Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e38392e3135302e302f32332d3234203d3e20313338393937.roa
File: 34352e38392e3135302e302f32332d3234203d3e20313338393937.roa (raw, json)
Hash identifier: 5clR9Wtor+IOuKjeunidIbaSD2QfHPe706FuAFkxWsI=
Subject key identifier: C7:2E:05:E0:4A:3D:0E:ED:F2:42:5B:65:A7:1D:F0:B0:6D:54:25:09
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 3B2019C2D095261C52795841B6E62BC10445E875
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e38392e3135302e302f32332d3234203d3e20313338393937.roa
Signing time: Tue 16 Jul 2024 14:01:14 +0000
ROA not before: Tue 16 Jul 2024 13:56:14 +0000
ROA not after: Tue 15 Jul 2025 14:01:14 +0000
asID: 138997
IP address blocks: 45.89.150.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:20:19:c2:d0:95:26:1c:52:79:58:41:b6:e6:2b:c1:04:45:e8:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Jul 16 13:56:14 2024 GMT
Not After : Jul 15 14:01:14 2025 GMT
Subject: CN=C72E05E04A3D0EEDF2425B65A71DF0B06D542509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:e6:2c:51:4e:46:e5:b9:55:1a:1f:24:a3:78:
8d:27:59:3d:47:18:0f:80:23:82:0d:b3:66:ef:82:
b9:f8:9e:99:e4:06:67:9d:f8:80:d2:79:57:63:2a:
ec:5a:49:d5:7d:e9:53:9a:88:b9:66:4c:b8:72:be:
59:3f:35:a0:d1:bc:94:35:21:45:8e:f6:90:5e:32:
33:fa:08:e8:3e:3e:ef:c3:9d:6e:26:f6:f9:7f:c4:
ad:21:85:57:e8:9f:32:f8:85:5a:06:5c:b1:76:23:
d3:43:ef:40:82:c6:98:3d:f5:74:75:e7:bf:be:95:
de:9d:0b:d4:52:5d:49:83:c2:40:bb:c4:6b:25:f8:
94:11:23:16:7e:0a:df:d3:f4:d5:39:71:59:7f:0e:
79:47:a2:7d:3e:53:58:4c:08:9d:9c:5d:ca:b6:6e:
f9:e6:ba:38:27:1e:75:db:0a:0b:28:06:4c:0f:1d:
b3:b6:a6:98:bc:85:31:5b:bc:6c:2d:ae:9b:8d:8c:
32:06:d7:92:64:63:16:7b:4a:ca:25:4a:a5:82:cf:
50:e0:9d:fc:8c:26:8e:6b:bc:98:ef:de:46:03:38:
74:7b:28:9d:c2:2b:a6:b0:25:73:03:80:b5:0e:32:
13:2c:c1:f3:5b:7f:9d:d1:24:37:0c:64:85:2c:8b:
65:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:2E:05:E0:4A:3D:0E:ED:F2:42:5B:65:A7:1D:F0:B0:6D:54:25:09
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e38392e3135302e302f32332d3234203d3e20313338393937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.150.0/23
Signature Algorithm: sha256WithRSAEncryption
65:9f:36:1f:3e:3e:a3:db:d3:26:28:08:47:77:e7:89:be:fb:
bc:47:bc:e6:0a:c4:aa:9b:64:54:aa:9f:90:e1:2e:24:0e:43:
e7:75:11:f5:83:31:f2:31:e9:7e:e8:b5:be:70:3d:15:bd:ed:
69:9f:39:59:88:43:94:e7:64:e7:5c:85:08:c5:d3:bb:08:f8:
c8:a3:b0:0c:6a:15:e0:15:59:9c:25:65:d5:c7:37:56:08:d2:
3b:b8:e1:02:e9:90:b0:a7:1a:c3:16:2a:1c:3e:4d:98:4e:43:
35:6b:14:f3:12:cd:bc:f5:6f:30:4d:9c:d8:a5:2b:d0:82:6e:
f8:20:f8:37:08:08:fa:1b:3c:67:11:8d:0e:77:96:f4:ce:c9:
56:83:3c:24:fc:92:2a:73:2f:bb:57:9f:d0:ee:b3:48:b8:76:
b1:d6:58:9b:19:56:46:05:69:f4:32:3a:f7:39:28:a1:56:4b:
e8:b8:6f:47:97:9b:81:f4:1c:ef:80:9f:49:55:6a:cc:29:d7:
ab:9f:74:f8:d1:8e:45:f9:30:86:67:b7:29:fa:ba:7b:89:7d:
6c:7b:17:42:03:29:17:87:db:4e:92:0a:93:20:cc:ae:9f:17:
d0:83:02:10:7f:06:7c:b1:60:29:6a:cb:74:71:55:78:c8:88:
ca:4a:fd:42
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUOyAZwtCVJhxSeVhBtuYrwQRF6HUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODMwZTA2NDE5ZmM0NmEyODAyZjZmMDNiNzEzNjhhYzdi
YWFmNjRjZTAeFw0yNDA3MTYxMzU2MTRaFw0yNTA3MTUxNDAxMTRaMDMxMTAvBgNV
BAMTKEM3MkUwNUUwNEEzRDBFRURGMjQyNUI2NUE3MURGMEIwNkQ1NDI1MDkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDs5ixRTkbluVUaHySjeI0nWT1H
GA+AI4INs2bvgrn4npnkBmed+IDSeVdjKuxaSdV96VOaiLlmTLhyvlk/NaDRvJQ1
IUWO9pBeMjP6COg+Pu/DnW4m9vl/xK0hhVfonzL4hVoGXLF2I9ND70CCxpg99XR1
57++ld6dC9RSXUmDwkC7xGsl+JQRIxZ+Ct/T9NU5cVl/DnlHon0+U1hMCJ2cXcq2
bvnmujgnHnXbCgsoBkwPHbO2ppi8hTFbvGwtrpuNjDIG15JkYxZ7SsolSqWCz1Dg
nfyMJo5rvJjv3kYDOHR7KJ3CK6awJXMDgLUOMhMswfNbf53RJDcMZIUsi2URAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUxy4F4Eo9Du3yQltlpx3wsG1UJQkwHwYDVR0j
BBgwFoAUgw4GQZ/EaigC9vA7cTaKx7qvZM4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvOGUwZDZhNGQtYmE2Ny00OTc5LThkMTItMGVkNDc0OGZj
ODZlLzAvODMwRTA2NDE5RkM0NkEyODAyRjZGMDNCNzEzNjhBQzdCQUFGNjRDRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2d3NEdRWl9FYWlnQzl2QTdjVGFLeDdx
dlpNNC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGUwZDZhNGQt
YmE2Ny00OTc5LThkMTItMGVkNDc0OGZjODZlLzAvMzQzNTJlMzgzOTJlMzEzNTMw
MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzMzM4MzkzOTM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
LVmWMA0GCSqGSIb3DQEBCwUAA4IBAQBlnzYfPj6j29MmKAhHd+eJvvu8R7zmCsSq
m2RUqp+Q4S4kDkPndRH1gzHyMel+6LW+cD0Vve1pnzlZiEOU52TnXIUIxdO7CPjI
o7AMahXgFVmcJWXVxzdWCNI7uOEC6ZCwpxrDFiocPk2YTkM1axTzEs289W8wTZzY
pSvQgm74IPg3CAj6GzxnEY0Od5b0zslWgzwk/JIqcy+7V5/Q7rNIuHax1libGVZG
BWn0Mjr3OSihVkvouG9Hl5uB9BzvgJ9JVWrMKdern3T40Y5F+TCGZ7cp+rp7iX1s
exdCAykXh9tOkgqTIMyunxfQgwIQfwZ8sWApast0cVV4yIjKSv1C
-----END CERTIFICATE-----
Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org