Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e3134392e32362e302f32342d3234203d3e20313336373837.roa
File: 3139332e3134392e32362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: l6+w4JJcG+FPXfsbIZa3rNRKUQjg150VLI8c7gbl0Bs=
Subject key identifier: FE:E6:98:86:26:53:FB:80:E9:B9:87:A6:D7:0C:39:90:5A:07:38:5C
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 1E3DC5B46F8A13449D98E72FCD8960B6BE294513
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e3134392e32362e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 13 Feb 2024 12:54:07 +0000
ROA not before: Tue 13 Feb 2024 12:49:07 +0000
ROA not after: Tue 11 Feb 2025 12:54:07 +0000
asID: 136787
IP address blocks: 193.149.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:3d:c5:b4:6f:8a:13:44:9d:98:e7:2f:cd:89:60:b6:be:29:45:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Feb 13 12:49:07 2024 GMT
Not After : Feb 11 12:54:07 2025 GMT
Subject: CN=FEE698862653FB80E9B987A6D70C39905A07385C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f7:3f:3d:6b:47:fa:9a:64:14:ae:cf:1f:35:
a6:e9:3e:07:18:56:dd:c6:94:57:70:50:f5:42:26:
4f:fc:a1:af:83:27:a2:56:f2:f2:ec:1c:06:db:a0:
62:e9:e7:d1:b2:97:63:90:e3:c7:bd:73:5d:25:9b:
8b:f5:87:1a:a7:33:58:24:28:84:9a:b3:bb:d6:93:
4a:da:59:29:14:7e:7f:12:77:07:56:a6:20:92:2d:
a7:29:f5:cb:b9:83:3e:cc:a0:2c:c2:a9:4a:9c:e2:
0a:8a:8a:8f:be:a7:63:36:2c:a4:f9:4c:7c:4c:c9:
ce:97:3b:d6:83:33:ce:75:74:94:74:09:fd:4a:d5:
30:4b:ed:4f:37:31:b8:2f:b6:e5:49:7f:9b:5b:58:
ed:2c:e1:19:f9:1e:a8:03:63:a8:28:f6:f4:a0:97:
cb:27:c7:e5:fc:7d:ff:9d:cc:3f:ee:f7:c6:41:8f:
60:b2:69:5e:91:98:5c:62:ef:d1:c5:72:df:d6:4a:
a2:c2:ef:5e:5a:34:ae:62:16:de:c1:b6:f5:0b:9c:
33:a5:5e:91:c2:d1:8e:f7:83:28:de:1c:0c:57:8a:
47:4c:f6:86:43:a8:00:7e:50:6c:35:3d:c0:b2:56:
f0:86:2e:9c:1a:eb:9d:ea:c8:90:23:7c:32:bd:d7:
4e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:E6:98:86:26:53:FB:80:E9:B9:87:A6:D7:0C:39:90:5A:07:38:5C
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/3139332e3134392e32362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.149.26.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:bb:8c:81:a3:e2:91:92:8e:22:93:57:ec:b9:3e:4c:0b:08:
d0:ac:5d:9d:48:58:10:58:76:ee:e2:32:59:44:ae:4c:31:36:
e5:83:23:5a:5e:4d:70:08:bb:cc:af:d5:31:e8:cc:35:17:84:
91:ff:7d:a2:86:a0:2f:58:4a:56:9c:96:d1:52:95:d5:ca:27:
7a:44:b2:d0:9b:42:65:b0:93:bf:9d:96:a9:77:c7:de:7b:c9:
28:5d:af:4a:ee:66:5b:b7:07:90:0e:4f:b2:b3:22:f8:5a:9c:
3e:b4:39:ec:73:85:ad:59:9a:af:8e:46:20:1d:27:3f:8d:63:
49:aa:39:55:3c:2e:bb:52:21:41:d4:11:94:a3:08:02:52:e3:
cf:0b:29:76:6c:6b:49:3e:64:d6:77:b7:3d:77:e1:8a:bd:c5:
2c:fa:7c:67:65:93:cd:b5:f9:0f:f3:d4:31:27:c9:c0:de:c7:
a9:63:53:f1:29:67:c6:1a:6b:51:65:a8:f1:6f:bb:02:f7:24:
ab:66:70:36:7e:f5:ef:53:e2:2d:7a:f7:98:a8:cc:38:84:1e:
3a:45:9f:19:2f:5d:f1:4b:e1:23:e1:57:05:3d:ea:11:2f:50:
f4:5c:0e:c4:68:50:88:3f:1d:b9:d9:a2:8a:aa:f3:62:13:ff:
8f:ba:17:ab
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUHj3FtG+KE0SdmOcvzYlgtr4pRRMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWQ3MDg0NTgyMmE2MTQwOGVjMmE1ZmQ1ODBjMTMyZGE3
NzdmMDlkMTAeFw0yNDAyMTMxMjQ5MDdaFw0yNTAyMTExMjU0MDdaMDMxMTAvBgNV
BAMTKEZFRTY5ODg2MjY1M0ZCODBFOUI5ODdBNkQ3MEMzOTkwNUEwNzM4NUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC79z89a0f6mmQUrs8fNabpPgcY
Vt3GlFdwUPVCJk/8oa+DJ6JW8vLsHAbboGLp59Gyl2OQ48e9c10lm4v1hxqnM1gk
KISas7vWk0raWSkUfn8SdwdWpiCSLacp9cu5gz7MoCzCqUqc4gqKio++p2M2LKT5
THxMyc6XO9aDM851dJR0Cf1K1TBL7U83MbgvtuVJf5tbWO0s4Rn5HqgDY6go9vSg
l8snx+X8ff+dzD/u98ZBj2CyaV6RmFxi79HFct/WSqLC715aNK5iFt7BtvULnDOl
XpHC0Y73gyjeHAxXikdM9oZDqAB+UGw1PcCyVvCGLpwa653qyJAjfDK9107rAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU/uaYhiZT+4DpuYem1ww5kFoHOFwwHwYDVR0j
BBgwFoAUXXCEWCKmFAjsKl/VgMEy2nd/CdEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzgvNUQ3MDg0NTgyMkE2MTQwOEVDMkE1RkQ1ODBDMTMyREE3NzdGMDlEMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hYQ0VXQ0ttRkFqc0tsX1ZnTUV5Mm5k
X0NkRS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzgvMzEzOTMzMmUzMTM0MzkyZTMy
MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BADBlRowDQYJKoZIhvcNAQELBQADggEBAD67jIGj4pGSjiKTV+y5PkwLCNCsXZ1I
WBBYdu7iMllErkwxNuWDI1peTXAIu8yv1THozDUXhJH/faKGoC9YSlacltFSldXK
J3pEstCbQmWwk7+dlql3x957yShdr0ruZlu3B5AOT7KzIvhanD60Oexzha1Zmq+O
RiAdJz+NY0mqOVU8LrtSIUHUEZSjCAJS488LKXZsa0k+ZNZ3tz134Yq9xSz6fGdl
k821+Q/z1DEnycDex6ljU/EpZ8Yaa1FlqPFvuwL3JKtmcDZ+9e9T4i1695iozDiE
HjpFnxkvXfFL4SPhVwU96hEvUPRcDsRoUIg/HbnZooqq82IT/4+6F6s=
-----END CERTIFICATE-----
Generated at Wed May 8 19:21:54 2024 by rpki-client on console-ams.rpki-client.org