Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/34352e3134362e3136322e302f32342d3234203d3e20323136303437.roa
File: 34352e3134362e3136322e302f32342d3234203d3e20323136303437.roa (raw, json)
Hash identifier: y4AweJgdYeJE5gONKNUgbDMvt2QDGhgCcaml+IqOjGY=
Subject key identifier: DF:74:A9:15:9D:AE:7C:F9:61:42:86:16:A8:FC:71:5E:D9:19:E7:78
Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3
Certificate serial: 51C083898A05A5A9237C2B91EDAF98AC7421B7B8
Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/34352e3134362e3136322e302f32342d3234203d3e20323136303437.roa
Signing time: Wed 15 Nov 2023 12:50:34 +0000
ROA not before: Wed 15 Nov 2023 12:45:34 +0000
ROA not after: Wed 13 Nov 2024 12:50:34 +0000
asID: 216047
IP address blocks: 45.146.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl
rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 07:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:c0:83:89:8a:05:a5:a9:23:7c:2b:91:ed:af:98:ac:74:21:b7:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3
Validity
Not Before: Nov 15 12:45:34 2023 GMT
Not After : Nov 13 12:50:34 2024 GMT
Subject: CN=DF74A9159DAE7CF961428616A8FC715ED919E778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d4:74:fe:7e:c6:da:66:4d:4e:76:f5:f4:1e:
03:6d:91:2f:f9:33:3f:9d:16:4d:a8:c8:6a:3c:59:
45:58:34:c9:75:f7:bc:7d:78:23:4f:45:52:37:87:
77:ee:28:58:c0:da:46:43:91:2b:37:d6:66:e7:29:
80:69:77:c3:5e:31:91:60:66:f4:fa:e7:9a:13:52:
d9:71:2b:d3:8b:6e:cc:30:49:d1:b7:30:49:fd:86:
7a:4b:f6:68:14:9e:8d:a9:1f:bf:74:56:fd:55:ff:
d5:89:3f:fc:6e:69:3e:6e:77:37:2d:dc:1f:fc:65:
de:81:db:57:80:32:3a:ab:6a:8c:85:57:cc:b0:68:
ea:de:36:26:a1:81:80:61:4a:6c:74:4b:41:b0:43:
8d:5b:c8:2b:e8:a9:12:9e:83:6b:37:33:cd:54:06:
ef:7f:5b:74:74:af:31:ec:0e:e1:fb:12:a5:6c:ad:
3b:f5:28:09:b4:b7:95:25:68:aa:01:23:f3:51:1a:
79:69:10:a7:31:ca:d0:27:37:19:7f:74:6f:8a:a8:
5f:c3:0e:8d:40:15:06:b0:48:d6:35:34:6f:a5:44:
61:f9:4d:91:ab:08:db:71:d6:cf:d5:cf:cd:bc:88:
d0:f9:3f:29:1f:5d:14:39:89:50:fc:a3:00:40:b9:
d8:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:74:A9:15:9D:AE:7C:F9:61:42:86:16:A8:FC:71:5E:D9:19:E7:78
X509v3 Authority Key Identifier:
keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/34352e3134362e3136322e302f32342d3234203d3e20323136303437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.162.0/24
Signature Algorithm: sha256WithRSAEncryption
97:99:f4:1b:24:f3:aa:42:29:5d:5b:e1:1c:de:0b:56:67:a0:
00:43:0d:ce:d4:a1:ef:18:ba:2f:44:9e:b7:f2:3a:b1:9c:b1:
0e:72:e3:2b:71:80:57:87:ba:a7:b6:2b:4c:db:bc:1e:c6:c5:
af:23:72:e3:a3:c1:ea:22:38:e7:90:d2:1c:fa:9d:7d:55:ee:
ee:4d:17:51:a6:a5:16:ae:b8:bd:b3:0f:dd:f5:f1:75:fd:00:
6b:b9:b1:49:9c:4c:23:d6:64:9d:23:19:bc:e0:f7:58:0e:e7:
3a:fc:fb:d6:64:c3:4a:6d:ec:19:7c:a9:45:2c:13:ad:04:9f:
aa:95:e6:f0:22:6d:f5:7d:f6:dc:24:1a:59:e0:ee:d7:a2:b5:
be:50:a5:25:b3:88:54:1f:97:72:72:18:8d:a9:e5:e1:72:b5:
4f:b1:95:9d:0f:dd:71:7a:12:cc:09:0b:87:fd:85:3e:e0:66:
fe:5a:0d:fd:09:94:a4:d9:78:db:2f:08:0e:c5:a5:65:ee:8b:
37:7e:d4:a0:41:fd:db:a0:f1:25:d7:f6:03:45:1c:d9:85:92:
3b:f3:2b:6d:98:a6:b4:1e:c2:5d:fc:33:63:0a:b4:5e:82:4e:
55:69:04:e6:4f:c3:db:7c:73:74:d4:e6:48:47:ac:03:7e:cb:
e8:9e:1c:2b
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUUcCDiYoFpakjfCuR7a+YrHQht7gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWRlZmUwOTIyZjRmNTUyNzBkY2Q1YzA4ZjA0ZjFjN2Jm
MjYwNzNjMzAeFw0yMzExMTUxMjQ1MzRaFw0yNDExMTMxMjUwMzRaMDMxMTAvBgNV
BAMTKERGNzRBOTE1OURBRTdDRjk2MTQyODYxNkE4RkM3MTVFRDkxOUU3NzgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv1HT+fsbaZk1OdvX0HgNtkS/5
Mz+dFk2oyGo8WUVYNMl197x9eCNPRVI3h3fuKFjA2kZDkSs31mbnKYBpd8NeMZFg
ZvT655oTUtlxK9OLbswwSdG3MEn9hnpL9mgUno2pH790Vv1V/9WJP/xuaT5udzct
3B/8Zd6B21eAMjqraoyFV8ywaOreNiahgYBhSmx0S0GwQ41byCvoqRKeg2s3M81U
Bu9/W3R0rzHsDuH7EqVsrTv1KAm0t5UlaKoBI/NRGnlpEKcxytAnNxl/dG+KqF/D
Do1AFQawSNY1NG+lRGH5TZGrCNtx1s/Vz828iND5PykfXRQ5iVD8owBAudhxAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU33SpFZ2ufPlhQoYWqPxxXtkZ53gwHwYDVR0j
BBgwFoAUXe/gki9PVScNzVwI8E8ce/Jgc8MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMmZlMmIyN2EtMWVjNS00YWI3LTk3OGUtNmRhOWNmOWYz
NzkwLzAvNURFRkUwOTIyRjRGNTUyNzBEQ0Q1QzA4RjA0RjFDN0JGMjYwNzNDMy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hlX2draTlQVlNjTnpWd0k4RThjZV9K
Z2M4TS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmZlMmIyN2Et
MWVjNS00YWI3LTk3OGUtNmRhOWNmOWYzNzkwLzAvMzQzNTJlMzEzNDM2MmUzMTM2
MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMxMzYzMDM0Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAAtkqIwDQYJKoZIhvcNAQELBQADggEBAJeZ9Bsk86pCKV1b4RzeC1ZnoABDDc7U
oe8Yui9EnrfyOrGcsQ5y4ytxgFeHuqe2K0zbvB7Gxa8jcuOjweoiOOeQ0hz6nX1V
7u5NF1GmpRauuL2zD9318XX9AGu5sUmcTCPWZJ0jGbzg91gO5zr8+9Zkw0pt7Bl8
qUUsE60En6qV5vAibfV99twkGlng7teitb5QpSWziFQfl3JyGI2p5eFytU+xlZ0P
3XF6EswJC4f9hT7gZv5aDf0JlKTZeNsvCA7FpWXuizd+1KBB/dug8SXX9gNFHNmF
kjvzK22YprQewl38M2MKtF6CTlVpBOZPw9t8c3TU5khHrAN+y+ieHCs=
-----END CERTIFICATE-----
Generated at Fri May 31 19:29:51 2024 by rpki-client on console-ams.rpki-client.org