Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e36342e302f32342d3234203d3e203633343733.roa
File: 33312e3138372e36342e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: Gy+VYilr3V5p6rrufO5Q7r8fu7YmuuaUIDjvUM3v1SM=
Subject key identifier: 0E:19:CF:4F:A9:CD:64:A0:07:ED:0F:4E:99:11:50:EC:69:92:9E:71
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 32B011AFDF865729D405B4D6EE27841AB5D71D4E
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e36342e302f32342d3234203d3e203633343733.roa
Signing time: Mon 26 Feb 2024 08:53:06 +0000
ROA not before: Mon 26 Feb 2024 08:48:06 +0000
ROA not after: Mon 24 Feb 2025 08:53:06 +0000
asID: 63473
IP address blocks: 31.187.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 16:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:b0:11:af:df:86:57:29:d4:05:b4:d6:ee:27:84:1a:b5:d7:1d:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Feb 26 08:48:06 2024 GMT
Not After : Feb 24 08:53:06 2025 GMT
Subject: CN=0E19CF4FA9CD64A007ED0F4E991150EC69929E71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:90:15:c8:80:54:58:f9:59:2a:b7:f0:65:02:
4a:00:32:77:0b:be:c0:88:6e:a1:ed:1c:68:a5:62:
3d:b3:3d:4a:6b:17:4c:e9:8a:45:c4:4f:30:fb:61:
07:ad:41:01:f6:86:53:82:da:b3:c5:50:ba:c4:0c:
6c:27:02:a3:b8:11:d7:b2:d4:12:6b:07:2d:c4:2d:
26:64:9f:9e:13:a2:24:4e:34:ce:e4:a0:51:45:0f:
71:f1:99:d8:65:6d:9a:f7:48:d7:f6:47:7b:e9:96:
b5:fc:a9:47:f0:24:89:96:8b:7a:3a:9b:ed:46:06:
90:7c:e4:07:9b:f9:24:ae:6a:ba:00:66:19:c7:b6:
8c:40:d2:78:d5:e5:1d:2f:75:9f:5e:2a:ba:56:4b:
1d:0d:2e:55:c0:92:33:c9:f2:62:e2:f1:fd:53:8b:
f1:7e:15:9a:ff:4a:bc:c7:8b:85:73:27:18:eb:69:
7c:e6:0c:41:7e:ce:8e:75:26:d5:f9:cd:90:03:2a:
75:88:d1:72:23:56:97:ca:ab:fb:b3:6d:ec:dc:0f:
9d:ba:c1:50:50:52:bd:c0:18:c2:52:f5:76:2c:01:
f2:90:67:11:37:91:a0:72:a1:56:ab:48:e8:11:91:
d2:6b:0a:16:5d:0c:e3:ea:a4:9f:f1:be:d2:e4:27:
ea:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:19:CF:4F:A9:CD:64:A0:07:ED:0F:4E:99:11:50:EC:69:92:9E:71
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/33312e3138372e36342e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.187.64.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:ef:e4:32:21:ca:9e:6b:66:14:fc:66:1a:6d:5c:80:46:68:
69:b2:ac:41:40:28:58:b1:ed:6b:be:7e:8b:dd:02:81:68:f4:
b5:eb:f5:cc:8b:a4:a1:6c:4f:78:f5:8b:b9:ee:82:28:18:64:
b4:5b:63:ce:80:83:8d:75:9a:c3:54:83:ff:5c:33:cf:6d:27:
55:9e:bc:32:af:34:d8:1f:65:84:24:22:eb:c9:d4:85:e7:5c:
98:0a:bd:cd:c5:ba:38:0e:88:c7:e7:d2:a6:65:a9:19:d5:d1:
10:0a:69:38:8e:80:4b:6d:a4:01:c4:75:d2:ff:96:b9:24:39:
e4:ed:a6:95:37:d5:14:53:9f:2a:a8:6f:d9:02:b1:a3:f5:c9:
dc:3a:9f:8b:0f:07:db:46:1f:e0:da:bd:92:1a:fe:12:54:f2:
1c:92:9a:27:23:7b:b6:05:e6:22:4e:3b:c3:8d:d8:3f:c0:05:
37:f3:91:b0:f7:8f:4f:ca:8d:5d:e4:37:f2:1d:7e:dd:2a:af:
4a:83:1d:bf:fe:81:97:7c:fc:03:d9:02:47:5e:c9:ec:2b:7a:
92:db:cf:98:e3:97:db:10:fc:01:58:55:ab:00:15:a4:52:97:
6f:87:3a:65:b5:93:55:7d:bd:e1:d6:00:5c:fc:a2:66:b0:9e:
d4:e4:40:a2
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUMrARr9+GVynUBbTW7ieEGrXXHU4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDAyMjYwODQ4MDZaFw0yNTAyMjQwODUzMDZaMDMxMTAvBgNV
BAMTKDBFMTlDRjRGQTlDRDY0QTAwN0VEMEY0RTk5MTE1MEVDNjk5MjlFNzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdkBXIgFRY+Vkqt/BlAkoAMncL
vsCIbqHtHGilYj2zPUprF0zpikXETzD7YQetQQH2hlOC2rPFULrEDGwnAqO4Edey
1BJrBy3ELSZkn54ToiRONM7koFFFD3HxmdhlbZr3SNf2R3vplrX8qUfwJImWi3o6
m+1GBpB85Aeb+SSuaroAZhnHtoxA0njV5R0vdZ9eKrpWSx0NLlXAkjPJ8mLi8f1T
i/F+FZr/SrzHi4VzJxjraXzmDEF+zo51JtX5zZADKnWI0XIjVpfKq/uzbezcD526
wVBQUr3AGMJS9XYsAfKQZxE3kaByoVarSOgRkdJrChZdDOPqpJ/xvtLkJ+qzAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUDhnPT6nNZKAH7Q9OmRFQ7GmSnnEwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzMzMTJlMzEzODM3MmUzNjM0
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM0MzczMy5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB+7
QDANBgkqhkiG9w0BAQsFAAOCAQEAP+/kMiHKnmtmFPxmGm1cgEZoabKsQUAoWLHt
a75+i90CgWj0tev1zIukoWxPePWLue6CKBhktFtjzoCDjXWaw1SD/1wzz20nVZ68
Mq802B9lhCQi68nUhedcmAq9zcW6OA6Ix+fSpmWpGdXREAppOI6AS22kAcR10v+W
uSQ55O2mlTfVFFOfKqhv2QKxo/XJ3Dqfiw8H20Yf4Nq9khr+ElTyHJKaJyN7tgXm
Ik47w43YP8AFN/ORsPePT8qNXeQ38h1+3SqvSoMdv/6Bl3z8A9kCR17J7Ct6ktvP
mOOX2xD8AVhVqwAVpFKXb4c6ZbWTVX294dYAXPyiZrCe1ORAog==
-----END CERTIFICATE-----
Generated at Mon May 20 19:28:04 2024 by rpki-client on console-fra.rpki-client.org