Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: TetRkyS7AdH1QDzfbkm3ND2Z5YiqQ5FpOoI7v6Qrhf8=
Subject key identifier: 59:E4:A9:63:3F:7D:35:57:0D:AE:CF:D5:2A:12:11:15:CA:02:7E:39
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 1A93B68AA84D472FBD0DBC6C3E195777DFF5EC8E
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS834.roa
Signing time: Fri 26 Apr 2024 00:02:04 +0000
ROA not before: Thu 25 Apr 2024 23:57:04 +0000
ROA not after: Fri 25 Apr 2025 00:02:04 +0000
asID: 834
IP address blocks: 45.152.240.0/23 maxlen: 24
45.158.10.0/23 maxlen: 24
152.89.250.0/24 maxlen: 24
185.155.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 14:46:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:93:b6:8a:a8:4d:47:2f:bd:0d:bc:6c:3e:19:57:77:df:f5:ec:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Apr 25 23:57:04 2024 GMT
Not After : Apr 25 00:02:04 2025 GMT
Subject: CN=59E4A9633F7D35570DAECFD52A121115CA027E39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:25:d8:cf:60:1a:63:60:35:7c:09:3f:10:65:
86:69:38:26:2d:90:8e:01:95:7d:f8:9a:69:0f:14:
e3:36:c2:47:f3:7a:52:c7:24:17:73:fb:55:ed:6b:
97:2c:2a:5d:e2:f4:14:25:81:34:a0:46:f0:88:90:
39:4a:42:4c:1a:6b:06:33:48:21:10:c3:e0:bf:a2:
ab:04:5e:6f:17:d8:d6:17:c4:32:7e:7c:56:bb:2d:
d0:76:87:6c:63:de:6b:04:9f:ee:75:09:71:71:0c:
32:83:57:50:98:36:3b:03:9b:7a:f3:28:1c:d1:22:
0d:f8:55:08:13:a0:13:f7:c3:45:25:7d:9e:fa:54:
e6:30:f3:7f:a5:07:61:ba:90:a0:17:fb:7b:63:2d:
94:bb:3e:b3:f1:01:d7:d3:e2:c8:7b:50:55:ca:ca:
5b:8d:1f:e3:91:a7:c9:5e:86:40:1b:fb:a7:a0:6d:
4c:72:93:c9:4b:87:8e:d7:70:5b:96:20:d7:97:23:
da:eb:46:d1:43:40:bd:2b:04:bc:1a:1c:26:8d:13:
83:c6:c5:5e:0e:bb:b8:4a:f6:76:b1:37:9f:11:32:
00:11:4c:21:80:f1:c3:5a:70:98:60:11:5d:29:a2:
9e:fa:2f:8a:1a:10:0f:7e:d2:35:b2:78:bf:5b:23:
44:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E4:A9:63:3F:7D:35:57:0D:AE:CF:D5:2A:12:11:15:CA:02:7E:39
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.240.0/23
45.158.10.0/23
152.89.250.0/24
185.155.221.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:1c:96:20:3b:5b:cc:93:a2:90:48:93:f0:d1:e9:0c:c5:63:
5d:28:d3:f4:2a:3a:f4:78:85:0a:30:21:34:0b:e2:41:cc:00:
1e:b1:c0:f7:2a:64:5f:ef:89:12:ae:ca:3c:83:0a:dc:10:36:
b9:7b:1d:0b:25:4b:13:ac:70:72:83:3d:9a:e0:f6:8e:a4:13:
94:54:f2:d6:a0:62:92:9d:26:1c:7c:5c:3f:85:54:b6:67:b3:
79:ee:f4:66:aa:65:e4:2a:40:7f:cf:03:4a:52:b1:c5:43:03:
a4:84:0f:f1:f6:cc:fa:a0:84:50:80:36:64:d0:38:b7:e5:68:
a8:95:98:6d:88:eb:c4:68:0d:10:6b:e7:5b:a9:de:f7:51:5a:
79:4b:0f:b6:d8:22:bd:2b:1b:d8:a8:23:21:c1:d2:5d:3a:4d:
07:94:79:38:76:c0:77:7e:e9:83:1e:67:9b:14:f0:4e:e2:7b:
19:89:58:28:7f:34:42:6c:55:84:72:d1:72:74:35:2d:04:fe:
23:c9:b8:c4:1e:c2:b4:2d:30:46:f9:13:57:25:30:32:de:1b:
35:64:cc:05:44:fd:f7:a6:13:88:e0:7b:1e:84:ad:05:c7:b8:
0c:a9:ed:44:99:24:46:e0:95:1d:86:94:75:08:68:bd:61:3f:
38:57:c1:75
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgIUGpO2iqhNRy+9DbxsPhlXd9/17I4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDNiMWJhM2ZkYjkxZDhkOWVhNzZjNTc3NjMyMGViN2Vi
MmQ2ZWQ5ZDAeFw0yNDA0MjUyMzU3MDRaFw0yNTA0MjUwMDAyMDRaMDMxMTAvBgNV
BAMTKDU5RTRBOTYzM0Y3RDM1NTcwREFFQ0ZENTJBMTIxMTE1Q0EwMjdFMzkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXJdjPYBpjYDV8CT8QZYZpOCYt
kI4BlX34mmkPFOM2wkfzelLHJBdz+1Xta5csKl3i9BQlgTSgRvCIkDlKQkwaawYz
SCEQw+C/oqsEXm8X2NYXxDJ+fFa7LdB2h2xj3msEn+51CXFxDDKDV1CYNjsDm3rz
KBzRIg34VQgToBP3w0UlfZ76VOYw83+lB2G6kKAX+3tjLZS7PrPxAdfT4sh7UFXK
yluNH+ORp8lehkAb+6egbUxyk8lLh47XcFuWINeXI9rrRtFDQL0rBLwaHCaNE4PG
xV4Ou7hK9naxN58RMgARTCGA8cNacJhgEV0pop76L4oaEA9+0jWyeL9bI0Q/AgMB
AAGjggIZMIICFTAdBgNVHQ4EFgQUWeSpYz99NVcNrs/VKhIRFcoCfjkwHwYDVR0j
BBgwFoAUA7G6P9uR2NnqdsV3YyDrfrLW7Z0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2ZmMGY1NTUtZGJhNy00MTkyLWEwMWQtZjY5MTZkNWJi
ODRlLzAvMDNCMUJBM0ZEQjkxRDhEOUVBNzZDNTc3NjMyMEVCN0VCMkQ2RUQ5RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0E3RzZQOXVSMk5ucWRzVjNZeURyZnJM
VzdaMC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzdmZjBmNTU1LWRiYTct
NDE5Mi1hMDFkLWY2OTE2ZDViYjg0ZS8wL0FTODM0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQBLZjwAwQB
LZ4KAwQAmFn6AwQAuZvdMA0GCSqGSIb3DQEBCwUAA4IBAQCcHJYgO1vMk6KQSJPw
0ekMxWNdKNP0Kjr0eIUKMCE0C+JBzAAescD3KmRf74kSrso8gwrcEDa5ex0LJUsT
rHBygz2a4PaOpBOUVPLWoGKSnSYcfFw/hVS2Z7N57vRmqmXkKkB/zwNKUrHFQwOk
hA/x9sz6oIRQgDZk0Di35WiolZhtiOvEaA0Qa+dbqd73UVp5Sw+22CK9KxvYqCMh
wdJdOk0HlHk4dsB3fumDHmebFPBO4nsZiVgofzRCbFWEctFydDUtBP4jybjEHsK0
LTBG+RNXJTAy3hs1ZMwFRP33phOI4HsehK0Fx7gMqe1EmSRG4JUdhpR1CGi9YT84
V8F1
-----END CERTIFICATE-----
Generated at Wed May 1 23:23:14 2024 by rpki-client on console-ams.rpki-client.org