Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e36372e3231392e302f32342d3234203d3e203633343733.roa
File: 34352e36372e3231392e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: jWovR6aajlYeY8nApb+N8hgaRWkjnXBksYx8WkICeLI=
Subject key identifier: C6:0B:52:6F:D7:64:8C:36:11:30:37:18:9C:EA:03:64:40:95:0F:17
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 4A91898D9C3DA1B735F715EA9B20399EAC78EC13
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e36372e3231392e302f32342d3234203d3e203633343733.roa
Signing time: Mon 04 Dec 2023 09:27:21 +0000
ROA not before: Mon 04 Dec 2023 09:22:21 +0000
ROA not after: Mon 02 Dec 2024 09:27:21 +0000
asID: 63473
IP address blocks: 45.67.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:91:89:8d:9c:3d:a1:b7:35:f7:15:ea:9b:20:39:9e:ac:78:ec:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Dec 4 09:22:21 2023 GMT
Not After : Dec 2 09:27:21 2024 GMT
Subject: CN=C60B526FD7648C36113037189CEA036440950F17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:8d:fc:0c:ae:64:06:ce:af:1d:df:d6:2c:de:
08:2c:1e:3e:a6:58:a5:b5:2d:4f:ef:d6:6e:87:7d:
60:c4:d2:62:88:0b:39:79:4a:5d:d8:8c:37:40:27:
00:f9:49:c5:f5:a1:8e:70:48:7d:8a:af:73:90:31:
7a:6d:14:7b:f4:b7:3b:86:f3:1d:07:28:65:89:23:
fb:11:22:5b:f3:e0:9a:f5:7b:dd:d2:03:e7:60:76:
9a:28:e2:83:b2:22:d5:17:4e:a7:d3:c0:51:da:8f:
d7:4a:c6:3a:3c:16:89:47:f5:75:58:de:5e:24:f0:
c8:69:1f:69:b6:c0:08:f6:27:39:45:f2:30:bb:67:
7e:2e:cd:21:dd:2f:b1:d7:f0:d1:39:33:1f:40:23:
40:1c:33:95:d5:53:06:9c:da:9d:9f:cb:51:5d:0e:
a9:ed:70:bc:6e:52:88:32:3e:bc:ce:d6:87:5d:5f:
35:33:a0:38:3e:93:42:c6:25:57:7b:00:98:7a:05:
42:54:e5:05:db:a9:9d:60:8a:1e:06:0d:81:03:4e:
94:87:c9:2d:76:86:a0:2c:8e:cd:13:66:64:da:8a:
9a:60:6e:93:bc:47:11:d3:da:0f:27:5b:85:84:5c:
d4:4f:d8:1f:91:71:6b:67:91:95:21:81:21:44:05:
89:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:0B:52:6F:D7:64:8C:36:11:30:37:18:9C:EA:03:64:40:95:0F:17
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e36372e3231392e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.219.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:db:df:06:0b:73:17:fa:c5:9c:82:5f:18:65:f7:f5:87:c1:
b5:0c:00:50:30:6a:65:3c:42:3b:4d:e5:19:2d:34:f0:4e:b1:
f3:ac:a0:3d:fb:a5:9e:3b:ea:93:ab:0f:7b:f4:4a:1f:4f:a7:
20:c1:d2:f0:0f:46:51:a4:eb:62:d8:fb:0e:9e:73:7d:94:fb:
88:8d:c1:40:2e:16:3f:82:5e:64:5d:de:26:ac:87:61:3c:ff:
25:1f:e7:e8:8b:02:2f:ca:44:94:ed:de:e7:c3:3a:d6:24:16:
bc:23:d3:44:90:95:f5:25:13:68:05:4f:35:82:e3:62:b0:91:
6b:b2:fe:bc:2c:3f:d1:29:a0:93:f5:f6:8f:c7:3f:60:5c:4c:
67:7b:9f:13:70:af:b8:70:a6:82:04:a7:36:ac:f0:f4:a9:e6:
87:95:ee:b9:0a:78:56:34:d0:06:72:84:67:05:06:f7:0b:be:
26:ca:96:89:26:eb:c6:f2:ca:c4:ac:b6:21:70:d2:15:e0:b6:
12:1e:3b:88:e8:51:ad:b3:66:2c:d6:a3:2e:5a:d4:fc:48:b8:
6c:fe:87:50:c1:ff:07:50:58:e8:a4:5d:54:34:3a:51:5f:d6:
93:2f:33:e8:9a:cd:20:38:9c:4c:8f:bb:76:f3:f4:96:e9:f7:
c8:49:de:2d
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUSpGJjZw9obc19xXqmyA5nqx47BMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj
MjMxM2EzYTAeFw0yMzEyMDQwOTIyMjFaFw0yNDEyMDIwOTI3MjFaMDMxMTAvBgNV
BAMTKEM2MEI1MjZGRDc2NDhDMzYxMTMwMzcxODlDRUEwMzY0NDA5NTBGMTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDajfwMrmQGzq8d39Ys3ggsHj6m
WKW1LU/v1m6HfWDE0mKICzl5Sl3YjDdAJwD5ScX1oY5wSH2Kr3OQMXptFHv0tzuG
8x0HKGWJI/sRIlvz4Jr1e93SA+dgdpoo4oOyItUXTqfTwFHaj9dKxjo8FolH9XVY
3l4k8MhpH2m2wAj2JzlF8jC7Z34uzSHdL7HX8NE5Mx9AI0AcM5XVUwac2p2fy1Fd
DqntcLxuUogyPrzO1oddXzUzoDg+k0LGJVd7AJh6BUJU5QXbqZ1gih4GDYEDTpSH
yS12hqAsjs0TZmTaippgbpO8RxHT2g8nW4WEXNRP2B+RcWtnkZUhgSFEBYmfAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUxgtSb9dkjDYRMDcYnOoDZECVDxcwHwYDVR0j
BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J
eE9qby5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzQzNTJlMzYzNzJlMzIzMTM5
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM0MzczMy5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1D
2zANBgkqhkiG9w0BAQsFAAOCAQEAT9vfBgtzF/rFnIJfGGX39YfBtQwAUDBqZTxC
O03lGS008E6x86ygPfulnjvqk6sPe/RKH0+nIMHS8A9GUaTrYtj7Dp5zfZT7iI3B
QC4WP4JeZF3eJqyHYTz/JR/n6IsCL8pElO3e58M61iQWvCPTRJCV9SUTaAVPNYLj
YrCRa7L+vCw/0Smgk/X2j8c/YFxMZ3ufE3CvuHCmggSnNqzw9Knmh5XuuQp4VjTQ
BnKEZwUG9wu+JsqWiSbrxvLKxKy2IXDSFeC2Eh47iOhRrbNmLNajLlrU/Ei4bP6H
UMH/B1BY6KRdVDQ6UV/Wky8z6JrNIDicTI+7dvP0lun3yEneLQ==
-----END CERTIFICATE-----
Generated at Sat Jun 1 07:23:17 2024 by rpki-client on console-ams.rpki-client.org