Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36312e302f32342d3234203d3e20313437303439.roa
File: 3139332e32392e36312e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: en9PgGueZifs2HmPPElTgHKFbo+uUmaDmXSo/ojs6FM=
Subject key identifier: 1D:3C:C5:96:C3:7C:13:FA:AB:AF:8D:78:AD:96:60:EC:7A:F1:E7:35
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 36563EA1C48DF6416708440BEEB6E53F47B3497E
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36312e302f32342d3234203d3e20313437303439.roa
Signing time: Mon 27 Jan 2025 09:44:49 +0000
ROA not before: Mon 27 Jan 2025 09:39:49 +0000
ROA not after: Mon 26 Jan 2026 09:44:49 +0000
asID: 147049
IP address blocks: 193.29.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:56:3e:a1:c4:8d:f6:41:67:08:44:0b:ee:b6:e5:3f:47:b3:49:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Jan 27 09:39:49 2025 GMT
Not After : Jan 26 09:44:49 2026 GMT
Subject: CN=1D3CC596C37C13FAABAF8D78AD9660EC7AF1E735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:85:5c:71:7c:7e:0a:b0:88:e8:e6:b1:82:cc:
71:c3:8a:c1:d4:6e:0c:5a:0b:af:e8:06:ea:3c:b2:
a2:03:0a:c6:5c:ca:6b:66:d9:a7:15:6c:2c:7b:79:
6b:bc:e8:e4:e2:b4:99:6a:6a:50:35:6a:2e:49:c5:
75:29:30:f3:5b:90:26:91:cc:55:9a:28:bb:b9:f8:
c7:18:1a:79:58:ad:73:d9:14:3c:90:52:6c:5e:d9:
ee:de:c7:66:c5:5c:1c:cd:47:1f:1f:41:bc:5d:86:
26:d2:93:01:31:e4:4e:4b:10:37:ef:78:24:15:84:
b0:a1:36:69:b4:28:33:4d:8c:47:ce:85:a1:0d:54:
8c:a5:b8:99:68:35:c8:21:6c:88:78:12:05:a9:fe:
f9:52:8c:a7:c6:d7:57:b4:0a:d0:8a:35:4c:8d:cf:
8c:ad:b6:df:20:52:04:c7:8c:ba:ed:ac:2f:27:8b:
df:f1:86:c4:42:72:8a:8b:5d:65:67:6c:74:02:52:
6b:c8:ae:e8:7c:d9:55:05:54:47:ad:43:e7:d1:63:
d6:4e:48:78:0c:61:1d:b9:f9:c0:05:80:e7:99:a2:
2b:89:83:c7:a1:8e:15:2b:65:b4:54:c1:7d:95:0d:
1d:b2:cb:ee:d0:0e:a3:e8:36:8a:0b:36:53:f5:2a:
8f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:3C:C5:96:C3:7C:13:FA:AB:AF:8D:78:AD:96:60:EC:7A:F1:E7:35
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36312e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.61.0/24
Signature Algorithm: sha256WithRSAEncryption
af:16:c4:de:e3:39:5d:ae:7d:6a:bc:5d:18:1a:8e:80:75:7d:
3e:bf:9b:66:ea:dd:79:ad:8d:48:da:ba:2c:91:76:ef:9d:f9:
28:11:c0:9b:50:10:0f:d8:63:ff:0c:40:2f:ad:78:83:34:94:
7d:4c:ff:6c:51:0e:91:af:56:c0:e4:b6:07:08:16:e6:b2:8c:
9f:89:b4:8b:98:2c:69:2f:eb:c6:ca:97:ac:62:6e:21:af:98:
a4:fe:50:9e:66:a9:1f:63:2f:4a:7f:a6:8c:78:4c:7f:8f:e4:
f8:90:45:60:8e:bb:a0:b7:bb:64:79:56:b6:20:e8:85:27:e8:
a5:c0:21:b2:9b:bf:cc:4e:65:68:fb:47:5a:b4:f1:25:9e:3d:
45:64:1e:e3:e6:8b:41:9d:77:74:a4:d3:fa:b0:95:d9:96:d0:
74:9e:40:15:14:25:1c:80:15:4d:72:75:d9:e2:6f:63:d9:34:
91:dc:13:d1:f8:3d:89:87:88:b5:3c:0a:85:a1:0b:9c:06:cc:
ef:19:cd:34:1a:bc:60:ed:fc:99:80:85:42:a1:28:92:26:11:
ab:ec:b2:24:b2:e4:d0:6c:c4:17:8a:c9:7a:9a:e8:48:cb:e8:
78:f5:00:3b:cf:96:cc:4e:97:b6:c8:24:47:d8:2a:d7:0c:0c:
de:c6:40:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:06:20 2025 by rpki-client