Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36322e302f32342d3234203d3e203633343733.roa
File: 3139332e32392e36322e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: ZMaMKhGKWADUAMPIPt9bBSRmgJHDXxm7sjFUR7VRYj4=
Subject key identifier: 42:A7:C6:25:D5:24:45:B2:70:E3:C5:45:CC:89:47:5A:38:51:2C:D2
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 5F38C9DCC3BA73AFAA02217E72F2773BC1F06259
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36322e302f32342d3234203d3e203633343733.roa
Signing time: Mon 04 Nov 2024 10:05:25 +0000
ROA not before: Mon 04 Nov 2024 10:00:25 +0000
ROA not after: Mon 03 Nov 2025 10:05:25 +0000
asID: 63473
IP address blocks: 193.29.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:38:c9:dc:c3:ba:73:af:aa:02:21:7e:72:f2:77:3b:c1:f0:62:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Nov 4 10:00:25 2024 GMT
Not After : Nov 3 10:05:25 2025 GMT
Subject: CN=42A7C625D52445B270E3C545CC89475A38512CD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ba:d2:43:0c:92:a8:89:dd:07:5a:3b:98:6c:
31:c1:f3:91:47:a0:4a:3d:79:11:ed:55:28:9e:3a:
d4:e1:da:ab:2c:00:42:59:b0:ac:af:0a:6d:44:1e:
f6:24:eb:06:bd:14:df:6c:76:39:7f:38:bd:37:40:
45:3d:e1:29:4a:6b:83:79:03:f5:88:83:9b:22:11:
14:05:25:d8:66:43:5c:a7:4f:74:cb:b5:f1:05:ee:
bf:e6:e2:c9:ed:6b:e5:c3:0d:bf:02:8e:a5:7e:60:
cb:29:3a:7a:20:ac:e0:17:b6:81:45:35:74:1b:31:
d7:4c:0b:ce:50:69:9c:ec:bc:6a:1f:d8:4e:e4:86:
47:cb:82:e9:b0:56:19:78:7c:f5:81:81:5d:5d:9f:
1d:89:88:92:15:41:df:ab:76:b2:0c:2d:a2:e7:31:
78:6e:4d:0c:a5:92:dc:78:46:f5:49:78:ba:96:21:
e2:26:99:2f:2d:2c:c5:96:20:75:61:71:41:90:a7:
2e:34:26:2d:39:e6:8a:28:7c:76:27:da:86:5f:12:
76:6e:52:86:de:86:bc:ec:e1:21:4d:74:7e:79:9c:
3c:6e:2c:66:27:93:59:a0:50:15:92:27:4f:2e:d8:
d5:28:f1:c1:a4:20:49:94:f9:26:3b:d6:42:bb:2b:
35:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A7:C6:25:D5:24:45:B2:70:E3:C5:45:CC:89:47:5A:38:51:2C:D2
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e32392e36322e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.62.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:4a:ce:13:69:63:40:3a:28:d2:e6:49:45:a9:0b:53:db:17:
0f:32:d3:9f:e0:e7:85:9d:a4:d0:3b:ab:f8:2e:67:72:33:02:
19:86:49:d2:f6:97:ba:00:49:a2:30:cf:1c:c0:20:c5:6a:6a:
ac:f6:2d:20:11:89:a1:a1:80:de:5e:2a:63:1d:6d:4a:61:63:
ee:2f:4b:b6:b5:fa:93:7a:54:cb:1b:05:a8:17:55:8c:67:1d:
88:57:06:6f:ee:32:93:b1:f3:1d:20:0e:51:21:d3:3a:2a:96:
64:da:2a:e4:46:dd:66:92:0f:bf:d1:8a:82:33:a3:1c:8c:48:
f8:b0:1d:1e:82:c3:8f:dd:bb:11:fd:fb:89:44:e6:0b:ba:c0:
a1:96:58:6c:52:17:b0:e3:2f:bd:ae:94:92:a7:c0:a1:94:6e:
70:cd:4f:c4:e5:63:0e:77:31:1e:a2:41:89:6c:b3:91:18:bb:
67:9b:7d:fc:12:8f:85:ba:46:e6:a8:e1:56:76:93:77:42:db:
16:e9:54:13:6d:15:aa:7b:3f:85:c3:d0:00:ff:d6:fc:b9:7b:
a0:bf:84:75:0a:41:4b:17:85:ed:29:fd:09:44:50:4a:c8:70:
98:26:5c:71:c4:af:d0:d0:30:7b:a0:f6:f8:7e:9d:f9:bb:b7:
1a:6e:a3:a6
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUXzjJ3MO6c6+qAiF+cvJ3O8HwYlkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj
MjMxM2EzYTAeFw0yNDExMDQxMDAwMjVaFw0yNTExMDMxMDA1MjVaMDMxMTAvBgNV
BAMTKDQyQTdDNjI1RDUyNDQ1QjI3MEUzQzU0NUNDODk0NzVBMzg1MTJDRDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEutJDDJKoid0HWjuYbDHB85FH
oEo9eRHtVSieOtTh2qssAEJZsKyvCm1EHvYk6wa9FN9sdjl/OL03QEU94SlKa4N5
A/WIg5siERQFJdhmQ1ynT3TLtfEF7r/m4snta+XDDb8CjqV+YMspOnogrOAXtoFF
NXQbMddMC85QaZzsvGof2E7khkfLgumwVhl4fPWBgV1dnx2JiJIVQd+rdrIMLaLn
MXhuTQylktx4RvVJeLqWIeImmS8tLMWWIHVhcUGQpy40Ji055ooofHYn2oZfEnZu
Uobehrzs4SFNdH55nDxuLGYnk1mgUBWSJ08u2NUo8cGkIEmU+SY71kK7KzU9AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUQqfGJdUkRbJw48VFzIlHWjhRLNIwHwYDVR0j
BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J
eE9qby5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTMzMmUzMjM5MmUzNjMy
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM0MzczMy5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEd
PjANBgkqhkiG9w0BAQsFAAOCAQEAn0rOE2ljQDoo0uZJRakLU9sXDzLTn+DnhZ2k
0Dur+C5ncjMCGYZJ0vaXugBJojDPHMAgxWpqrPYtIBGJoaGA3l4qYx1tSmFj7i9L
trX6k3pUyxsFqBdVjGcdiFcGb+4yk7HzHSAOUSHTOiqWZNoq5EbdZpIPv9GKgjOj
HIxI+LAdHoLDj927Ef37iUTmC7rAoZZYbFIXsOMvva6UkqfAoZRucM1PxOVjDncx
HqJBiWyzkRi7Z5t9/BKPhbpG5qjhVnaTd0LbFulUE20Vqns/hcPQAP/W/Ll7oL+E
dQpBSxeF7Sn9CURQSshwmCZcccSv0NAwe6D2+H6d+bu3Gm6jpg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org