Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS49367.roa
File: AS49367.roa (raw, json)
Hash identifier: GofTpVS5xudT27J64+SB8nwC90ta0ghstcSuVC7qzz8=
Subject key identifier: 58:7E:01:F2:56:B7:FA:C9:68:9A:1A:B5:8D:05:DA:56:AA:0E:A8:28
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 3642BC9DFA00280B892E3B59D207FA769DC5DA34
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS49367.roa
Signing time: Tue 29 Oct 2024 15:43:26 +0000
ROA not before: Tue 29 Oct 2024 15:38:26 +0000
ROA not after: Tue 28 Oct 2025 15:43:26 +0000
asID: 49367
IP address blocks: 141.11.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.mft
rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:42:bc:9d:fa:00:28:0b:89:2e:3b:59:d2:07:fa:76:9d:c5:da:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Oct 29 15:38:26 2024 GMT
Not After : Oct 28 15:43:26 2025 GMT
Subject: CN=587E01F256B7FAC9689A1AB58D05DA56AA0EA828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6e:11:49:79:82:78:7f:2f:08:e3:51:18:ee:
c9:17:f7:17:f4:04:34:27:8a:8d:0f:3b:ac:92:64:
1d:53:eb:6d:a4:bb:21:89:9e:70:65:e8:c9:9b:bb:
5b:06:5a:5e:23:20:49:81:66:b6:4c:7a:ed:69:80:
b3:10:4f:00:2d:01:e2:78:14:50:ac:4f:43:3b:cc:
35:d6:9a:5b:73:a0:39:81:ca:45:5f:60:42:49:5f:
e4:b4:fa:f6:f4:31:17:58:bf:d0:dc:6b:38:9d:a3:
d1:ba:9e:5d:08:13:7f:39:b0:fa:d9:d9:c2:4e:26:
b9:fe:c8:2e:bb:23:50:60:99:7a:18:d4:96:ac:5b:
18:ff:25:6b:81:47:3d:bb:75:c6:0f:c4:47:ab:33:
0d:58:22:87:ba:04:ec:38:8c:48:16:0b:6a:75:c3:
32:8d:0f:1d:dc:87:73:ed:11:e4:91:90:cb:5a:01:
f7:02:7d:87:9a:3f:c1:8d:8c:50:fc:ec:dc:de:2a:
8e:62:81:c5:08:66:13:b7:0d:4d:d5:18:cd:4a:1b:
d3:82:57:88:45:9d:2f:34:cd:4b:1f:d0:94:ed:9c:
8f:c6:29:18:99:26:01:29:b9:e5:8d:4f:ed:96:82:
a2:13:23:da:1b:a3:bd:cb:45:aa:ae:fc:d5:e6:7b:
2c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:7E:01:F2:56:B7:FA:C9:68:9A:1A:B5:8D:05:DA:56:AA:0E:A8:28
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS49367.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.31.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:79:b1:0a:87:33:6f:8d:89:fe:97:11:2e:78:cc:cf:73:cc:
63:91:99:d6:88:07:ec:0f:fb:fc:5f:f3:66:86:aa:21:8f:51:
ec:87:70:75:7b:be:b2:1e:63:07:9c:ba:78:58:76:9f:41:da:
53:32:c1:89:51:34:99:d6:ed:53:7d:f6:1a:59:27:af:59:e4:
94:42:f9:39:c9:f5:84:c2:c7:23:db:9c:a4:ad:84:6f:0d:14:
61:fb:2c:15:f1:e0:11:67:8c:ea:e6:0d:aa:b9:f0:1e:72:13:
de:4d:7d:ac:9d:f3:68:9b:15:4e:f1:e1:28:20:88:d1:2c:fc:
fd:cc:0f:4f:08:f1:0a:f3:c1:cf:95:ac:4a:96:ea:be:c4:3c:
cc:39:fc:1e:cb:fc:f5:42:26:83:aa:f7:bd:c7:a7:16:61:27:
fc:91:5c:95:0a:3b:1c:ff:d5:57:23:6b:15:77:58:f3:9d:96:
66:d2:6e:3f:12:52:bf:8f:4d:af:5c:cb:95:65:04:8c:52:3e:
f2:bb:5e:f7:0d:e2:ef:b0:31:df:70:81:a3:d8:06:2a:dd:e6:
af:38:51:59:5b:24:70:6b:61:e4:1c:0d:67:c3:ce:07:05:5c:
a1:da:b9:0a:f4:a8:93:d8:fc:a6:6e:2c:b4:38:f8:fd:8b:2a:
1a:87:5f:ca
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIUNkK8nfoAKAuJLjtZ0gf6dp3F2jQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYzIzMDJhZjE0M2MxNWRhYWQ1MDA0MmQ4NDU1ZTY4OWQw
ODI4ZWNhOTAeFw0yNDEwMjkxNTM4MjZaFw0yNTEwMjgxNTQzMjZaMDMxMTAvBgNV
BAMTKDU4N0UwMUYyNTZCN0ZBQzk2ODlBMUFCNThEMDVEQTU2QUEwRUE4MjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDObhFJeYJ4fy8I41EY7skX9xf0
BDQnio0PO6ySZB1T622kuyGJnnBl6Mmbu1sGWl4jIEmBZrZMeu1pgLMQTwAtAeJ4
FFCsT0M7zDXWmltzoDmBykVfYEJJX+S0+vb0MRdYv9Dcazido9G6nl0IE385sPrZ
2cJOJrn+yC67I1BgmXoY1JasWxj/JWuBRz27dcYPxEerMw1YIoe6BOw4jEgWC2p1
wzKNDx3ch3PtEeSRkMtaAfcCfYeaP8GNjFD87NzeKo5igcUIZhO3DU3VGM1KG9OC
V4hFnS80zUsf0JTtnI/GKRiZJgEpueWNT+2WgqITI9obo73LRaqu/NXmeyx7AgMB
AAGjggIJMIICBTAdBgNVHQ4EFgQUWH4B8la3+slomhq1jQXaVqoOqCgwHwYDVR0j
BBgwFoAUwjAq8UPBXarVAELYRV5onQgo7KkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTkzY2I1NWMtOTU3MS00NGM4LTkwZTEtOTY1YjkyNzY5
ZTRlLzAvQzIzMDJBRjE0M0MxNURBQUQ1MDA0MkQ4NDU1RTY4OUQwODI4RUNBOS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dqQXE4VVBCWGFyVkFFTFlSVjVvblFn
bzdLay5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2E5M2NiNTVjLTk1NzEt
NDRjOC05MGUxLTk2NWI5Mjc2OWU0ZS8wL0FTNDkzNjcucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACNCx8w
DQYJKoZIhvcNAQELBQADggEBAE95sQqHM2+Nif6XES54zM9zzGORmdaIB+wP+/xf
82aGqiGPUeyHcHV7vrIeYwecunhYdp9B2lMywYlRNJnW7VN99hpZJ69Z5JRC+TnJ
9YTCxyPbnKSthG8NFGH7LBXx4BFnjOrmDaq58B5yE95Nfayd82ibFU7x4SggiNEs
/P3MD08I8Qrzwc+VrEqW6r7EPMw5/B7L/PVCJoOq973HpxZhJ/yRXJUKOxz/1Vcj
axV3WPOdlmbSbj8SUr+PTa9cy5VlBIxSPvK7XvcN4u+wMd9wgaPYBird5q84UVlb
JHBrYeQcDWfDzgcFXKHauQr0qJPY/KZuLLQ4+P2LKhqHX8o=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:59:16 2024 by rpki-client on console-ams.rpki-client.org