Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/3139352e3138342e39322e302f32332d3234203d3e203631333137.roa
File: 3139352e3138342e39322e302f32332d3234203d3e203631333137.roa (raw, json)
Hash identifier: qGNft1uCzkGwuPJH7iDQ4xUhWrhNnduWexIhT+DgvI8=
Subject key identifier: 93:6B:3C:26:44:C8:09:71:A1:87:C3:00:7C:BF:9F:7A:5B:C5:FD:FE
Certificate issuer: /CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Certificate serial: 14F603E871673BF72D506CAEF3B84C88440AE6
Authority key identifier: 9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/3139352e3138342e39322e302f32332d3234203d3e203631333137.roa
Signing time: Wed 23 Apr 2025 16:54:04 +0000
ROA not before: Wed 23 Apr 2025 16:49:04 +0000
ROA not after: Wed 22 Apr 2026 16:54:04 +0000
asID: 61317
IP address blocks: 195.184.92.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 00:24:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:f6:03:e8:71:67:3b:f7:2d:50:6c:ae:f3:b8:4c:88:44:0a:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Validity
Not Before: Apr 23 16:49:04 2025 GMT
Not After : Apr 22 16:54:04 2026 GMT
Subject: CN=936B3C2644C80971A187C3007CBF9F7A5BC5FDFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c5:fd:91:a1:00:0d:e4:47:3e:65:88:7f:24:
07:a6:07:48:82:d2:24:ce:07:17:aa:4f:64:9e:eb:
62:4e:3c:73:b2:9b:4b:50:04:92:64:f9:fb:d3:31:
09:83:51:7c:07:0c:34:c1:5d:c9:dc:06:3d:b2:67:
56:a1:eb:02:09:da:4c:82:6c:81:88:82:9b:47:1a:
b1:5a:6e:2a:75:19:4a:32:e9:cf:f0:10:8a:d3:b2:
9d:6b:26:aa:36:65:01:04:03:8c:67:c2:ef:25:94:
fb:c2:5e:74:de:cd:09:8f:37:de:d6:b2:39:eb:40:
b3:e2:0e:09:fe:7a:0b:ac:8d:71:08:7c:92:4b:53:
89:94:17:2c:67:6d:0e:af:03:c8:45:27:c6:9a:96:
4f:29:b0:5d:31:8c:54:02:69:fb:c3:3f:9b:b9:38:
66:62:16:2f:98:c2:51:97:61:ed:ad:a5:2f:2b:20:
d5:13:66:08:ee:f7:35:b3:a8:b0:6d:d6:35:7b:e3:
d6:78:73:ed:96:12:a8:de:9f:2a:cc:1e:7d:18:51:
d0:5a:de:a1:1a:5d:a0:cc:d9:92:d6:29:86:d7:b8:
d5:3a:27:f9:72:3b:75:e9:65:1a:9e:01:1d:ae:14:
87:4a:5b:ec:5d:10:ed:40:84:95:33:3c:44:9f:fa:
5b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:6B:3C:26:44:C8:09:71:A1:87:C3:00:7C:BF:9F:7A:5B:C5:FD:FE
X509v3 Authority Key Identifier:
keyid:9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/3139352e3138342e39322e302f32332d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.92.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:b8:38:6c:ab:c5:a1:96:8a:17:98:ef:67:4c:80:1a:a7:1b:
0f:16:0b:26:27:73:65:d0:fe:cc:80:0d:39:46:af:2e:14:25:
5d:81:10:54:e4:42:98:1d:78:8a:c9:e8:dd:77:1b:f0:6c:90:
ba:42:11:c2:4b:ae:31:5c:1c:90:9c:6a:77:89:b6:1c:b2:5d:
8c:00:80:d5:76:b4:d2:26:87:36:c1:ef:8f:64:42:e5:43:7c:
df:50:8f:20:4e:04:bb:10:c3:3a:b6:0c:e2:78:b0:30:f9:c8:
1f:9a:26:17:bf:75:93:b1:66:08:36:80:0f:42:69:56:5b:e1:
76:4c:c6:35:31:2e:ca:db:91:49:98:3c:9c:6a:c3:9d:84:f2:
6e:f2:3e:cb:a6:f1:cd:af:ed:9b:34:da:2d:92:cc:dc:62:fb:
72:2a:06:41:02:73:91:63:d3:64:e3:a9:29:41:c3:2b:0e:6f:
ba:b8:f4:c3:0e:55:d5:c5:e7:a7:ad:fe:ad:4e:c4:a8:41:64:
07:0f:d5:64:58:49:9c:8c:52:0c:1d:d9:b5:30:45:93:ef:ff:
a0:42:0a:a5:3f:1d:e0:4b:34:09:01:6a:2f:5c:51:da:e3:a6:
27:5a:a5:a5:13:9e:de:c8:95:db:70:07:6f:9e:b2:fa:05:0e:
53:bf:8e:9b
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgITFPYD6HFnO/ctUGyu87hMiEQK5jANBgkqhkiG9w0BAQsF
ADAzMTEwLwYDVQQDEyg5ZjBkMjRjODU1ZWVlMDBmZTRhYmYzOTAzYzZlOGZjYzcw
ODNlZDRkMB4XDTI1MDQyMzE2NDkwNFoXDTI2MDQyMjE2NTQwNFowMzExMC8GA1UE
AxMoOTM2QjNDMjY0NEM4MDk3MUExODdDMzAwN0NCRjlGN0E1QkM1RkRGRTCCASIw
DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL3F/ZGhAA3kRz5liH8kB6YHSILS
JM4HF6pPZJ7rYk48c7KbS1AEkmT5+9MxCYNRfAcMNMFdydwGPbJnVqHrAgnaTIJs
gYiCm0casVpuKnUZSjLpz/AQitOynWsmqjZlAQQDjGfC7yWU+8JedN7NCY833tay
OetAs+IOCf56C6yNcQh8kktTiZQXLGdtDq8DyEUnxpqWTymwXTGMVAJp+8M/m7k4
ZmIWL5jCUZdh7a2lLysg1RNmCO73NbOosG3WNXvj1nhz7ZYSqN6fKswefRhR0Fre
oRpdoMzZktYphte41Ton+XI7dellGp4BHa4Uh0pb7F0Q7UCElTM8RJ/6W9UCAwEA
AaOCAj0wggI5MB0GA1UdDgQWBBSTazwmRMgJcaGHwwB8v596W8X9/jAfBgNVHSME
GDAWgBSfDSTIVe7gD+Sr85A8bo/McIPtTTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1Ud
HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5u
ZXQvcmVwb3NpdG9yeS9hZjMxNzY4ZC00MmIxLTRlOTItYjgzZi1iZWY3ZWUwMTc4
MTMvMC85RjBEMjRDODU1RUVFMDBGRTRBQkYzOTAzQzZFOEZDQzcwODNFRDRELmNy
bDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvbncwa3lGWHU0QV9rcV9PUVBHNlB6SENE
N1UwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hZjMxNzY4ZC00
MmIxLTRlOTItYjgzZi1iZWY3ZWUwMTc4MTMvMC8zMTM5MzUyZTMxMzgzNDJlMzkz
MjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDM2MzEzMzMxMzcucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHD
uFwwDQYJKoZIhvcNAQELBQADggEBAGy4OGyrxaGWiheY72dMgBqnGw8WCyYnc2XQ
/syADTlGry4UJV2BEFTkQpgdeIrJ6N13G/BskLpCEcJLrjFcHJCcaneJthyyXYwA
gNV2tNImhzbB749kQuVDfN9QjyBOBLsQwzq2DOJ4sDD5yB+aJhe/dZOxZgg2gA9C
aVZb4XZMxjUxLsrbkUmYPJxqw52E8m7yPsum8c2v7Zs02i2SzNxi+3IqBkECc5Fj
02TjqSlBwysOb7q49MMOVdXF56et/q1OxKhBZAcP1WRYSZyMUgwd2bUwRZPv/6BC
CqU/HeBLNAkBai9cUdrjpidapaUTnt7IldtwB2+esvoFDlO/jps=
-----END CERTIFICATE-----
Generated at Sat Apr 26 18:04:41 2025 by rpki-client