Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS40065.roa
File: AS40065.roa (raw, json)
Hash identifier: DgncA+psKlWrpBCAu2sNTcdMZsBFb8fz7jPp4Y+Y1AY=
Subject key identifier: C7:4C:7D:AD:B1:F9:13:C6:45:5A:2A:5B:57:99:A5:FD:99:22:63:9A
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 3D62296F2C05F2542A7E16B6EB0685F44B232C43
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS40065.roa
Signing time: Tue 28 Nov 2023 15:05:06 +0000
ROA not before: Tue 28 Nov 2023 15:00:06 +0000
ROA not after: Tue 26 Nov 2024 15:05:06 +0000
asID: 40065
IP address blocks: 141.11.97.0/24 maxlen: 24
141.11.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:62:29:6f:2c:05:f2:54:2a:7e:16:b6:eb:06:85:f4:4b:23:2c:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Nov 28 15:00:06 2023 GMT
Not After : Nov 26 15:05:06 2024 GMT
Subject: CN=C74C7DADB1F913C6455A2A5B5799A5FD9922639A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:72:f0:53:c4:8b:5a:27:a1:c8:ea:14:82:6e:
41:e6:a3:0e:3c:55:49:46:c3:7e:7e:18:a3:e7:be:
77:c6:9c:c0:e6:9b:68:1d:b7:86:f0:27:d5:33:fa:
2d:80:e4:75:a2:48:d3:dd:73:de:5e:ef:12:c0:c8:
3c:c6:9b:96:14:9f:34:3b:fc:4d:fc:4e:4e:6c:9e:
93:5d:91:65:1c:83:c7:11:97:19:9e:ab:e3:17:54:
f9:f1:8d:2e:df:1b:42:03:2b:62:02:d2:32:ee:bd:
ce:b8:64:49:2d:5a:04:e7:0d:e0:79:68:20:65:45:
65:14:25:80:bc:0e:4e:a3:d4:d0:17:8e:89:c4:eb:
21:9e:6c:30:db:74:da:83:ba:47:1d:1a:02:2f:95:
dd:f1:76:8f:55:3c:18:39:da:1f:7b:20:d5:a6:4e:
5d:e2:e4:94:c4:fb:95:ef:59:36:7a:61:86:5e:84:
ad:c6:96:4e:13:5b:37:f0:51:96:96:d1:04:c6:c5:
0c:7b:93:57:87:52:7a:e7:7c:35:db:a4:de:da:ec:
ac:0f:6a:5e:17:9e:3d:e5:cd:f1:b4:55:04:92:d9:
ed:ca:35:7b:42:b1:9d:92:50:e7:93:91:f8:02:6b:
21:f5:73:e5:ac:73:71:ab:81:52:ad:d8:0f:01:42:
94:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:4C:7D:AD:B1:F9:13:C6:45:5A:2A:5B:57:99:A5:FD:99:22:63:9A
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS40065.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.97.0/24
141.11.108.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:26:2d:7c:12:6b:9d:0c:1f:f4:7f:8f:5f:0e:da:16:d9:d9:
6e:29:fc:6e:5e:bb:a8:08:ec:cc:2e:fc:98:ac:b6:18:fc:28:
b0:4b:a3:e8:54:8a:d0:a8:6b:72:7e:cf:54:3f:93:55:6c:b0:
3b:b6:8f:8a:e2:3a:72:a6:31:65:6f:89:e1:76:95:a8:94:e0:
63:cf:d2:52:18:18:70:37:3b:48:d4:88:70:5b:3e:1e:4a:ea:
e9:38:dd:5d:d7:8e:b9:9e:2c:63:d3:78:91:3d:c6:dd:2e:d7:
eb:56:31:07:42:bf:7f:bb:6c:22:7c:da:9b:c4:b7:d9:44:ce:
7b:d3:83:9f:60:49:55:e6:22:38:15:e1:f2:a8:7a:77:30:72:
40:c9:a1:6f:80:34:33:34:4c:b1:43:44:75:52:42:00:71:16:
38:bb:7c:be:27:21:b1:e5:87:8a:c0:2d:68:86:c8:8e:d0:93:
54:3d:d8:5f:30:8c:1d:ae:fa:27:38:d2:35:85:81:34:87:a8:
57:04:89:5c:8f:ca:1a:5d:9b:7a:45:91:2e:70:9c:fa:cb:07:
23:7a:7b:35:10:bf:87:b5:82:6f:6b:01:4a:eb:64:dd:96:23:
d4:88:d2:57:24:28:48:81:b1:24:d3:49:5d:ea:ef:10:d7:00:
8e:79:d2:84
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgIUPWIpbywF8lQqfha26waF9EsjLEMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw
ODI4ZWNhOTAeFw0yMzExMjgxNTAwMDZaFw0yNDExMjYxNTA1MDZaMDMxMTAvBgNV
BAMTKEM3NEM3REFEQjFGOTEzQzY0NTVBMkE1QjU3OTlBNUZEOTkyMjYzOUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0cvBTxItaJ6HI6hSCbkHmow48
VUlGw35+GKPnvnfGnMDmm2gdt4bwJ9Uz+i2A5HWiSNPdc95e7xLAyDzGm5YUnzQ7
/E38Tk5snpNdkWUcg8cRlxmeq+MXVPnxjS7fG0IDK2IC0jLuvc64ZEktWgTnDeB5
aCBlRWUUJYC8Dk6j1NAXjonE6yGebDDbdNqDukcdGgIvld3xdo9VPBg52h97INWm
Tl3i5JTE+5XvWTZ6YYZehK3Glk4TWzfwUZaW0QTGxQx7k1eHUnrnfDXbpN7a7KwP
al4Xnj3lzfG0VQSS2e3KNXtCsZ2SUOeTkfgCayH1c+Wsc3GrgVKt2A8BQpTdAgMB
AAGjggIPMIICCzAdBgNVHQ4EFgQUx0x9rbH5E8ZFWipbV5ml/ZkiY5owHwYDVR0j
BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5
ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn
bzdLay5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt
NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTNDAwNjUucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBACNC2ED
BACNC2wwDQYJKoZIhvcNAQELBQADggEBAHwmLXwSa50MH/R/j18O2hbZ2W4p/G5e
u6gI7Mwu/Jisthj8KLBLo+hUitCoa3J+z1Q/k1VssDu2j4riOnKmMWVvieF2laiU
4GPP0lIYGHA3O0jUiHBbPh5K6uk43V3XjrmeLGPTeJE9xt0u1+tWMQdCv3+7bCJ8
2pvEt9lEznvTg59gSVXmIjgV4fKoencwckDJoW+ANDM0TLFDRHVSQgBxFji7fL4n
IbHlh4rALWiGyI7Qk1Q92F8wjB2u+ic40jWFgTSHqFcEiVyPyhpdm3pFkS5wnPrL
ByN6ezUQv4e1gm9rAUrrZN2WI9SI0lckKEiBsSTTSV3q7xDXAI550oQ=
-----END CERTIFICATE-----
Generated at Sun May 5 15:51:35 2024 by rpki-client on console-fra.rpki-client.org