:22:af:
ec:78:2b:0f:ed:15:52:6a:71:11:e7:1a:dd:50:bf:
9f:e3:05:cd:b9:64:ff:cd:87:09:e8:94:e0:3b:40:
37:90:07:0e:c2:02:57:75:fe:9a:b2:54:5d:f3:66:
cc:a1:33:e4:d4:d3:df:62:55:f4:f2:da:f1:8a:29:
08:ad:c2:67:e5:6e:a8:dd:4c:52:61:8a:06:e8:54:
aa:6d:5f:b3:16:7a:85:13:90:c5:b3:5f:3c:60:18:
02:ad:a8:90:63:9d:7b:0b:76:82:75:7b:92:fa:ce:
ba:cb:70:30:a2:2b:32:50:5b:f5:54:14:80:54:fc:
9c:b3:29:f1:ce:91:ac:45:01:1a:1c:f3:36:e2:b3:
45:31:58:b1:d1:7a:82:ac:94:8f:64:8c:0e:5d:8e:
6c:7d:dc:82:5a:f2:64:a1:31:52:a4:9b:40:9f:4f:
af:ae:9c:94:b0:75:10:e0:45:53:be:69:86:9b:03:
78:3c:6c:f1:9f:0f:6b:0f:83:d6:e0:2d:7e:c5:92:
93:8f:48:7a:b3:86:e8:fc:a0:6e:0e:b8:09:98:3a:
1d:2f:2d:e6:9c:bd:3e:14:29:35:aa:0b:4e:f1:16:
4a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:00:B5:DD:70:D6:49:2C:2D:BB:A8:95:B2:31:98:10:2E:A9:EC:78
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/39312e3234332e3137372e302f32342d3234203d3e20323033333830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.177.0/24
Signature Algorithm: sha256WithRSAEncryption
26:69:21:ac:40:6d:1e:74:e3:d7:3d:66:ad:4e:bb:23:8f:35:
8d:74:44:3c:0d:41:86:3e:96:1d:6b:60:53:5a:c4:13:62:55:
f2:0c:26:10:c0:8b:be:95:79:f7:bb:3d:6b:d7:fa:f8:f0:35:
ef:e6:4d:d0:38:f1:be:a1:4c:18:f5:12:e5:af:89:9f:07:de:
a9:5f:f6:41:52:c3:c2:a4:40:f7:3b:72:8e:fc:b9:0a:53:1b:
57:2d:49:59:03:8a:1a:27:95:ae:b1:0a:95:d8:0c:a3:f8:74:
47:ee:51:c4:d9:fb:0b:57:88:ae:2b:c3:f1:f1:0a:0f:8b:80:
cd:1a:82:3e:7c:62:98:b7:e8:1f:d6:89:74:a7:18:0b:fc:23:
54:bc:2f:b4:0f:5c:c4:e5:45:1d:b1:9e:fc:1b:f0:c9:d6:9a:
e6:80:b3:59:af:04:8d:95:0e:6b:52:41:66:fc:79:30:4f:f8:
b0:a7:96:c2:e8:2b:36:f4:64:74:bc:14:ef:f8:e6:b4:6f:08:
f7:e3:4d:c8:84:3b:3b:db:05:00:6b:de:2c:7d:a8:a0:ba:fc:
c6:73:b9:05:05:ac:9c:45:92:83:1e:4b:a4:52:1e:be:25:0b:
cf:13:5e:74:90:d7:4a:d9:23:49:9b:ad:5d:b0:3d:d6:5e:87:
46:e7:0f:e1
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUFGtQj5WtdWeig1NM9V5MZS9G3FQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDA3MTkwODQ2MzFaFw0yNTA3MTgwODUxMzFaMDMxMTAvBgNV
BAMTKDJGMDBCNURENzBENjQ5MkMyREJCQTg5NUIyMzE5ODEwMkVBOUVDNzgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIKdb+ZzChcG9aYiLZ86/7LD3X
7phEKSsgCqQir+x4Kw/tFVJqcRHnGt1Qv5/jBc25ZP/NhwnolOA7QDeQBw7CAld1
/pqyVF3zZsyhM+TU099iVfTy2vGKKQitwmflbqjdTFJhigboVKptX7MWeoUTkMWz
XzxgGAKtqJBjnXsLdoJ1e5L6zrrLcDCiKzJQW/VUFIBU/JyzKfHOkaxFARoc8zbi
s0UxWLHReoKslI9kjA5djmx93IJa8mShMVKkm0CfT6+unJSwdRDgRVO+aYabA3g8
bPGfD2sPg9bgLX7FkpOPSHqzhuj8oG4OuAmYOh0vLeacvT4UKTWqC07xFkprAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQULwC13XDWSSwtu6iVsjGYEC6p7HgwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzkzMTJlMzIzNDMzMmUzMTM3
MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzMzMzM4MzAucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BABb87EwDQYJKoZIhvcNAQELBQADggEBACZpIaxAbR5049c9Zq1OuyOPNY10RDwN
QYY+lh1rYFNaxBNiVfIMJhDAi76Vefe7PWvX+vjwNe/mTdA48b6hTBj1EuWviZ8H
3qlf9kFSw8KkQPc7co78uQpTG1ctSVkDihonla6xCpXYDKP4dEfuUcTZ+wtXiK4r
w/HxCg+LgM0agj58Ypi36B/WiXSnGAv8I1S8L7QPXMTlRR2xnvwb8MnWmuaAs1mv
BI2VDmtSQWb8eTBP+LCnlsLoKzb0ZHS8FO/45rRvCPfjTciEOzvbBQBr3ix9qKC6
/MZzuQUFrJxFkoMeS6RSHr4lC88TXnSQ10rZI0mbrV2wPdZeh0bnD+E=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:47 2025 by rpki-client