Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/33372e3230332e3137392e302f32342d3234203d3e203432363839.roa
File: 33372e3230332e3137392e302f32342d3234203d3e203432363839.roa (raw, json)
Hash identifier: hBgoGIqiRnniNrRKOe/wcgLzeFEsZmQg9hiq092J0jg=
Subject key identifier: DA:6C:58:45:FF:12:41:FA:D8:77:21:13:16:45:B1:C2:C5:F2:1E:A5
Certificate issuer: /CN=735d93706cbf4688ce7d60fc0ed693d4cc4a9326
Certificate serial: 581286BFD34193301B9B4D1C713F9C77E5B6CF35
Authority key identifier: 73:5D:93:70:6C:BF:46:88:CE:7D:60:FC:0E:D6:93:D4:CC:4A:93:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c12TcGy_RojOfWD8DtaT1MxKkyY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/33372e3230332e3137392e302f32342d3234203d3e203432363839.roa
Signing time: Thu 08 Aug 2024 10:19:01 +0000
ROA not before: Thu 08 Aug 2024 10:14:01 +0000
ROA not after: Thu 07 Aug 2025 10:19:01 +0000
asID: 42689
IP address blocks: 37.203.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/735D93706CBF4688CE7D60FC0ED693D4CC4A9326.crl
rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/735D93706CBF4688CE7D60FC0ED693D4CC4A9326.mft
rsync://rpki.ripe.net/repository/DEFAULT/c12TcGy_RojOfWD8DtaT1MxKkyY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:12:86:bf:d3:41:93:30:1b:9b:4d:1c:71:3f:9c:77:e5:b6:cf:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=735d93706cbf4688ce7d60fc0ed693d4cc4a9326
Validity
Not Before: Aug 8 10:14:01 2024 GMT
Not After : Aug 7 10:19:01 2025 GMT
Subject: CN=DA6C5845FF1241FAD87721131645B1C2C5F21EA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:11:e7:f7:ab:85:b7:4f:fb:e1:e2:47:74:8d:
93:de:f8:1c:ba:e6:da:45:89:a4:14:0c:5c:8e:3a:
ac:a7:d4:10:53:ae:74:7c:ba:e7:51:5c:6a:ba:29:
5f:c9:39:4e:56:13:28:65:29:fa:84:40:a6:11:90:
7d:79:11:d3:da:90:1e:8d:af:3d:84:f5:ea:85:4d:
5f:57:f4:b8:c2:f6:a9:b2:39:59:4e:38:8e:16:2b:
c1:b1:bf:79:a5:0e:25:26:05:28:da:97:21:a9:5d:
39:40:38:ee:19:62:4b:40:6b:df:ec:7e:f2:f1:2e:
11:cd:91:6b:d4:49:f7:c0:ce:23:45:30:a4:fc:c0:
c3:ed:a9:01:e8:7c:4d:bd:71:52:37:f4:eb:0e:2f:
8d:75:1d:27:cd:22:b6:c4:3d:6a:cb:74:28:a9:12:
40:06:82:33:fd:6c:d0:3e:cd:72:6b:7c:0f:90:94:
ee:d2:8d:8e:2d:95:df:ca:5d:c8:e5:d5:73:39:99:
f3:1b:64:5e:b9:2d:e0:04:00:e6:05:52:2c:ff:fb:
00:ba:56:a3:1e:24:a7:b1:b0:4d:c0:f4:8c:d1:40:
98:6a:2e:2e:5f:d0:8c:20:0d:26:0b:da:53:41:a9:
af:73:24:7d:3f:32:94:7b:09:48:d2:57:eb:ab:bc:
d9:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:6C:58:45:FF:12:41:FA:D8:77:21:13:16:45:B1:C2:C5:F2:1E:A5
X509v3 Authority Key Identifier:
keyid:73:5D:93:70:6C:BF:46:88:CE:7D:60:FC:0E:D6:93:D4:CC:4A:93:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/735D93706CBF4688CE7D60FC0ED693D4CC4A9326.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c12TcGy_RojOfWD8DtaT1MxKkyY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/33372e3230332e3137392e302f32342d3234203d3e203432363839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.203.179.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:d1:5f:5d:5a:35:f8:0c:f1:48:7a:92:9d:20:c3:b9:84:3e:
a3:89:f2:53:77:fe:86:81:f4:a7:92:ff:f3:df:97:39:5d:18:
d2:ca:97:3a:43:49:4d:a2:0c:f2:f1:3d:47:d1:29:5e:99:3f:
6e:9f:30:29:a5:75:88:49:55:18:c9:31:48:d0:b6:dd:d8:b6:
ea:98:67:ff:76:05:6b:00:ee:9f:96:43:29:7d:28:9e:4c:8e:
ba:8a:18:68:81:9b:ec:3b:ac:85:78:0b:33:04:7c:c2:34:9d:
a1:92:80:38:27:40:0f:82:cc:2d:da:8b:f3:ba:2c:29:76:e0:
09:4c:c1:f5:0c:94:03:e6:39:a4:f0:c1:3b:90:cc:a0:a5:ca:
03:be:dc:88:ca:3b:f7:66:3f:fa:8a:6b:35:53:24:7e:9d:d8:
aa:60:e4:91:7d:f3:c2:ed:58:d5:68:61:40:23:78:82:a6:b8:
d7:b2:ff:9a:a5:01:f7:cf:5d:e1:75:94:c4:d0:75:57:d8:b5:
c1:4f:e6:e1:39:57:a3:cc:c6:18:a9:0b:a7:1b:a1:b1:2f:de:
44:65:41:88:47:e0:e1:d8:fe:37:99:19:51:e4:b1:b0:b8:90:
b4:8b:56:03:6b:f1:10:48:49:25:27:07:39:33:33:42:d2:d5:
ff:44:a8:85
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUWBKGv9NBkzAbm00ccT+cd+W2zzUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzM1ZDkzNzA2Y2JmNDY4OGNlN2Q2MGZjMGVkNjkzZDRj
YzRhOTMyNjAeFw0yNDA4MDgxMDE0MDFaFw0yNTA4MDcxMDE5MDFaMDMxMTAvBgNV
BAMTKERBNkM1ODQ1RkYxMjQxRkFEODc3MjExMzE2NDVCMUMyQzVGMjFFQTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNEef3q4W3T/vh4kd0jZPe+By6
5tpFiaQUDFyOOqyn1BBTrnR8uudRXGq6KV/JOU5WEyhlKfqEQKYRkH15EdPakB6N
rz2E9eqFTV9X9LjC9qmyOVlOOI4WK8Gxv3mlDiUmBSjalyGpXTlAOO4ZYktAa9/s
fvLxLhHNkWvUSffAziNFMKT8wMPtqQHofE29cVI39OsOL411HSfNIrbEPWrLdCip
EkAGgjP9bNA+zXJrfA+QlO7SjY4tld/KXcjl1XM5mfMbZF65LeAEAOYFUiz/+wC6
VqMeJKexsE3A9IzRQJhqLi5f0IwgDSYL2lNBqa9zJH0/MpR7CUjSV+urvNmPAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU2mxYRf8SQfrYdyETFkWxwsXyHqUwHwYDVR0j
BBgwFoAUc12TcGy/RojOfWD8DtaT1MxKkyYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMmU2ZGE1YzctNjcwYS00MWIxLTk2ZWItMzg5OTM4OGIy
OTJjLzAvNzM1RDkzNzA2Q0JGNDY4OENFN0Q2MEZDMEVENjkzRDRDQzRBOTMyNi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2MxMlRjR3lfUm9qT2ZXRDhEdGFUMU14
S2t5WS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmU2ZGE1Yzct
NjcwYS00MWIxLTk2ZWItMzg5OTM4OGIyOTJjLzAvMzMzNzJlMzIzMDMzMmUzMTM3
MzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDMyMzYzODM5LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
JcuzMA0GCSqGSIb3DQEBCwUAA4IBAQA60V9dWjX4DPFIepKdIMO5hD6jifJTd/6G
gfSnkv/z35c5XRjSypc6Q0lNogzy8T1H0SlemT9unzAppXWISVUYyTFI0Lbd2Lbq
mGf/dgVrAO6flkMpfSieTI66ihhogZvsO6yFeAszBHzCNJ2hkoA4J0APgswt2ovz
uiwpduAJTMH1DJQD5jmk8ME7kMygpcoDvtyIyjv3Zj/6ims1UyR+ndiqYOSRffPC
7VjVaGFAI3iCprjXsv+apQH3z13hdZTE0HVX2LXBT+bhOVejzMYYqQunG6GxL95E
ZUGIR+Dh2P43mRlR5LGwuJC0i1YDa/EQSEklJwc5MzNC0tX/RKiF
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:14:51 2024 by rpki-client on console-fra.rpki-client.org