Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133342e3232372e302f32342d3234203d3e20383334.roa
File: 34352e3133342e3232372e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: hYLkSbep0V3lbNyw02lZkrhuc8VNF8wzDyv28u6AAng=
Subject key identifier: 11:4E:BE:05:D2:04:34:A3:54:FB:31:DF:DD:4F:25:25:C7:09:54:3B
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 1CB9B30B207DBEA06E6F7B8D45FC2931680E52F3
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133342e3232372e302f32342d3234203d3e20383334.roa
Signing time: Tue 25 Jul 2023 17:14:56 +0000
ROA not before: Tue 25 Jul 2023 17:09:56 +0000
ROA not after: Tue 23 Jul 2024 17:14:56 +0000
asID: 834
IP address blocks: 45.134.227.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:b9:b3:0b:20:7d:be:a0:6e:6f:7b:8d:45:fc:29:31:68:0e:52:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Jul 25 17:09:56 2023 GMT
Not After : Jul 23 17:14:56 2024 GMT
Subject: CN=114EBE05D20434A354FB31DFDD4F2525C709543B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:92:b0:c4:9f:bb:47:89:8b:00:ac:79:93:e3:
c7:3d:af:5b:86:be:d7:10:1d:e1:82:d7:b2:c4:e0:
5a:20:e2:c6:67:18:05:e7:08:a0:e6:39:97:7c:33:
20:2c:46:e4:cb:89:97:6d:54:7f:46:37:e2:dd:b8:
8f:67:44:f3:de:d9:73:58:c8:62:39:25:ce:70:5e:
94:1b:b2:76:39:41:41:70:a0:20:34:64:2c:00:70:
2f:91:bd:ca:69:5e:8b:79:e4:f0:0d:b0:61:cb:95:
e8:55:06:46:a1:b8:4c:bb:d7:7e:d7:61:59:27:b6:
38:a7:10:41:fc:d5:26:48:01:b3:da:3a:7d:14:dc:
31:d1:a5:8b:db:7e:2c:7c:6a:a6:d6:24:ca:ef:44:
ce:99:8d:fa:e8:fb:06:81:43:15:17:f8:0f:97:b6:
dd:1f:85:13:21:48:cb:a2:32:ab:09:5a:09:b9:7b:
a8:a3:21:30:3d:7b:36:d0:89:36:a2:81:a6:b4:7c:
41:e2:7f:d9:02:a3:16:26:e3:4d:ff:2b:04:2a:86:
92:00:84:57:ce:13:27:cb:4b:56:bf:9b:e0:e6:89:
ed:9f:f6:00:28:54:5a:68:f0:df:d7:fc:cb:18:bf:
c8:68:55:66:ba:52:28:3e:9b:37:7e:ad:da:ee:86:
69:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:4E:BE:05:D2:04:34:A3:54:FB:31:DF:DD:4F:25:25:C7:09:54:3B
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133342e3232372e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.227.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:87:12:8e:ab:7c:ad:6a:d1:26:b5:8f:d4:cc:6f:4c:eb:0e:
fa:bf:75:1c:50:25:0a:5e:20:c1:37:c4:58:6d:3f:90:1a:ff:
91:f9:93:3f:2d:01:e0:19:4c:ca:eb:df:3e:a4:6b:ab:db:ad:
8d:2c:b6:a4:d0:9c:61:72:64:12:2b:c8:0d:a2:69:7f:3a:7c:
f1:48:43:46:57:28:a0:f8:a4:33:97:3a:cd:d9:0c:f8:22:89:
3f:15:92:65:b7:34:84:ec:1f:35:28:13:c1:bc:14:07:14:b9:
a3:d4:dd:c2:71:73:74:5f:85:55:0f:1b:78:e5:5e:46:8e:1b:
14:73:99:2f:0e:4a:7f:01:d0:43:da:fe:37:8a:98:69:a8:1a:
e6:42:fb:8b:8d:10:c8:6a:cc:a4:cb:22:e0:81:2f:d8:12:b1:
6e:b7:5c:de:b2:1c:89:0f:2e:c6:7e:47:9e:5a:ff:47:ad:3c:
a8:8b:1a:2e:4e:cb:83:85:66:02:07:7d:b0:0f:fe:d3:9c:d0:
11:08:21:cb:7e:e2:b9:59:2c:b9:7c:67:d9:71:d0:b5:b1:88:
3c:13:1c:00:86:9f:53:cc:16:e1:d9:0a:ad:1c:f1:b1:b5:14:
3a:34:fe:36:16:51:49:2c:2a:26:5a:dc:7e:52:18:f7:14:1b:
dd:71:9f:3e
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUHLmzCyB9vqBub3uNRfwpMWgOUvMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDhmYjliYTgyN2U2ZjEwYTdhZjM3NDkwODAzZGQ1YTA3
NjM5NzIzNTAeFw0yMzA3MjUxNzA5NTZaFw0yNDA3MjMxNzE0NTZaMDMxMTAvBgNV
BAMTKDExNEVCRTA1RDIwNDM0QTM1NEZCMzFERkRENEYyNTI1QzcwOTU0M0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6krDEn7tHiYsArHmT48c9r1uG
vtcQHeGC17LE4Fog4sZnGAXnCKDmOZd8MyAsRuTLiZdtVH9GN+LduI9nRPPe2XNY
yGI5Jc5wXpQbsnY5QUFwoCA0ZCwAcC+RvcppXot55PANsGHLlehVBkahuEy7137X
YVkntjinEEH81SZIAbPaOn0U3DHRpYvbfix8aqbWJMrvRM6Zjfro+waBQxUX+A+X
tt0fhRMhSMuiMqsJWgm5e6ijITA9ezbQiTaigaa0fEHif9kCoxYm403/KwQqhpIA
hFfOEyfLS1a/m+Dmie2f9gAoVFpo8N/X/MsYv8hoVWa6Uig+mzd+rdruhmkXAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUEU6+BdIENKNU+zHf3U8lJccJVDswHwYDVR0j
BBgwFoAUCPubqCfm8Qp683SQgD3VoHY5cjUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzIvMDhGQjlCQTgyN0U2RjEwQTdBRjM3NDkwODAzREQ1QTA3NjM5NzIzNS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NQdWJxQ2ZtOFFwNjgzU1FnRDNWb0hZ
NWNqVS5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzIvMzQzNTJlMzEzMzM0MmUzMjMy
MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzODMzMzQucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAthuMw
DQYJKoZIhvcNAQELBQADggEBAA6HEo6rfK1q0Sa1j9TMb0zrDvq/dRxQJQpeIME3
xFhtP5Aa/5H5kz8tAeAZTMrr3z6ka6vbrY0stqTQnGFyZBIryA2iaX86fPFIQ0ZX
KKD4pDOXOs3ZDPgiiT8VkmW3NITsHzUoE8G8FAcUuaPU3cJxc3RfhVUPG3jlXkaO
GxRzmS8OSn8B0EPa/jeKmGmoGuZC+4uNEMhqzKTLIuCBL9gSsW63XN6yHIkPLsZ+
R55a/0etPKiLGi5Oy4OFZgIHfbAP/tOc0BEIIct+4rlZLLl8Z9lx0LWxiDwTHACG
n1PMFuHZCq0c8bG1FDo0/jYWUUksKiZa3H5SGPcUG91xnz4=
-----END CERTIFICATE-----
Generated at Thu May 2 10:53:04 2024 by rpki-client on console-fra.rpki-client.org