Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36372e302f32342d3234203d3e203538303631.roa
File: 3231332e3133392e36372e302f32342d3234203d3e203538303631.roa (raw, json)
Hash identifier: 3jLf7P3yhu2TZSIau2HMO04k6qsnp0FHPjUx5d6p434=
Subject key identifier: EA:04:4E:B4:0D:5B:1F:50:C5:27:45:F3:AF:82:A8:F2:A3:82:1B:7E
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 236CDBA0342B832A954627339F5348C55D93E37B
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36372e302f32342d3234203d3e203538303631.roa
Signing time: Thu 31 Oct 2024 06:43:26 +0000
ROA not before: Thu 31 Oct 2024 06:38:26 +0000
ROA not after: Thu 30 Oct 2025 06:43:26 +0000
asID: 58061
IP address blocks: 213.139.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:6c:db:a0:34:2b:83:2a:95:46:27:33:9f:53:48:c5:5d:93:e3:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Oct 31 06:38:26 2024 GMT
Not After : Oct 30 06:43:26 2025 GMT
Subject: CN=EA044EB40D5B1F50C52745F3AF82A8F2A3821B7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1e:36:19:20:ff:78:9c:31:94:0b:b4:69:16:
1d:a8:fd:b3:19:d8:96:48:27:e1:9c:0c:e2:70:86:
94:17:12:b0:39:54:a1:c3:c4:f7:0e:36:22:72:c0:
f0:d2:7a:8a:29:ae:c2:00:d4:40:b9:67:a1:75:05:
e0:37:24:08:52:02:2a:f0:48:f4:50:67:37:7f:55:
f3:64:52:22:16:b3:0c:f5:f4:d8:27:08:7d:21:c2:
6b:9c:cd:01:ef:81:7d:7f:83:ec:89:7a:2e:e4:cd:
f9:d3:81:da:ce:b0:5c:65:b0:37:53:a8:1b:76:70:
7b:a3:72:87:e9:85:6d:f1:d0:47:32:b7:cd:e2:ff:
a9:38:60:48:fe:99:52:2d:55:1f:6e:09:0c:21:72:
3a:01:e1:5e:dd:e8:ea:42:21:09:74:55:67:c8:c9:
18:d0:d2:72:c5:63:3c:3b:bd:59:5b:3c:0a:17:db:
ea:48:31:c0:c7:0d:20:b2:8c:70:5e:23:51:9b:dc:
92:60:e6:f1:5e:10:a4:37:ea:d4:2d:5a:19:c0:99:
d9:8a:07:2b:b3:ad:65:85:35:a7:0f:51:9d:ea:48:
1a:d8:24:6b:86:3c:ba:7d:a7:9c:3f:9f:3c:c4:ae:
41:05:89:51:a4:dc:d2:49:04:ce:d3:47:c6:46:f3:
53:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:04:4E:B4:0D:5B:1F:50:C5:27:45:F3:AF:82:A8:F2:A3:82:1B:7E
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36372e302f32342d3234203d3e203538303631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.67.0/24
Signature Algorithm: sha256WithRSAEncryption
34:6e:d4:14:e9:f0:df:b1:5e:1b:4a:0c:12:23:82:02:9d:91:
26:12:1b:9f:05:a6:f5:45:30:3c:94:ea:9b:c8:b6:e6:30:c1:
53:85:45:85:83:6c:db:17:4c:11:c2:25:fd:8d:24:c5:06:44:
3b:50:bd:be:89:46:b0:01:f1:ba:b0:ad:07:10:75:2f:9e:87:
92:0c:cc:6a:9a:d8:bb:46:03:89:84:10:11:be:0f:78:d4:59:
0a:7d:c4:76:f4:0a:ab:bf:93:50:1a:f1:5f:02:b8:50:75:af:
4a:0a:5a:9a:10:6e:b1:ad:4c:75:dc:d6:b9:1e:b5:9f:15:64:
df:bb:2d:55:27:c2:91:11:81:fb:e3:b7:28:22:01:a2:40:b9:
1a:2f:a8:c7:42:24:23:02:c0:0f:10:9c:a1:46:f3:7a:c3:ad:
98:2c:7a:d1:65:f9:40:30:53:f8:96:8b:31:80:c5:4a:9e:b7:
1a:46:d1:a3:d5:d7:6b:96:0a:c1:fc:42:c0:13:14:72:66:66:
2c:d9:e8:56:67:e6:da:41:c6:25:ad:ad:4f:e0:0c:d9:f1:30:
18:8a:e6:68:64:5a:e1:f2:f2:de:d7:d0:c1:2b:c4:0d:45:37:
01:e1:45:9a:37:0d:5c:00:5c:3b:25:ac:2f:d6:91:a1:e8:eb:
27:2e:2c:7c
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUI2zboDQrgyqVRiczn1NIxV2T43swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjY4M2YyZWI1MGM1OTk5YTc3NDU2ZTg4MjY4MzE2MDlk
NDhjN2QzZTAeFw0yNDEwMzEwNjM4MjZaFw0yNTEwMzAwNjQzMjZaMDMxMTAvBgNV
BAMTKEVBMDQ0RUI0MEQ1QjFGNTBDNTI3NDVGM0FGODJBOEYyQTM4MjFCN0UwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtHjYZIP94nDGUC7RpFh2o/bMZ
2JZIJ+GcDOJwhpQXErA5VKHDxPcONiJywPDSeooprsIA1EC5Z6F1BeA3JAhSAirw
SPRQZzd/VfNkUiIWswz19NgnCH0hwmuczQHvgX1/g+yJei7kzfnTgdrOsFxlsDdT
qBt2cHujcofphW3x0Ecyt83i/6k4YEj+mVItVR9uCQwhcjoB4V7d6OpCIQl0VWfI
yRjQ0nLFYzw7vVlbPAoX2+pIMcDHDSCyjHBeI1Gb3JJg5vFeEKQ36tQtWhnAmdmK
ByuzrWWFNacPUZ3qSBrYJGuGPLp9p5w/nzzErkEFiVGk3NJJBM7TR8ZG81NHAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU6gROtA1bH1DFJ0Xzr4Ko8qOCG34wHwYDVR0j
BBgwFoAUtoPy61DFmZp3RW6IJoMWCdSMfT4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmItYjY2MC00ODlkLTllOWYtOTQwMmU5ZTJj
MmUyLzAvQjY4M0YyRUI1MEM1OTk5QTc3NDU2RTg4MjY4MzE2MDlENDhDN0QzRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3RvUHk2MURGbVpwM1JXNklKb01XQ2RT
TWZUNC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTAxYzE0ZmIt
YjY2MC00ODlkLTllOWYtOTQwMmU5ZTJjMmUyLzAvMzIzMTMzMmUzMTMzMzkyZTM2
MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNTM4MzAzNjMxLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
1YtDMA0GCSqGSIb3DQEBCwUAA4IBAQA0btQU6fDfsV4bSgwSI4ICnZEmEhufBab1
RTA8lOqbyLbmMMFThUWFg2zbF0wRwiX9jSTFBkQ7UL2+iUawAfG6sK0HEHUvnoeS
DMxqmti7RgOJhBARvg941FkKfcR29Aqrv5NQGvFfArhQda9KClqaEG6xrUx13Na5
HrWfFWTfuy1VJ8KREYH747coIgGiQLkaL6jHQiQjAsAPEJyhRvN6w62YLHrRZflA
MFP4losxgMVKnrcaRtGj1ddrlgrB/ELAExRyZmYs2ehWZ+baQcYlra1P4AzZ8TAY
iuZoZFrh8vLe19DBK8QNRTcB4UWaNw1cAFw7Jawv1pGh6OsnLix8
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:40:00 2024 by rpki-client on console-ams.rpki-client.org