Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS211440.roa
File: AS211440.roa (raw, json)
Hash identifier: 8kXI77YVp7G8GxJcuGmh069t82Hq9c+4KXUvadZDXqo=
Subject key identifier: 2A:FC:5C:A0:E6:42:31:D2:11:67:70:8F:34:FA:3A:0D:7A:55:D2:F7
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 15A466DEAE829ECD902342AADA44C54C3CF067F7
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS211440.roa
Signing time: Tue 20 Jun 2023 00:00:23 +0000
ROA not before: Mon 19 Jun 2023 23:55:23 +0000
ROA not after: Tue 18 Jun 2024 00:00:23 +0000
asID: 211440
IP address blocks: 45.146.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 13:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:a4:66:de:ae:82:9e:cd:90:23:42:aa:da:44:c5:4c:3c:f0:67:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Jun 19 23:55:23 2023 GMT
Not After : Jun 18 00:00:23 2024 GMT
Subject: CN=2AFC5CA0E64231D21167708F34FA3A0D7A55D2F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:88:c7:38:b8:85:df:f1:da:6a:62:5b:d7:18:
32:16:02:59:8d:75:81:34:80:ae:18:22:c8:96:36:
7f:33:9b:68:bf:df:3b:af:e2:b5:7c:47:64:29:ba:
cc:4c:c3:5d:db:dc:b3:3b:f5:bc:b2:97:88:3f:d9:
a7:94:2c:08:8d:66:52:2a:9f:b5:cd:a5:24:eb:40:
12:b9:31:d8:fb:d4:3d:92:14:38:7a:ee:7a:0d:68:
5a:d6:93:40:9d:cc:5b:9f:cc:c0:fc:14:a3:66:d2:
76:82:b0:1c:46:b9:3f:95:3b:c6:37:f0:2c:16:b9:
a7:78:d8:33:e9:19:fa:e8:8f:49:da:fb:f5:7a:5b:
c3:16:24:37:2d:6a:1d:bd:4a:2c:35:88:ed:1e:1f:
50:a8:98:ab:78:a2:d7:b5:90:06:f3:4d:30:03:79:
c1:6a:72:85:a2:d2:5f:f6:5e:0c:55:41:10:f7:d1:
0a:77:53:94:ab:4b:a9:28:81:73:bf:54:86:97:5d:
be:5a:de:bc:32:dd:3b:c7:41:b9:72:6d:ab:5b:c9:
09:cc:6c:55:54:7c:8d:a5:84:a8:bc:9a:dd:44:a7:
69:f6:23:8d:bb:89:4a:39:db:ef:4f:f4:e1:4b:8e:
0c:7c:cd:b8:16:72:87:6b:bd:8f:bd:06:9c:c0:39:
11:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:FC:5C:A0:E6:42:31:D2:11:67:70:8F:34:FA:3A:0D:7A:55:D2:F7
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS211440.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.83.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:c8:ac:0f:a4:8b:73:0c:90:4d:2e:3a:21:3b:33:68:bd:a5:
e3:99:71:27:5b:a9:d7:ae:87:f1:05:d5:e3:17:c5:c6:84:fe:
b8:ed:72:bb:98:ac:de:72:9e:64:93:9c:ec:1b:f1:a4:b6:45:
99:71:92:7a:aa:2a:86:4b:65:e7:fc:5b:40:13:7b:ba:37:8c:
3f:38:e1:d2:ed:e9:a8:e2:12:62:7d:12:d1:41:c1:72:d1:c3:
a5:a7:94:2e:cd:a4:f0:cc:eb:74:ed:15:b3:a6:b1:78:e1:06:
98:0f:34:5c:9b:88:7f:28:50:4e:23:0e:95:48:b1:ff:ca:85:
e4:1c:f0:c1:4e:c2:ec:84:4f:e0:72:1f:2a:7b:b6:af:e0:64:
83:09:e5:42:6b:0c:a4:b6:60:a7:89:2b:3d:a5:c8:69:5a:50:
82:83:50:a3:7f:75:8c:66:58:dc:23:86:96:6a:1d:c9:84:98:
d1:08:a6:b4:e8:c8:01:cc:1c:56:b6:23:fe:5f:9d:81:d6:1c:
10:b6:e3:9f:09:c9:6d:de:b1:85:81:56:1f:cf:d0:08:f1:36:
58:b7:5c:ec:b9:94:07:82:6e:80:ac:d0:2f:48:40:87:e2:f4:
d1:d4:2c:7e:2b:dd:be:42:56:82:76:2d:5f:d0:e5:c6:a0:07:
82:89:f7:fd
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUFaRm3q6Cns2QI0Kq2kTFTDzwZ/cwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDNiMWJhM2ZkYjkxZDhkOWVhNzZjNTc3NjMyMGViN2Vi
MmQ2ZWQ5ZDAeFw0yMzA2MTkyMzU1MjNaFw0yNDA2MTgwMDAwMjNaMDMxMTAvBgNV
BAMTKDJBRkM1Q0EwRTY0MjMxRDIxMTY3NzA4RjM0RkEzQTBEN0E1NUQyRjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoiMc4uIXf8dpqYlvXGDIWAlmN
dYE0gK4YIsiWNn8zm2i/3zuv4rV8R2QpusxMw13b3LM79byyl4g/2aeULAiNZlIq
n7XNpSTrQBK5Mdj71D2SFDh67noNaFrWk0CdzFufzMD8FKNm0naCsBxGuT+VO8Y3
8CwWuad42DPpGfroj0na+/V6W8MWJDctah29Siw1iO0eH1ComKt4ote1kAbzTTAD
ecFqcoWi0l/2XgxVQRD30Qp3U5SrS6kogXO/VIaXXb5a3rwy3TvHQblybatbyQnM
bFVUfI2lhKi8mt1Ep2n2I427iUo52+9P9OFLjgx8zbgWcodrvY+9BpzAOREzAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUKvxcoOZCMdIRZ3CPNPo6DXpV0vcwHwYDVR0j
BBgwFoAUA7G6P9uR2NnqdsV3YyDrfrLW7Z0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2ZmMGY1NTUtZGJhNy00MTkyLWEwMWQtZjY5MTZkNWJi
ODRlLzAvMDNCMUJBM0ZEQjkxRDhEOUVBNzZDNTc3NjMyMEVCN0VCMkQ2RUQ5RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0E3RzZQOXVSMk5ucWRzVjNZeURyZnJM
VzdaMC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzdmZjBmNTU1LWRiYTct
NDE5Mi1hMDFkLWY2OTE2ZDViYjg0ZS8wL0FTMjExNDQwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZJT
MA0GCSqGSIb3DQEBCwUAA4IBAQAuyKwPpItzDJBNLjohOzNovaXjmXEnW6nXrofx
BdXjF8XGhP647XK7mKzecp5kk5zsG/GktkWZcZJ6qiqGS2Xn/FtAE3u6N4w/OOHS
7emo4hJifRLRQcFy0cOlp5QuzaTwzOt07RWzprF44QaYDzRcm4h/KFBOIw6VSLH/
yoXkHPDBTsLshE/gch8qe7av4GSDCeVCawyktmCniSs9pchpWlCCg1Cjf3WMZljc
I4aWah3JhJjRCKa06MgBzBxWtiP+X52B1hwQtuOfCclt3rGFgVYfz9AI8TZYt1zs
uZQHgm6ArNAvSECH4vTR1Cx+K92+QlaCdi1f0OXGoAeCiff9
-----END CERTIFICATE-----
Generated at Sun May 19 17:37:13 2024 by rpki-client on console-ams.rpki-client.org