Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS199058.roa
File: AS199058.roa (raw, json)
Hash identifier: hAov0VMIJ7vNXiAwUdIhd8zNsFj7xkUfJSL/GwJ3sCg=
Subject key identifier: 35:88:30:9E:75:AC:30:54:08:36:93:CB:07:51:5E:25:59:6C:CC:42
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 39EBBD8FEB7E1D2656EF30B491A938770D3C01AB
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS199058.roa
Signing time: Mon 08 Apr 2024 14:43:23 +0000
ROA not before: Mon 08 Apr 2024 14:38:23 +0000
ROA not after: Mon 07 Apr 2025 14:43:23 +0000
asID: 199058
IP address blocks: 146.103.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 11 Jun 2024 18:21:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:eb:bd:8f:eb:7e:1d:26:56:ef:30:b4:91:a9:38:77:0d:3c:01:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Apr 8 14:38:23 2024 GMT
Not After : Apr 7 14:43:23 2025 GMT
Subject: CN=3588309E75AC3054083693CB07515E25596CCC42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:5e:2d:00:b8:72:17:d5:bb:7e:0b:ae:53:43:
30:11:b5:55:8e:93:b8:6c:20:7f:0f:ae:c1:52:c7:
51:c7:61:ec:e4:93:2c:db:e1:ce:1b:98:7e:06:18:
9f:d8:d3:14:d4:e4:9c:45:e1:65:18:93:41:0d:e8:
b6:15:27:1e:14:7d:fe:0e:8f:c1:4c:41:60:62:32:
72:01:5d:8b:18:cc:30:7b:88:b9:9e:c6:d1:e0:55:
1a:37:6c:91:8e:de:2f:8c:22:19:38:1d:0f:5c:a6:
8a:9a:b0:d2:b0:5a:32:0f:a6:96:ef:92:a4:67:e7:
e9:3d:a6:49:98:b2:f8:d9:bd:70:b6:67:c6:9f:af:
e2:ea:09:97:ff:28:3c:60:27:74:14:51:aa:92:57:
11:5b:84:d3:30:33:3a:93:1e:ff:5b:09:69:5c:b0:
ed:bd:43:4f:5f:82:9e:7b:ad:45:d9:cb:9c:05:b9:
e7:21:6f:7b:90:56:3c:e2:27:90:88:c8:d8:82:e7:
0a:4d:9b:03:0a:73:5b:9a:d4:30:69:fe:68:c2:4a:
b4:e0:eb:a2:8d:40:bf:51:65:58:b8:bf:24:52:d9:
48:3c:78:3f:6f:cd:57:9b:ef:9e:ec:7f:0f:54:70:
8a:51:53:d7:13:ad:12:aa:79:6b:6f:18:da:f3:db:
aa:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:88:30:9E:75:AC:30:54:08:36:93:CB:07:51:5E:25:59:6C:CC:42
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS199058.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.103.33.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:0e:e5:16:ac:49:29:e3:70:56:3e:97:eb:07:09:8d:df:e6:
39:f1:14:4d:31:62:51:65:c5:52:ff:95:77:4a:e4:c2:21:1d:
f4:25:5b:f3:a7:8f:1e:8b:da:51:ff:5c:66:58:38:3f:d9:02:
44:bf:9d:a6:c1:bf:b9:a7:da:11:79:a7:34:34:69:25:29:d5:
ec:81:83:c4:71:d9:91:df:fe:95:56:67:ee:a7:a2:2b:2d:b9:
3c:4f:b3:22:4e:b5:63:ff:17:2d:ab:5f:19:fe:ef:b8:69:0b:
9a:0d:69:72:ac:2b:be:9f:0e:7b:37:02:08:ad:6a:56:f7:79:
c8:af:7a:ab:e3:fc:11:a8:21:91:56:c6:63:ce:49:46:fe:57:
8b:ce:30:44:bd:6a:13:07:20:19:7f:22:9c:35:32:b2:45:68:
6a:d0:26:cc:a5:c6:15:5a:d4:69:55:9a:80:e3:c2:19:20:13:
ed:9c:47:89:6d:34:09:d0:cf:aa:0e:2a:d1:93:40:3b:e8:1a:
1e:70:65:51:57:94:b1:da:02:7a:c1:ca:a9:9d:fb:f6:c1:82:
50:53:71:b3:7c:78:21:14:4b:4b:6b:53:2a:04:85:fa:c9:6a:
f8:96:17:53:bf:88:87:1b:1c:25:6a:5b:67:cd:e5:f6:5a:e1:
9f:12:82:fe
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUOeu9j+t+HSZW7zC0kak4dw08AaswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNDA0MDgxNDM4MjNaFw0yNTA0MDcxNDQzMjNaMDMxMTAvBgNV
BAMTKDM1ODgzMDlFNzVBQzMwNTQwODM2OTNDQjA3NTE1RTI1NTk2Q0NDNDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmXi0AuHIX1bt+C65TQzARtVWO
k7hsIH8PrsFSx1HHYezkkyzb4c4bmH4GGJ/Y0xTU5JxF4WUYk0EN6LYVJx4Uff4O
j8FMQWBiMnIBXYsYzDB7iLmextHgVRo3bJGO3i+MIhk4HQ9cpoqasNKwWjIPppbv
kqRn5+k9pkmYsvjZvXC2Z8afr+LqCZf/KDxgJ3QUUaqSVxFbhNMwMzqTHv9bCWlc
sO29Q09fgp57rUXZy5wFuechb3uQVjziJ5CIyNiC5wpNmwMKc1ua1DBp/mjCSrTg
66KNQL9RZVi4vyRS2Ug8eD9vzVeb757sfw9UcIpRU9cTrRKqeWtvGNrz26pXAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUNYgwnnWsMFQINpPLB1FeJVlszEIwHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt
NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMTk5MDU4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkmch
MA0GCSqGSIb3DQEBCwUAA4IBAQAeDuUWrEkp43BWPpfrBwmN3+Y58RRNMWJRZcVS
/5V3SuTCIR30JVvzp48ei9pR/1xmWDg/2QJEv52mwb+5p9oReac0NGklKdXsgYPE
cdmR3/6VVmfup6IrLbk8T7MiTrVj/xctq18Z/u+4aQuaDWlyrCu+nw57NwIIrWpW
93nIr3qr4/wRqCGRVsZjzklG/leLzjBEvWoTByAZfyKcNTKyRWhq0CbMpcYVWtRp
VZqA48IZIBPtnEeJbTQJ0M+qDirRk0A76BoecGVRV5Sx2gJ6wcqpnfv2wYJQU3Gz
fHghFEtLa1MqBIX6yWr4lhdTv4iHGxwlaltnzeX2WuGfEoL+
-----END CERTIFICATE-----
Generated at Tue Jun 11 01:09:02 2024 by rpki-client on console-fra.rpki-client.org