Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS212669.roa
File: AS212669.roa (raw, json)
Hash identifier: KtqYrLwIrCouw4pL14ahnbxcEvVyKSKsC3+OyiRBlls=
Subject key identifier: 2D:7D:E5:30:33:FF:73:9A:9D:BA:D0:42:AE:E2:59:7B:7B:5A:BC:C1
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 3A45F721F6EBBACEEFBB94689A611BA6615A1FC6
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS212669.roa
Signing time: Sat 06 Apr 2024 14:25:15 +0000
ROA not before: Sat 06 Apr 2024 14:20:15 +0000
ROA not after: Sat 05 Apr 2025 14:25:15 +0000
asID: 212669
IP address blocks: 45.158.170.0/24 maxlen: 24
152.89.249.0/24 maxlen: 24
193.29.96.0/24 maxlen: 24
193.151.182.0/24 maxlen: 24
194.113.222.0/24 maxlen: 24
195.206.230.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:45:f7:21:f6:eb:ba:ce:ef:bb:94:68:9a:61:1b:a6:61:5a:1f:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Apr 6 14:20:15 2024 GMT
Not After : Apr 5 14:25:15 2025 GMT
Subject: CN=2D7DE53033FF739A9DBAD042AEE2597B7B5ABCC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:59:d8:3b:79:33:fb:22:a4:a7:d0:00:f4:6d:
87:27:f0:f0:76:f3:f7:c1:49:7c:57:a0:d0:48:8d:
86:2f:85:c3:bc:8d:73:db:da:a7:3f:96:b0:b3:4b:
b5:7a:55:18:a7:ed:32:01:d0:b8:d2:54:4e:12:9c:
1d:33:ea:22:75:d5:97:61:35:5f:a8:fd:2a:c9:ba:
78:27:a7:15:f1:a9:62:84:3c:51:c0:ab:ca:f1:89:
e2:74:e6:9b:e1:0b:87:77:45:84:f2:bc:43:48:01:
81:cd:63:61:9e:5c:c0:62:48:47:06:38:32:52:a7:
1d:4c:17:9a:df:95:f5:92:bb:45:c2:32:53:d7:d4:
84:39:13:3e:ea:b2:fc:38:dd:08:ab:f6:f1:99:74:
d8:80:41:27:30:c2:60:fe:5a:1d:08:a3:b7:b8:2d:
ff:d8:3f:31:ab:82:45:e6:e2:5f:e1:ff:17:c9:f9:
cb:b2:ef:eb:62:e4:ba:1a:25:07:4d:b5:35:3b:b0:
e5:8f:35:1b:d2:82:29:30:14:cd:c0:0a:15:2f:e5:
f7:56:65:8b:d7:ca:fb:6a:78:d5:e8:c6:ed:4a:bd:
ab:25:ab:5b:a8:c9:a1:b3:a6:f4:2a:cf:5c:a3:35:
a1:a1:f8:28:81:9e:64:45:70:e8:f8:85:f8:2b:74:
14:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:7D:E5:30:33:FF:73:9A:9D:BA:D0:42:AE:E2:59:7B:7B:5A:BC:C1
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS212669.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.170.0/24
152.89.249.0/24
193.29.96.0/24
193.151.182.0/24
194.113.222.0/24
195.206.230.0/24
Signature Algorithm: sha256WithRSAEncryption
27:b6:94:5e:da:f6:ba:fe:cf:ee:a6:e6:88:aa:ed:76:51:b6:
16:ea:35:76:5a:58:5e:f1:09:73:96:79:9b:3c:2e:03:eb:f8:
1c:44:28:05:d2:b4:e6:b8:cd:6c:d0:84:ad:a1:86:70:65:f5:
46:db:c5:72:a6:1b:ef:c4:30:57:ea:f6:68:0a:55:07:eb:71:
5b:4f:9b:2c:63:6f:b0:a7:f2:49:d2:fa:82:2f:79:6d:7c:41:
04:63:0a:85:ca:ab:8a:b8:96:12:64:fc:fc:fb:79:df:b9:98:
f2:bc:3f:48:44:d3:4a:8f:5c:96:7e:0d:be:2c:b3:1d:22:bc:
4c:ed:e4:e4:76:b0:e2:30:56:23:39:ac:5c:e2:e2:b5:cd:5b:
04:ef:fe:70:72:30:2f:05:bc:99:cc:1d:b1:2b:4a:13:83:01:
fc:9c:8d:33:a2:9f:8b:ce:42:d6:ab:46:6d:a7:c1:c9:87:3a:
b0:dc:44:d9:5a:9a:9d:53:47:d9:6f:4e:ca:94:fa:1e:95:5c:
2c:76:b6:4f:99:a2:1a:3c:fa:3c:0f:41:1b:d9:20:6c:8a:3b:
cc:78:2c:7a:81:41:c6:84:d8:fa:9c:4b:84:57:a1:78:66:90:
0f:b0:5d:df:62:f9:9a:60:78:15:2e:47:87:af:a5:5c:7d:a5:
ae:67:1a:65
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgIUOkX3Ifbrus7vu5RommEbpmFaH8YwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDNiMWJhM2ZkYjkxZDhkOWVhNzZjNTc3NjMyMGViN2Vi
MmQ2ZWQ5ZDAeFw0yNDA0MDYxNDIwMTVaFw0yNTA0MDUxNDI1MTVaMDMxMTAvBgNV
BAMTKDJEN0RFNTMwMzNGRjczOUE5REJBRDA0MkFFRTI1OTdCN0I1QUJDQzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBWdg7eTP7IqSn0AD0bYcn8PB2
8/fBSXxXoNBIjYYvhcO8jXPb2qc/lrCzS7V6VRin7TIB0LjSVE4SnB0z6iJ11Zdh
NV+o/SrJungnpxXxqWKEPFHAq8rxieJ05pvhC4d3RYTyvENIAYHNY2GeXMBiSEcG
ODJSpx1MF5rflfWSu0XCMlPX1IQ5Ez7qsvw43Qir9vGZdNiAQScwwmD+Wh0Io7e4
Lf/YPzGrgkXm4l/h/xfJ+cuy7+ti5LoaJQdNtTU7sOWPNRvSgikwFM3AChUv5fdW
ZYvXyvtqeNXoxu1Kvaslq1uoyaGzpvQqz1yjNaGh+CiBnmRFcOj4hfgrdBQ9AgMB
AAGjggIoMIICJDAdBgNVHQ4EFgQULX3lMDP/c5qdutBCruJZe3tavMEwHwYDVR0j
BBgwFoAUA7G6P9uR2NnqdsV3YyDrfrLW7Z0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2ZmMGY1NTUtZGJhNy00MTkyLWEwMWQtZjY5MTZkNWJi
ODRlLzAvMDNCMUJBM0ZEQjkxRDhEOUVBNzZDNTc3NjMyMEVCN0VCMkQ2RUQ5RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0E3RzZQOXVSMk5ucWRzVjNZeURyZnJM
VzdaMC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzdmZjBmNTU1LWRiYTct
NDE5Mi1hMDFkLWY2OTE2ZDViYjg0ZS8wL0FTMjEyNjY5LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQALZ6q
AwQAmFn5AwQAwR1gAwQAwZe2AwQAwnHeAwQAw87mMA0GCSqGSIb3DQEBCwUAA4IB
AQAntpRe2va6/s/upuaIqu12UbYW6jV2Wlhe8QlzlnmbPC4D6/gcRCgF0rTmuM1s
0IStoYZwZfVG28VyphvvxDBX6vZoClUH63FbT5ssY2+wp/JJ0vqCL3ltfEEEYwqF
yquKuJYSZPz8+3nfuZjyvD9IRNNKj1yWfg2+LLMdIrxM7eTkdrDiMFYjOaxc4uK1
zVsE7/5wcjAvBbyZzB2xK0oTgwH8nI0zop+LzkLWq0Ztp8HJhzqw3ETZWpqdU0fZ
b07KlPoelVwsdrZPmaIaPPo8D0Eb2SBsijvMeCx6gUHGhNj6nEuEV6F4ZpAPsF3f
YvmaYHgVLkeHr6VcfaWuZxpl
-----END CERTIFICATE-----
Generated at Thu Nov 21 23:14:42 2024 by rpki-client on console-fra.rpki-client.org