Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/34362e3130322e3233332e302f32342d3234203d3e203631333137.roa
File: 34362e3130322e3233332e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: LBxOdfXYCQlVcmQ13sPgWVu4orxmtlYDnZjoxjqn17M=
Subject key identifier: AF:75:61:B9:4F:A0:AF:30:BA:57:C4:9D:21:D3:7F:71:92:B0:BD:6E
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 1FDA700B3558240E3AF83F43806935EE5138495A
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/34362e3130322e3233332e302f32342d3234203d3e203631333137.roa
Signing time: Sat 07 Oct 2023 15:28:08 +0000
ROA not before: Sat 07 Oct 2023 15:23:08 +0000
ROA not after: Sat 05 Oct 2024 15:28:08 +0000
asID: 61317
IP address blocks: 46.102.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:da:70:0b:35:58:24:0e:3a:f8:3f:43:80:69:35:ee:51:38:49:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Oct 7 15:23:08 2023 GMT
Not After : Oct 5 15:28:08 2024 GMT
Subject: CN=AF7561B94FA0AF30BA57C49D21D37F7192B0BD6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c7:7f:a1:af:84:b5:75:8b:63:8a:38:09:d2:
11:dc:dc:99:93:dc:90:a2:20:de:8e:71:0d:79:21:
13:e5:74:0e:09:bc:f6:ff:66:45:39:2b:aa:89:d7:
e9:99:bb:a7:b8:ee:17:c3:18:9c:f1:85:af:d1:fd:
48:3a:16:c7:11:4d:e4:24:af:81:5b:db:98:26:e8:
f3:d4:80:3b:ea:44:9a:23:8a:e1:56:ae:a1:91:b0:
49:0f:cc:2d:94:b3:56:87:a0:f8:d8:55:f2:14:01:
40:b9:6d:80:ee:cf:ab:9f:4a:34:d7:82:8e:ca:bc:
a9:d9:57:e0:7c:c4:36:77:d4:37:8a:8f:da:d3:04:
05:eb:a5:33:d0:6b:da:82:c3:8c:35:73:11:68:18:
f8:1b:b5:65:1b:9b:b1:c2:8f:f7:37:88:92:f4:1b:
ba:86:c2:43:42:35:d8:b9:35:67:2b:bc:12:2f:6d:
e4:37:eb:95:52:5e:0f:bf:61:dd:a0:ad:17:04:f9:
61:43:26:f6:9e:72:20:a9:27:c2:7b:b5:42:72:9b:
07:a6:f3:fa:56:d0:9e:25:6f:49:22:b3:93:3e:e5:
70:a2:6e:d4:bf:f8:48:e5:0d:c8:60:df:f7:c2:65:
87:a6:51:93:c3:05:d1:1a:48:77:9c:26:94:2a:45:
c4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:75:61:B9:4F:A0:AF:30:BA:57:C4:9D:21:D3:7F:71:92:B0:BD:6E
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/34362e3130322e3233332e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.233.0/24
Signature Algorithm: sha256WithRSAEncryption
90:04:fe:bb:f0:12:8d:05:7c:03:8f:16:94:86:98:c7:0f:46:
fb:7d:21:b6:73:48:95:78:17:bf:41:36:be:06:43:d3:0d:66:
91:a4:04:d1:a3:a0:12:c9:3f:3e:e6:be:a1:a0:a3:02:2c:a2:
52:b8:84:c1:78:66:d3:09:75:d2:49:46:94:64:73:4c:45:0c:
c4:72:84:43:3d:f6:6f:e4:01:fd:c1:7f:6b:5b:bb:79:a0:a0:
79:5e:52:7f:85:ea:15:e8:89:c7:0e:1b:75:07:e6:c8:c3:e2:
15:b3:7f:74:56:55:58:b4:08:b4:2d:f9:98:b8:c9:f9:70:31:
f7:f7:5e:91:17:83:7e:bb:10:5f:e6:f4:b2:77:ec:f3:7b:7d:
64:0d:d2:14:03:51:b7:0b:2c:d8:e0:31:83:87:91:31:af:97:
20:01:ee:ab:01:dd:ba:58:17:6c:2e:51:e8:76:dd:43:5e:d8:
48:eb:67:b2:8f:91:35:10:9c:09:5d:c7:da:cd:5f:fd:53:8b:
8a:e3:bf:de:91:92:dc:b1:0c:0f:2d:b0:34:2f:ca:06:a5:b0:
63:54:ea:d9:1f:20:1f:76:75:d1:38:64:04:de:56:61:9d:c8:
cf:12:cc:70:2e:d6:1e:8a:ae:d9:7f:f7:fd:89:29:55:79:e4:
cc:71:d4:58
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUH9pwCzVYJA46+D9DgGk17lE4SVowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZWQ5ZWRiMmExNTg3MTc4NWZiYWUzOGUyM2MzODgyMGRi
ZmEyY2NhNDAeFw0yMzEwMDcxNTIzMDhaFw0yNDEwMDUxNTI4MDhaMDMxMTAvBgNV
BAMTKEFGNzU2MUI5NEZBMEFGMzBCQTU3QzQ5RDIxRDM3RjcxOTJCMEJENkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5x3+hr4S1dYtjijgJ0hHc3JmT
3JCiIN6OcQ15IRPldA4JvPb/ZkU5K6qJ1+mZu6e47hfDGJzxha/R/Ug6FscRTeQk
r4Fb25gm6PPUgDvqRJojiuFWrqGRsEkPzC2Us1aHoPjYVfIUAUC5bYDuz6ufSjTX
go7KvKnZV+B8xDZ31DeKj9rTBAXrpTPQa9qCw4w1cxFoGPgbtWUbm7HCj/c3iJL0
G7qGwkNCNdi5NWcrvBIvbeQ365VSXg+/Yd2grRcE+WFDJvaeciCpJ8J7tUJymwem
8/pW0J4lb0kis5M+5XCibtS/+EjlDchg3/fCZYemUZPDBdEaSHecJpQqRcTbAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUr3VhuU+grzC6V8SdIdN/cZKwvW4wHwYDVR0j
BBgwFoAU7Z7bKhWHF4X7rjjiPDiCDb+izKQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZWEwZGU5N2YtN2VlOC00Y2UwLWIwNDUtZWZhYzhjMjQz
Yzc5LzAvRUQ5RURCMkExNTg3MTc4NUZCQUUzOEUyM0MzODgyMERCRkEyQ0NBNC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzdaN2JLaFdIRjRYN3JqamlQRGlDRGIt
aXpLUS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZWEwZGU5N2Yt
N2VlOC00Y2UwLWIwNDUtZWZhYzhjMjQzYzc5LzAvMzQzNjJlMzEzMDMyMmUzMjMz
MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
LmbpMA0GCSqGSIb3DQEBCwUAA4IBAQCQBP678BKNBXwDjxaUhpjHD0b7fSG2c0iV
eBe/QTa+BkPTDWaRpATRo6ASyT8+5r6hoKMCLKJSuITBeGbTCXXSSUaUZHNMRQzE
coRDPfZv5AH9wX9rW7t5oKB5XlJ/heoV6InHDht1B+bIw+IVs390VlVYtAi0LfmY
uMn5cDH3916RF4N+uxBf5vSyd+zze31kDdIUA1G3CyzY4DGDh5Exr5cgAe6rAd26
WBdsLlHodt1DXthI62eyj5E1EJwJXcfazV/9U4uK47/ekZLcsQwPLbA0L8oGpbBj
VOrZHyAfdnXROGQE3lZhncjPEsxwLtYeiq7Zf/f9iSlVeeTMcdRY
-----END CERTIFICATE-----
Generated at Fri May 3 21:05:41 2024 by rpki-client on console-fra.rpki-client.org