Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e34332e302f32342d3234203d3e20323135333034.roa
File: 33312e362e34332e302f32342d3234203d3e20323135333034.roa (raw, json)
Hash identifier: 7IjQW7TkqD5ofM2kl/3v4FHIjscD2dYhbqhlfRE2aP8=
Subject key identifier: 47:77:E8:A4:BD:AB:D1:24:6F:69:72:AA:3F:4F:F6:C0:E6:55:3F:49
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 566D8EC212CC36B3B4D8F817A67BCBB088BA977E
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e34332e302f32342d3234203d3e20323135333034.roa
Signing time: Fri 08 Nov 2024 14:25:55 +0000
ROA not before: Fri 08 Nov 2024 14:20:55 +0000
ROA not after: Fri 07 Nov 2025 14:25:55 +0000
asID: 215304
IP address blocks: 31.6.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.mft
rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:6d:8e:c2:12:cc:36:b3:b4:d8:f8:17:a6:7b:cb:b0:88:ba:97:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Nov 8 14:20:55 2024 GMT
Not After : Nov 7 14:25:55 2025 GMT
Subject: CN=4777E8A4BDABD1246F6972AA3F4FF6C0E6553F49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:47:64:c8:51:78:85:94:ae:9a:64:ce:1b:40:
60:67:59:f1:57:bc:d3:cc:26:7b:8f:dc:f0:53:64:
69:dd:07:02:46:ba:2f:05:42:03:85:1b:15:ee:7b:
84:cd:99:74:06:f5:ac:96:7f:7b:33:97:88:b4:89:
cf:ea:2f:68:fc:17:45:83:a9:62:2d:b3:cf:36:b9:
fb:ae:5d:ff:51:20:b1:d3:90:31:f1:44:ab:e3:dc:
7c:0e:c5:47:6d:2e:dc:fe:89:a3:2e:2b:b9:8c:22:
fc:a1:e8:ee:ec:5d:60:9e:b4:16:20:68:82:c9:94:
e7:f1:57:bb:e8:36:f9:c6:5d:67:6e:b5:c9:5f:ac:
23:cc:1b:19:80:27:42:0f:5f:2d:f0:55:e4:e2:65:
2e:7c:9a:f9:ca:d8:06:d9:63:92:36:38:a7:de:0e:
3a:63:9a:1f:9b:5b:ed:c8:ca:17:d1:52:2b:ac:bd:
6b:e0:04:1d:17:d7:d3:eb:da:d2:95:ba:9b:40:a9:
68:47:fe:e5:4e:a8:10:6e:ce:66:de:f3:75:7d:9e:
c8:fc:a9:4b:0b:d6:19:5e:26:61:cf:45:6f:a2:99:
9d:31:20:29:12:52:9f:2e:6d:0f:5e:11:fa:81:59:
c3:1e:a8:a0:13:99:d2:ba:0e:38:12:f2:9f:a6:6d:
ed:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:77:E8:A4:BD:AB:D1:24:6F:69:72:AA:3F:4F:F6:C0:E6:55:3F:49
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e34332e302f32342d3234203d3e20323135333034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.43.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:fd:7f:29:0c:13:50:df:2c:09:e1:06:00:9f:4e:69:e2:fc:
b2:78:6b:c3:21:e3:74:64:b3:93:02:7d:4f:bb:9c:aa:4b:17:
db:73:61:54:bc:71:96:70:3a:86:ee:0d:3c:c7:26:27:c2:84:
0d:c3:f6:e7:86:1e:82:3a:af:78:80:6d:cf:39:b5:f7:22:07:
3a:de:3e:de:9e:db:3a:86:da:de:b1:d1:6c:d1:ae:68:9b:22:
f4:1a:76:f2:7a:11:55:4b:5b:5a:6b:9c:4b:e3:ff:59:09:68:
88:c4:04:5e:35:f1:f5:ab:c1:1b:db:bd:45:45:b6:43:e0:50:
28:0c:94:d2:37:9a:f6:53:e0:24:d2:d6:3a:4d:d4:85:4d:d8:
c6:ba:02:5e:02:07:2f:3d:3a:a8:5c:f1:60:66:89:e1:07:a4:
a1:73:cd:bf:fa:6a:cc:ae:38:c3:73:6b:5b:0c:f4:3d:87:39:
71:0d:30:0a:93:e2:d4:11:8e:0f:a7:11:ef:38:56:00:80:0d:
47:2c:81:cd:61:58:8c:b1:83:92:16:e1:85:33:44:9e:02:34:
cc:9b:97:8f:f9:95:af:8c:9b:a3:72:4b:36:9b:d8:0d:da:47:
dc:f7:1e:9f:78:71:db:0c:74:67:b4:09:86:37:16:a6:ed:a0:
7e:87:0a:b8
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUVm2OwhLMNrO02PgXpnvLsIi6l34wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDQ4YWY2NjViZjhiMTg2YjcwMjIwNzU5ZDI2YzU3OGY0
MGI1ZjNlMzAeFw0yNDExMDgxNDIwNTVaFw0yNTExMDcxNDI1NTVaMDMxMTAvBgNV
BAMTKDQ3NzdFOEE0QkRBQkQxMjQ2RjY5NzJBQTNGNEZGNkMwRTY1NTNGNDkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpR2TIUXiFlK6aZM4bQGBnWfFX
vNPMJnuP3PBTZGndBwJGui8FQgOFGxXue4TNmXQG9ayWf3szl4i0ic/qL2j8F0WD
qWIts882ufuuXf9RILHTkDHxRKvj3HwOxUdtLtz+iaMuK7mMIvyh6O7sXWCetBYg
aILJlOfxV7voNvnGXWdutclfrCPMGxmAJ0IPXy3wVeTiZS58mvnK2AbZY5I2OKfe
Djpjmh+bW+3IyhfRUiusvWvgBB0X19Pr2tKVuptAqWhH/uVOqBBuzmbe83V9nsj8
qUsL1hleJmHPRW+imZ0xICkSUp8ubQ9eEfqBWcMeqKATmdK6DjgS8p+mbe1vAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUR3fopL2r0SRvaXKqP0/2wOZVP0kwHwYDVR0j
BBgwFoAUBIr2Zb+LGGtwIgdZ0mxXj0C18+MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODJhOWJmNWItMzljMS00MDUwLWIwNzMtNDgwNzViODYx
ZDg3LzAvMDQ4QUY2NjVCRjhCMTg2QjcwMjIwNzU5RDI2QzU3OEY0MEI1RjNFMy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0JJcjJaYi1MR0d0d0lnZFowbXhYajBD
MTgtTS5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODJhOWJmNWIt
MzljMS00MDUwLWIwNzMtNDgwNzViODYxZDg3LzAvMzMzMTJlMzYyZTM0MzMyZTMw
MmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMxMzUzMzMwMzQucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAfBisw
DQYJKoZIhvcNAQELBQADggEBAI39fykME1DfLAnhBgCfTmni/LJ4a8Mh43Rks5MC
fU+7nKpLF9tzYVS8cZZwOobuDTzHJifChA3D9ueGHoI6r3iAbc85tfciBzrePt6e
2zqG2t6x0WzRrmibIvQadvJ6EVVLW1prnEvj/1kJaIjEBF418fWrwRvbvUVFtkPg
UCgMlNI3mvZT4CTS1jpN1IVN2Ma6Al4CBy89Oqhc8WBmieEHpKFzzb/6asyuOMNz
a1sM9D2HOXENMAqT4tQRjg+nEe84VgCADUcsgc1hWIyxg5IW4YUzRJ4CNMybl4/5
la+Mm6NySzab2A3aR9z3Hp94cdsMdGe0CYY3FqbtoH6HCrg=
-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:13 2024 by rpki-client on console-fra.rpki-client.org