Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3132392e33322e302f32342d3234203d3e20313336373837.roa
File: 34352e3132392e33322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: ntaZmbPDzDBiH9hPi7zaMmF6VdRVfPgnEqjij4+4NX0=
Subject key identifier: 81:68:9D:36:96:DF:38:DD:88:01:75:C2:13:85:F8:71:A8:C7:BD:75
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 36BA1A1FF05B450FC9860C74601D8DB558487E0D
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3132392e33322e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 19 Jun 2023 16:33:52 +0000
ROA not before: Mon 19 Jun 2023 16:28:52 +0000
ROA not after: Mon 17 Jun 2024 16:33:52 +0000
asID: 136787
IP address blocks: 45.129.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:ba:1a:1f:f0:5b:45:0f:c9:86:0c:74:60:1d:8d:b5:58:48:7e:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Jun 19 16:28:52 2023 GMT
Not After : Jun 17 16:33:52 2024 GMT
Subject: CN=81689D3696DF38DD880175C21385F871A8C7BD75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:90:39:06:06:f3:4b:85:03:e7:e2:b7:b1:f5:
1d:18:88:61:9a:28:12:75:5a:6e:0c:e6:a7:a6:68:
70:b1:8e:3c:6d:47:d9:61:61:5a:3f:f2:bd:2d:80:
a2:46:36:42:e4:95:bc:47:e4:52:6d:79:c8:86:2d:
1c:3a:4e:ef:b3:6b:1f:d2:27:c1:ba:47:70:f2:86:
1a:b2:02:52:79:f9:2f:41:c2:de:0f:65:77:fb:a8:
80:75:24:b9:35:6c:7c:bb:e8:b8:41:2f:a6:5b:35:
b8:03:5c:42:dc:1e:6c:82:50:2b:8e:fc:20:7e:91:
2d:e1:4f:63:f0:c7:cc:0a:38:d8:05:7d:38:9c:90:
d9:48:4e:3e:40:bb:c7:56:3d:f7:d9:e0:ef:d2:f8:
24:4f:d3:fa:dd:32:a2:3e:34:de:26:1c:05:9a:8a:
e7:15:87:70:46:06:c5:8f:7d:d9:96:11:b5:a4:17:
66:c7:8f:bf:2b:86:81:dd:13:86:2a:b3:e3:35:74:
0c:bc:ba:80:c9:07:fd:d9:e8:e1:02:43:37:13:9e:
ba:25:57:45:7d:bc:6c:9a:94:2f:f2:71:c2:fc:d0:
e6:86:74:d2:5b:2e:f9:e5:b4:c7:2b:e3:d2:28:ce:
ec:48:fe:0b:a2:dd:6a:2f:08:1f:96:3f:ba:a1:c0:
55:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:68:9D:36:96:DF:38:DD:88:01:75:C2:13:85:F8:71:A8:C7:BD:75
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3132392e33322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.32.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:d8:7a:6e:e9:f8:2e:6c:e5:99:46:15:1e:21:ce:cd:7e:00:
e2:4b:77:6d:82:6f:ee:9c:8f:41:bf:91:76:31:fe:68:b8:80:
31:fe:41:f5:56:bc:13:be:a5:a0:e0:47:26:56:19:d4:59:43:
63:fd:94:ae:94:bd:6f:b4:6d:68:6c:63:9e:4e:70:ef:70:bc:
ee:3e:1f:15:05:2e:3e:67:71:6e:c4:d1:26:a1:55:fc:cc:7d:
8f:80:72:0c:dc:87:e9:68:15:25:ac:b4:4d:d9:58:b9:3b:26:
c0:04:ff:35:ee:9f:14:0d:6d:3c:0c:26:3d:19:a1:e1:42:58:
e6:a1:2e:f6:55:74:49:b2:2a:e9:89:12:8e:c3:71:2e:78:98:
de:b4:63:d2:87:e5:5e:04:28:b0:9b:fe:99:53:96:1b:b0:a6:
c4:6e:cf:e4:f2:0c:b2:4c:3c:08:17:66:2b:3b:48:25:fd:a5:
c9:e0:6a:47:65:5b:fb:c2:2a:c5:88:53:8e:7a:ac:6c:9a:09:
29:9d:8b:2f:58:08:3d:b9:5a:d0:84:60:9e:c1:ad:41:0e:d7:
a3:3e:55:f2:bf:29:60:ec:b4:32:8b:37:9a:c6:2f:96:6d:1c:
84:ea:b1:c3:63:a7:2e:11:97:12:3c:5b:e8:ce:01:d8:68:ff:
87:07:fa:92
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUNroaH/BbRQ/Jhgx0YB2NtVhIfg0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDhmYjliYTgyN2U2ZjEwYTdhZjM3NDkwODAzZGQ1YTA3
NjM5NzIzNTAeFw0yMzA2MTkxNjI4NTJaFw0yNDA2MTcxNjMzNTJaMDMxMTAvBgNV
BAMTKDgxNjg5RDM2OTZERjM4REQ4ODAxNzVDMjEzODVGODcxQThDN0JENzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2kDkGBvNLhQPn4rex9R0YiGGa
KBJ1Wm4M5qemaHCxjjxtR9lhYVo/8r0tgKJGNkLklbxH5FJteciGLRw6Tu+zax/S
J8G6R3DyhhqyAlJ5+S9Bwt4PZXf7qIB1JLk1bHy76LhBL6ZbNbgDXELcHmyCUCuO
/CB+kS3hT2Pwx8wKONgFfTickNlITj5Au8dWPffZ4O/S+CRP0/rdMqI+NN4mHAWa
iucVh3BGBsWPfdmWEbWkF2bHj78rhoHdE4Yqs+M1dAy8uoDJB/3Z6OECQzcTnrol
V0V9vGyalC/yccL80OaGdNJbLvnltMcr49IozuxI/gui3WovCB+WP7qhwFXXAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUgWidNpbfON2IAXXCE4X4cajHvXUwHwYDVR0j
BBgwFoAUCPubqCfm8Qp683SQgD3VoHY5cjUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzIvMDhGQjlCQTgyN0U2RjEwQTdBRjM3NDkwODAzREQ1QTA3NjM5NzIzNS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NQdWJxQ2ZtOFFwNjgzU1FnRDNWb0hZ
NWNqVS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzIvMzQzNTJlMzEzMjM5MmUzMzMy
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
LYEgMA0GCSqGSIb3DQEBCwUAA4IBAQBM2Hpu6fgubOWZRhUeIc7NfgDiS3dtgm/u
nI9Bv5F2Mf5ouIAx/kH1VrwTvqWg4EcmVhnUWUNj/ZSulL1vtG1obGOeTnDvcLzu
Ph8VBS4+Z3FuxNEmoVX8zH2PgHIM3IfpaBUlrLRN2Vi5OybABP817p8UDW08DCY9
GaHhQljmoS72VXRJsirpiRKOw3EueJjetGPSh+VeBCiwm/6ZU5YbsKbEbs/k8gyy
TDwIF2YrO0gl/aXJ4GpHZVv7wirFiFOOeqxsmgkpnYsvWAg9uVrQhGCewa1BDtej
PlXyvylg7LQyizeaxi+WbRyE6rHDY6cuEZcSPFvozgHYaP+HB/qS
-----END CERTIFICATE-----
Generated at Wed May 8 11:32:57 2024 by rpki-client on console-ams.rpki-client.org