Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34312e302f32342d3234203d3e20313336373837.roa
File: 34352e3135352e34312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: gvNbT2sl/ExEYu+yx9JVMce0+BaZmcvmlSuucFDkKnU=
Subject key identifier: 1A:9E:C2:48:E4:3B:A4:47:1E:81:28:9A:92:30:F3:EA:FD:01:CF:02
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 7FE2F92882B208E88EBEDB54384A73DCE77849C6
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34312e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 20 May 2024 17:03:45 +0000
ROA not before: Mon 20 May 2024 16:58:45 +0000
ROA not after: Mon 19 May 2025 17:03:45 +0000
asID: 136787
IP address blocks: 45.155.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:e2:f9:28:82:b2:08:e8:8e:be:db:54:38:4a:73:dc:e7:78:49:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: May 20 16:58:45 2024 GMT
Not After : May 19 17:03:45 2025 GMT
Subject: CN=1A9EC248E43BA4471E81289A9230F3EAFD01CF02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:66:57:7d:b2:20:89:3a:8d:42:26:54:14:97:
34:82:42:07:08:92:be:12:25:93:2f:f4:2c:53:b6:
0a:46:a2:f6:39:bb:44:a2:ac:2f:ce:fb:57:53:70:
6d:10:3c:de:d8:48:1e:62:48:ef:75:1e:27:c7:b3:
42:6c:01:4b:b8:55:04:fb:1a:07:96:68:c9:6f:56:
62:85:fb:e3:21:af:4a:52:ca:8b:43:06:7c:a8:dd:
d7:13:32:84:f7:96:13:de:80:57:ad:2c:c8:90:91:
c5:cf:46:f2:fe:13:15:5c:d8:92:b1:cd:58:28:8b:
90:1e:d0:94:da:67:b3:21:ee:ce:4f:35:56:20:a0:
4d:10:44:ee:90:74:41:99:93:70:e9:aa:3f:77:59:
24:76:16:50:65:58:a2:fc:16:01:6a:f9:53:c0:74:
86:90:9c:95:2f:f5:75:59:8a:a9:85:13:31:b1:b8:
2d:66:84:41:00:a8:e8:fb:fd:7e:b9:da:ae:6b:0d:
4f:ae:5c:af:69:66:09:1a:0b:a1:df:f3:a5:5d:da:
04:00:5f:6f:b7:11:06:98:64:78:f0:c1:60:2f:0d:
a1:30:9b:89:e2:1f:87:84:5b:eb:1b:17:8b:83:d5:
cf:ad:83:aa:0e:ff:a6:e2:29:b0:41:b8:4c:64:f5:
97:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:9E:C2:48:E4:3B:A4:47:1E:81:28:9A:92:30:F3:EA:FD:01:CF:02
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.41.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:9e:49:d0:3f:a6:0b:76:c8:01:d3:40:3f:10:cc:62:28:87:
8b:3e:6f:8c:6d:e8:c5:42:8f:57:33:64:f6:48:13:3a:56:e5:
9d:92:65:6d:b4:11:6f:c9:d1:d3:92:af:69:8f:36:d4:99:a1:
d3:b1:8d:70:b9:88:e9:e3:cb:be:8e:04:ff:09:20:db:59:30:
eb:7e:19:f4:d9:4b:fd:cc:93:2e:49:0c:61:40:01:a2:82:80:
5b:b9:9b:f4:8d:31:db:c1:92:19:fe:3c:77:f4:dd:96:b3:8c:
8c:9c:c2:9d:c3:13:16:f1:b2:0a:66:d6:e3:65:2e:7d:0f:97:
ec:a3:73:23:ea:ca:3d:b3:1c:2e:c3:67:91:09:57:81:c4:b5:
32:3c:8a:e4:79:3a:36:79:49:26:b2:58:b8:b1:17:31:de:0b:
0f:55:94:c2:63:ce:56:83:7d:33:d9:1a:8c:fc:37:95:ca:84:
2e:05:a7:62:58:36:ee:a5:59:5f:8a:d7:56:f9:76:e2:87:5c:
83:c6:9d:4a:36:b0:12:44:64:74:11:04:d5:cb:bc:11:bc:29:
e6:b9:b1:d5:0f:dc:0a:a1:01:49:a7:ed:3b:5e:5a:ee:6d:f4:
ac:42:c7:a1:6a:df:a0:e1:d2:85:d3:79:ff:c5:53:98:d8:e6:
9a:cc:e2:5b
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUf+L5KIKyCOiOvttUOEpz3Od4ScYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTJjMmE4MzU0Njg5YWVjMmE3NGZjYTE0OTQ0OTI3NjIx
YmEyN2M5NDAeFw0yNDA1MjAxNjU4NDVaFw0yNTA1MTkxNzAzNDVaMDMxMTAvBgNV
BAMTKDFBOUVDMjQ4RTQzQkE0NDcxRTgxMjg5QTkyMzBGM0VBRkQwMUNGMDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZZld9siCJOo1CJlQUlzSCQgcI
kr4SJZMv9CxTtgpGovY5u0SirC/O+1dTcG0QPN7YSB5iSO91HifHs0JsAUu4VQT7
GgeWaMlvVmKF++Mhr0pSyotDBnyo3dcTMoT3lhPegFetLMiQkcXPRvL+ExVc2JKx
zVgoi5Ae0JTaZ7Mh7s5PNVYgoE0QRO6QdEGZk3Dpqj93WSR2FlBlWKL8FgFq+VPA
dIaQnJUv9XVZiqmFEzGxuC1mhEEAqOj7/X652q5rDU+uXK9pZgkaC6Hf86Vd2gQA
X2+3EQaYZHjwwWAvDaEwm4niH4eEW+sbF4uD1c+tg6oO/6biKbBBuExk9ZeLAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUGp7CSOQ7pEcegSiakjDz6v0BzwIwHwYDVR0j
BBgwFoAUEsKoNUaJrsKnT8oUlEknYhuifJQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzcvMTJDMkE4MzU0Njg5QUVDMkE3NEZDQTE0OTQ0OTI3NjIxQkEyN0M5NC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0VzS29OVWFKcnNLblQ4b1VsRWtuWWh1
aWZKUS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzcvMzQzNTJlMzEzNTM1MmUzNDMx
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
LZspMA0GCSqGSIb3DQEBCwUAA4IBAQAtnknQP6YLdsgB00A/EMxiKIeLPm+MbejF
Qo9XM2T2SBM6VuWdkmVttBFvydHTkq9pjzbUmaHTsY1wuYjp48u+jgT/CSDbWTDr
fhn02Uv9zJMuSQxhQAGigoBbuZv0jTHbwZIZ/jx39N2Ws4yMnMKdwxMW8bIKZtbj
ZS59D5fso3Mj6so9sxwuw2eRCVeBxLUyPIrkeTo2eUkmsli4sRcx3gsPVZTCY85W
g30z2RqM/DeVyoQuBadiWDbupVlfitdW+Xbih1yDxp1KNrASRGR0EQTVy7wRvCnm
ubHVD9wKoQFJp+07XlrubfSsQsehat+g4dKF03n/xVOY2OaazOJb
-----END CERTIFICATE-----
Generated at Sat Jun 1 10:34:57 2024 by rpki-client on console-fra.rpki-client.org