Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e34332e36382e302f32342d3234203d3e20323034313730.roa
File: 3139332e34332e36382e302f32342d3234203d3e20323034313730.roa (raw, json)
Hash identifier: aYHQ96CTHhAYMa2tVJmRszYC7WkhpQCgOIhxYuM5asE=
Subject key identifier: 68:42:B4:19:8F:1E:EE:5B:FB:AC:12:06:07:48:A7:C0:BE:1C:DF:43
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 7507A98C58E2FB7C05E6C8D3AB5C866D720F39AE
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e34332e36382e302f32342d3234203d3e20323034313730.roa
Signing time: Mon 26 Feb 2024 08:52:40 +0000
ROA not before: Mon 26 Feb 2024 08:47:40 +0000
ROA not after: Mon 24 Feb 2025 08:52:40 +0000
asID: 204170
IP address blocks: 193.43.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 08:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:07:a9:8c:58:e2:fb:7c:05:e6:c8:d3:ab:5c:86:6d:72:0f:39:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Feb 26 08:47:40 2024 GMT
Not After : Feb 24 08:52:40 2025 GMT
Subject: CN=6842B4198F1EEE5BFBAC12060748A7C0BE1CDF43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c6:74:b8:ad:9e:58:3d:18:28:a2:e8:1b:56:
9d:1e:e7:aa:c8:db:56:d4:c3:91:28:76:7a:9b:e7:
f8:e3:c5:21:21:cd:ae:24:f3:57:b5:1e:89:0a:06:
f0:23:0e:93:d6:ff:9e:1b:3c:ea:e2:f7:ff:96:07:
27:f4:c8:bf:1e:c4:60:38:fd:1e:6b:dc:90:6d:4b:
d6:05:24:b0:25:35:d5:29:ef:bc:32:8d:c7:dd:7b:
7d:03:4f:92:29:18:25:3a:45:f4:8a:19:08:e4:58:
b4:bc:53:d5:61:dc:02:63:a7:1d:93:fa:76:60:08:
e3:ce:f1:78:00:8c:2a:76:c0:a3:a2:2d:04:b5:ae:
5c:a8:20:84:52:04:2e:ef:10:ce:4c:69:fe:fe:70:
64:53:e9:b8:d2:b5:dd:33:ec:58:96:ae:83:be:39:
14:9f:a1:58:73:7b:f2:bb:bd:4a:f9:e0:ad:7b:5a:
f9:1c:2e:41:40:cf:03:dc:c6:fc:26:b0:d9:1a:58:
05:18:7c:61:00:0b:0d:85:aa:30:4d:38:cf:a7:70:
88:1b:f7:f1:02:4a:7e:23:ca:5d:62:77:54:cc:45:
0d:aa:df:94:6e:6b:98:7b:d6:6c:85:57:bc:76:db:
b9:ef:78:15:9c:f9:38:87:1a:b1:5d:47:0d:af:5a:
d1:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:42:B4:19:8F:1E:EE:5B:FB:AC:12:06:07:48:A7:C0:BE:1C:DF:43
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139332e34332e36382e302f32342d3234203d3e20323034313730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.68.0/24
Signature Algorithm: sha256WithRSAEncryption
61:13:a9:9a:08:32:55:96:48:6a:c2:3a:71:13:11:34:8d:78:
81:d7:07:14:de:c7:a4:b2:79:87:0a:02:a8:87:5d:34:db:e0:
c5:2b:8c:33:2f:77:0a:4c:38:73:35:38:b9:1b:12:0e:0e:79:
6b:49:01:13:8f:31:34:52:86:76:3e:e3:9b:d1:8a:d7:7a:2e:
0c:a0:49:70:e7:bd:5c:21:40:a8:50:57:ba:fc:73:3b:16:fc:
32:fd:1d:73:2b:99:de:98:f4:6b:44:d6:8a:bb:1c:7d:fc:d7:
54:4c:95:d0:e3:f1:b2:3e:e3:c9:c6:9a:da:72:84:3b:54:19:
44:f5:e9:75:e6:19:b9:6b:6c:15:c6:77:47:2a:38:81:cf:c5:
35:64:87:c9:0c:fd:ee:9b:8d:cd:2a:9c:45:1a:99:27:5c:b8:
b4:4c:3e:1f:68:39:bf:9e:19:56:28:83:f4:39:b8:6e:23:e8:
76:76:e0:bf:4d:57:48:20:bd:0e:3e:94:c3:56:fa:0e:56:11:
68:f5:91:94:eb:b6:c2:18:cd:95:3e:18:e1:f7:3f:9f:bc:3f:
c2:b8:08:01:94:e3:4a:0a:ad:5b:b7:ff:a3:3f:54:20:aa:0d:
41:c9:09:b6:0f:f0:08:4e:e8:7c:95:84:95:34:1e:c3:7e:c6:
a8:3a:24:94
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUdQepjFji+3wF5sjTq1yGbXIPOa4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj
MjMxM2EzYTAeFw0yNDAyMjYwODQ3NDBaFw0yNTAyMjQwODUyNDBaMDMxMTAvBgNV
BAMTKDY4NDJCNDE5OEYxRUVFNUJGQkFDMTIwNjA3NDhBN0MwQkUxQ0RGNDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdxnS4rZ5YPRgoougbVp0e56rI
21bUw5Eodnqb5/jjxSEhza4k81e1HokKBvAjDpPW/54bPOri9/+WByf0yL8exGA4
/R5r3JBtS9YFJLAlNdUp77wyjcfde30DT5IpGCU6RfSKGQjkWLS8U9Vh3AJjpx2T
+nZgCOPO8XgAjCp2wKOiLQS1rlyoIIRSBC7vEM5Maf7+cGRT6bjStd0z7FiWroO+
ORSfoVhze/K7vUr54K17WvkcLkFAzwPcxvwmsNkaWAUYfGEACw2FqjBNOM+ncIgb
9/ECSn4jyl1id1TMRQ2q35Rua5h71myFV7x227nveBWc+TiHGrFdRw2vWtGfAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUaEK0GY8e7lv7rBIGB0inwL4c30MwHwYDVR0j
BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J
eE9qby5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzOTMzMmUzNDMzMmUzNjM4
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMDM0MzEzNzMwLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
wStEMA0GCSqGSIb3DQEBCwUAA4IBAQBhE6maCDJVlkhqwjpxExE0jXiB1wcU3sek
snmHCgKoh1002+DFK4wzL3cKTDhzNTi5GxIODnlrSQETjzE0UoZ2PuOb0YrXei4M
oElw571cIUCoUFe6/HM7Fvwy/R1zK5nemPRrRNaKuxx9/NdUTJXQ4/GyPuPJxpra
coQ7VBlE9el15hm5a2wVxndHKjiBz8U1ZIfJDP3um43NKpxFGpknXLi0TD4faDm/
nhlWKIP0ObhuI+h2duC/TVdIIL0OPpTDVvoOVhFo9ZGU67bCGM2VPhjh9z+fvD/C
uAgBlONKCq1bt/+jP1Qgqg1ByQm2D/AITuh8lYSVNB7DfsaoOiSU
-----END CERTIFICATE-----
Generated at Thu May 16 15:36:04 2024 by rpki-client on console-fra.rpki-client.org