Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/34352e3135312e3139322e302f32322d3232203d3e203630343538.roa
File: 34352e3135312e3139322e302f32322d3232203d3e203630343538.roa (raw, json)
Hash identifier: Xr3XMe6VRtVpsnmfuJNuTvLS9mGolY6+WYmCmwbpIjw=
Subject key identifier: 6B:32:7E:2E:CF:B7:62:0A:DC:74:A1:5A:EB:4B:80:FF:55:5D:B4:CB
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 24E40D740726DF69F21EC873D800D4D54F47D6B7
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/34352e3135312e3139322e302f32322d3232203d3e203630343538.roa
Signing time: Mon 03 Jul 2023 05:42:01 +0000
ROA not before: Mon 03 Jul 2023 05:37:01 +0000
ROA not after: Mon 01 Jul 2024 05:42:01 +0000
asID: 60458
IP address blocks: 45.151.192.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:e4:0d:74:07:26:df:69:f2:1e:c8:73:d8:00:d4:d5:4f:47:d6:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jul 3 05:37:01 2023 GMT
Not After : Jul 1 05:42:01 2024 GMT
Subject: CN=6B327E2ECFB7620ADC74A15AEB4B80FF555DB4CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4b:4d:68:bf:37:56:13:b2:a5:bc:8c:ba:78:
64:ca:fd:51:19:ea:97:f5:23:5b:1b:96:10:0b:10:
91:66:67:f6:71:7c:e4:73:fa:87:28:32:3a:41:f0:
bd:55:fd:7a:41:a3:7e:8b:b4:79:b9:ad:4c:a6:e3:
4b:b9:4e:35:b7:75:f3:2d:84:8b:50:20:e2:4f:db:
f0:f6:0a:d2:82:93:d7:b1:31:55:c4:1e:65:e4:28:
c7:b8:9d:f9:5f:b0:2f:ae:f5:0f:d0:25:85:e3:a3:
c0:10:99:42:1e:01:6d:b0:5e:55:7b:3c:8b:d8:64:
e7:96:38:f9:d9:d4:01:9a:0b:95:8f:bf:da:a7:1a:
89:de:55:d2:50:09:2f:de:8f:cd:4e:60:ad:9f:ff:
ba:ad:b7:bb:56:de:d4:0f:ae:99:e9:b8:fe:49:c4:
3b:72:8f:c8:93:97:b6:83:14:fe:33:b2:ef:be:4b:
10:d1:ce:be:ce:72:32:b2:13:7b:96:2b:78:4b:89:
8a:cd:78:df:0d:0d:e3:8f:64:5c:1a:0e:06:50:e0:
06:18:60:c8:be:66:24:ef:eb:15:6d:b1:73:a8:9b:
90:ae:cd:ed:41:d4:6c:f6:11:6e:ff:0a:a5:71:3f:
cc:30:49:60:85:7b:e3:58:7d:d8:ca:a4:bf:45:44:
60:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:32:7E:2E:CF:B7:62:0A:DC:74:A1:5A:EB:4B:80:FF:55:5D:B4:CB
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/34352e3135312e3139322e302f32322d3232203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.192.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:c8:0a:71:7a:95:08:03:bf:ed:e5:bc:f7:e8:38:a1:9d:b6:
71:71:e0:92:64:81:5d:46:a8:f8:8e:0f:ae:23:ea:15:25:34:
b6:45:6c:43:a7:e0:3f:7c:d0:eb:87:06:f8:f5:c4:a5:06:cf:
79:ad:bf:84:cb:53:a5:be:8e:b8:98:6a:2a:99:94:3d:44:f2:
d4:1d:c3:6d:67:a7:68:da:e1:16:48:94:3e:48:a1:23:06:15:
20:02:e6:fa:4d:44:31:8b:f1:57:90:f8:0f:27:5f:d4:a2:62:
4a:af:84:1c:81:72:0f:17:cb:f4:29:a7:36:6c:08:ec:0e:1d:
0a:b3:2c:9b:4a:cc:ec:dd:0e:3f:8d:a8:79:05:14:17:69:52:
20:26:39:0a:d0:a7:4c:3a:9c:d9:23:37:e8:00:ad:f5:2f:c2:
6a:2e:74:b9:32:13:93:b1:3d:71:72:67:30:98:c3:20:51:b3:
a6:ee:8b:8d:72:b6:ca:29:e9:b0:75:89:01:18:f5:b3:31:44:
08:39:86:56:d7:af:55:37:21:24:a6:f5:a7:24:45:f0:3d:80:
fe:68:7d:98:8e:f8:bd:de:c4:73:8a:af:3d:ca:88:1f:ff:6f:
ec:5a:8f:4a:cb:51:63:6f:29:35:de:d7:96:ea:eb:83:40:30:
e0:70:af:27
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUJOQNdAcm32nyHshz2ADU1U9H1rcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjAxNzBhYmRjOTU1YWExNzZiZTJhZjI2Mjk5Njc4ZjJm
N2M5YWNhMDAeFw0yMzA3MDMwNTM3MDFaFw0yNDA3MDEwNTQyMDFaMDMxMTAvBgNV
BAMTKDZCMzI3RTJFQ0ZCNzYyMEFEQzc0QTE1QUVCNEI4MEZGNTU1REI0Q0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxS01ovzdWE7KlvIy6eGTK/VEZ
6pf1I1sblhALEJFmZ/ZxfORz+ocoMjpB8L1V/XpBo36LtHm5rUym40u5TjW3dfMt
hItQIOJP2/D2CtKCk9exMVXEHmXkKMe4nflfsC+u9Q/QJYXjo8AQmUIeAW2wXlV7
PIvYZOeWOPnZ1AGaC5WPv9qnGoneVdJQCS/ej81OYK2f/7qtt7tW3tQPrpnpuP5J
xDtyj8iTl7aDFP4zsu++SxDRzr7OcjKyE3uWK3hLiYrNeN8NDeOPZFwaDgZQ4AYY
YMi+ZiTv6xVtsXOom5Cuze1B1Gz2EW7/CqVxP8wwSWCFe+NYfdjKpL9FRGCHAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUazJ+Ls+3YgrcdKFa60uA/1VdtMswHwYDVR0j
BBgwFoAUsBcKvclVqhdr4q8mKZZ48vfJrKAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2E3ODllODctZjQ4NC00MjNkLWExZDctMmMyZDU4NjBk
MmVjLzAvQjAxNzBBQkRDOTU1QUExNzZCRTJBRjI2Mjk5Njc4RjJGN0M5QUNBMC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3NCY0t2Y2xWcWhkcjRxOG1LWlo0OHZm
SnJLQS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvN2E3ODllODct
ZjQ4NC00MjNkLWExZDctMmMyZDU4NjBkMmVjLzAvMzQzNTJlMzEzNTMxMmUzMTM5
MzIyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNjMwMzQzNTM4LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC
LZfAMA0GCSqGSIb3DQEBCwUAA4IBAQB+yApxepUIA7/t5bz36DihnbZxceCSZIFd
Rqj4jg+uI+oVJTS2RWxDp+A/fNDrhwb49cSlBs95rb+Ey1Olvo64mGoqmZQ9RPLU
HcNtZ6do2uEWSJQ+SKEjBhUgAub6TUQxi/FXkPgPJ1/UomJKr4QcgXIPF8v0Kac2
bAjsDh0KsyybSszs3Q4/jah5BRQXaVIgJjkK0KdMOpzZIzfoAK31L8JqLnS5MhOT
sT1xcmcwmMMgUbOm7ouNcrbKKemwdYkBGPWzMUQIOYZW169VNyEkpvWnJEXwPYD+
aH2Yjvi93sRziq89yogf/2/sWo9Ky1Fjbyk13teW6uuDQDDgcK8n
-----END CERTIFICATE-----
Generated at Mon May 6 01:02:59 2024 by rpki-client on console-ams.rpki-client.org