Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e3131332e36372e302f32342d3332203d3e203531313637.roa
File: 3139342e3131332e36372e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: 1hMu0UUwmqA0SQZwbTd06ozSQlsj8fPxN5dU3iS69AY=
Subject key identifier: 3A:8F:74:9D:A0:AB:D5:45:D6:C3:34:5F:40:40:7A:D7:15:9B:86:FF
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 7083EDD8EAABDB581DC9E937062C9A0BA46B9DBC
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e3131332e36372e302f32342d3332203d3e203531313637.roa
Signing time: Fri 21 Jul 2023 07:19:12 +0000
ROA not before: Fri 21 Jul 2023 07:14:12 +0000
ROA not after: Fri 19 Jul 2024 07:19:12 +0000
asID: 51167
IP address blocks: 194.113.67.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 20:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:83:ed:d8:ea:ab:db:58:1d:c9:e9:37:06:2c:9a:0b:a4:6b:9d:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Jul 21 07:14:12 2023 GMT
Not After : Jul 19 07:19:12 2024 GMT
Subject: CN=3A8F749DA0ABD545D6C3345F40407AD7159B86FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:58:13:37:ad:95:3e:ad:46:d2:d3:a0:90:7e:
14:15:f9:55:96:74:57:7a:84:44:51:f3:06:0f:32:
e4:c1:ed:b6:7e:81:c7:30:7d:cf:02:b2:37:83:4c:
3c:46:69:11:12:50:99:16:d8:8c:57:83:12:e0:44:
30:3e:9e:b5:d0:17:96:af:13:df:1f:e1:ba:7c:07:
fd:fd:a7:f4:aa:2e:7e:df:7d:83:ea:f8:4b:80:ff:
a7:d9:dd:4a:72:e9:40:24:6b:d4:81:60:6a:ea:88:
8a:d8:2a:0f:17:f4:bd:ae:95:ff:cd:ee:a3:ea:fc:
ab:92:50:b9:8d:b7:2e:09:3b:83:b8:ac:1f:ab:48:
9e:f2:a6:aa:6e:bd:a9:25:f6:27:3a:0b:a2:22:40:
b3:c9:26:98:46:76:99:aa:44:2f:ac:1d:35:2e:37:
93:fd:cd:8b:d9:f6:7b:b7:e1:70:51:73:02:9c:2e:
a0:2f:d4:0e:43:16:87:84:68:41:84:a5:6c:79:3c:
b1:52:da:85:bc:9c:05:65:09:99:94:5e:67:64:dc:
4d:3b:95:3c:12:ed:dc:4d:be:56:88:da:3c:95:bb:
d2:74:24:fd:6c:e8:be:df:d4:7c:00:b4:79:e0:79:
3f:b0:90:1f:b4:83:67:46:84:af:2f:41:47:f2:fa:
6c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:8F:74:9D:A0:AB:D5:45:D6:C3:34:5F:40:40:7A:D7:15:9B:86:FF
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/3139342e3131332e36372e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.67.0/24
Signature Algorithm: sha256WithRSAEncryption
84:99:fd:14:c5:e6:89:32:63:ab:3f:f7:36:1e:98:40:c5:4a:
21:41:83:8c:c7:94:6f:12:8a:74:27:52:a0:bb:9a:86:28:1f:
88:1f:4f:91:7b:ae:78:a7:17:2d:86:96:96:20:8f:07:e7:fd:
d5:63:c8:89:63:fd:87:65:fe:95:e7:72:64:23:7a:38:1b:c0:
f1:45:fd:e5:4d:01:c5:99:48:da:c0:f0:ca:9f:25:c6:c9:18:
67:03:ef:d0:f1:7f:e6:f0:d2:02:88:dd:c8:4f:8c:36:6b:6c:
57:1c:cb:c5:d3:01:ca:db:e0:a4:90:a4:64:ed:d1:26:d1:3b:
58:a7:1f:39:e0:bb:c0:67:d7:52:7c:21:df:e9:0a:e9:e5:08:
0c:69:1b:1e:98:6c:0c:3f:df:b3:b8:bc:0f:22:3b:16:2b:45:
4e:92:5a:88:a6:8a:3b:0b:da:1a:fe:06:d3:b8:7b:b5:ea:cc:
58:d4:98:0e:fd:ea:ef:e8:f0:5c:23:b6:4d:7d:d6:3b:9b:1d:
56:4a:89:e5:d6:0b:a1:67:08:e9:33:34:de:3e:7d:52:f6:3b:
e4:f1:92:d8:eb:d1:4e:3b:78:59:e6:10:68:a0:ed:03:09:17:
50:68:49:e7:d4:a2:a6:c1:33:27:d7:c7:6a:78:59:9e:3b:c2:
e7:c9:92:d6
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUcIPt2Oqr21gdyek3BiyaC6RrnbwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTJjMmE4MzU0Njg5YWVjMmE3NGZjYTE0OTQ0OTI3NjIx
YmEyN2M5NDAeFw0yMzA3MjEwNzE0MTJaFw0yNDA3MTkwNzE5MTJaMDMxMTAvBgNV
BAMTKDNBOEY3NDlEQTBBQkQ1NDVENkMzMzQ1RjQwNDA3QUQ3MTU5Qjg2RkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7WBM3rZU+rUbS06CQfhQV+VWW
dFd6hERR8wYPMuTB7bZ+gccwfc8CsjeDTDxGaRESUJkW2IxXgxLgRDA+nrXQF5av
E98f4bp8B/39p/SqLn7ffYPq+EuA/6fZ3Upy6UAka9SBYGrqiIrYKg8X9L2ulf/N
7qPq/KuSULmNty4JO4O4rB+rSJ7ypqpuvakl9ic6C6IiQLPJJphGdpmqRC+sHTUu
N5P9zYvZ9nu34XBRcwKcLqAv1A5DFoeEaEGEpWx5PLFS2oW8nAVlCZmUXmdk3E07
lTwS7dxNvlaI2jyVu9J0JP1s6L7f1HwAtHngeT+wkB+0g2dGhK8vQUfy+mzjAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUOo90naCr1UXWwzRfQEB61xWbhv8wHwYDVR0j
BBgwFoAUEsKoNUaJrsKnT8oUlEknYhuifJQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzcvMTJDMkE4MzU0Njg5QUVDMkE3NEZDQTE0OTQ0OTI3NjIxQkEyN0M5NC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0VzS29OVWFKcnNLblQ4b1VsRWtuWWh1
aWZKUS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzcvMzEzOTM0MmUzMTMxMzMyZTM2
MzcyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzNTMxMzEzNjM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
wnFDMA0GCSqGSIb3DQEBCwUAA4IBAQCEmf0UxeaJMmOrP/c2HphAxUohQYOMx5Rv
Eop0J1Kgu5qGKB+IH0+Re654pxcthpaWII8H5/3VY8iJY/2HZf6V53JkI3o4G8Dx
Rf3lTQHFmUjawPDKnyXGyRhnA+/Q8X/m8NICiN3IT4w2a2xXHMvF0wHK2+CkkKRk
7dEm0TtYpx854LvAZ9dSfCHf6Qrp5QgMaRsemGwMP9+zuLwPIjsWK0VOklqIpoo7
C9oa/gbTuHu16sxY1JgO/erv6PBcI7ZNfdY7mx1WSonl1guhZwjpMzTePn1S9jvk
8ZLY69FOO3hZ5hBooO0DCRdQaEnn1KKmwTMn18dqeFmeO8LnyZLW
-----END CERTIFICATE-----
Generated at Sat May 18 23:30:57 2024 by rpki-client on console-fra.rpki-client.org