Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31322e302f32342d3332203d3e203531313637.roa
File: 3139342e3134362e31322e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: Crheh7tTU8uCxSP4BM6hrpN721TlG4Nd3WGYk4U0XUQ=
Subject key identifier: FE:04:9F:5C:F4:80:57:71:19:3A:A5:C9:09:B8:DF:4C:BF:3E:4E:76
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 4AA513867E493237A4FEDA22E256B4973508CC63
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31322e302f32342d3332203d3e203531313637.roa
Signing time: Mon 27 Jan 2025 09:44:46 +0000
ROA not before: Mon 27 Jan 2025 09:39:46 +0000
ROA not after: Mon 26 Jan 2026 09:44:46 +0000
asID: 51167
IP address blocks: 194.146.12.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:a5:13:86:7e:49:32:37:a4:fe:da:22:e2:56:b4:97:35:08:cc:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Jan 27 09:39:46 2025 GMT
Not After : Jan 26 09:44:46 2026 GMT
Subject: CN=FE049F5CF4805771193AA5C909B8DF4CBF3E4E76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:01:90:f2:41:aa:57:df:5b:9f:8e:c8:1d:bc:
cc:c7:1e:52:78:62:5a:68:4f:18:2a:d2:10:32:2e:
2f:42:ec:f8:cc:54:c7:1f:4b:90:bb:14:ca:1e:17:
fa:9a:d8:b1:44:ec:71:39:c3:b4:49:d1:ff:2d:08:
85:0b:f5:b7:b2:4f:de:bd:e9:e4:47:e4:7a:07:1e:
ed:cc:b2:9c:55:3f:92:56:08:a5:7f:71:5b:fa:14:
52:14:30:16:c2:57:80:dd:8b:41:67:4d:ae:ba:93:
d2:89:64:3b:98:ab:fc:5c:a9:83:ec:a4:62:8c:bb:
f5:ef:80:4c:3a:cf:0a:c2:5d:c8:82:00:25:13:db:
b4:8d:3c:49:9c:24:98:47:13:4d:d6:36:c9:c7:75:
1e:c0:0a:09:4b:ed:1b:27:74:71:be:51:6d:77:b1:
1e:f0:d7:58:1f:c9:61:2d:75:76:d2:f0:fa:ea:be:
57:41:ba:1d:e5:32:15:65:da:db:ae:4a:ad:cf:35:
ae:63:28:76:fb:b2:fd:d1:82:28:89:a5:58:40:3a:
0b:62:c5:6f:8a:a6:6e:0d:64:19:0b:3d:5e:95:26:
b6:98:89:0d:90:9e:ef:99:ab:a2:bb:19:32:84:f7:
98:b3:ff:3d:02:83:cc:22:6a:4d:bf:7c:e4:6e:45:
cb:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:04:9F:5C:F4:80:57:71:19:3A:A5:C9:09:B8:DF:4C:BF:3E:4E:76
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3139342e3134362e31322e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.12.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:31:32:b6:07:d5:96:a3:d9:ca:a7:25:6b:48:eb:6e:a2:5e:
1e:ad:a4:71:9e:75:90:5e:09:39:f3:3d:a6:39:65:0c:46:1f:
10:28:6a:02:54:07:4c:f4:ab:c3:56:06:89:5a:c5:1f:0e:d1:
8a:40:3f:55:c3:2e:2d:93:1c:2c:03:30:82:88:9f:a3:5b:78:
c8:fd:c2:72:24:8e:ba:a6:1d:d4:39:73:91:9a:4f:79:ed:62:
5b:0c:1e:78:cd:1e:d2:a1:b5:52:68:90:35:8c:a7:fd:18:eb:
35:f4:a4:94:00:88:c1:eb:c1:ea:c4:00:eb:44:d4:cb:65:24:
43:6b:35:82:67:72:77:00:4d:7f:5d:46:87:1b:e7:83:76:c4:
c3:dd:a1:54:5c:b2:31:f3:cb:be:5c:7c:29:ff:b7:b7:44:3d:
78:5f:04:f9:6d:ca:24:c4:9b:a3:8a:fa:74:7e:c0:12:7d:36:
59:78:93:1a:dd:6b:24:5c:85:60:97:90:ad:d8:26:29:ce:35:
ac:8e:e7:0e:1d:58:eb:52:e4:a5:3f:cc:96:77:a6:38:5c:2a:
a0:19:f9:20:71:ab:69:76:53:bf:2f:36:c0:fb:75:2e:96:ae:
99:a8:13:72:36:c3:fe:09:7e:0e:be:30:8c:39:cb:56:31:8e:
4c:72:a7:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:15 2025 by rpki-client