Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133342e3232342e302f32342d3234203d3e20313437303439.roa
File: 34352e3133342e3232342e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: U1Sud2lVZy6+9b6XgHGmqVoaHsyUYwFfFJQW3eApD+Q=
Subject key identifier: 55:29:36:CA:6E:0B:AC:DB:83:18:3B:FE:0A:6F:87:B0:EA:78:EF:D3
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 74BD2B914CFE220381D86C17EBCC0CAFC6BBF2C0
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133342e3232342e302f32342d3234203d3e20313437303439.roa
Signing time: Mon 18 Sep 2023 15:35:07 +0000
ROA not before: Mon 18 Sep 2023 15:30:07 +0000
ROA not after: Mon 16 Sep 2024 15:35:07 +0000
asID: 147049
IP address blocks: 45.134.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 14 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:bd:2b:91:4c:fe:22:03:81:d8:6c:17:eb:cc:0c:af:c6:bb:f2:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Sep 18 15:30:07 2023 GMT
Not After : Sep 16 15:35:07 2024 GMT
Subject: CN=552936CA6E0BACDB83183BFE0A6F87B0EA78EFD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ef:bd:86:a5:25:21:e4:6f:ff:e1:a5:8b:f4:
f8:fc:bc:30:d3:23:5c:97:8d:99:ae:90:ad:05:7d:
86:50:0e:fa:0b:51:68:da:5b:32:43:d1:bd:fd:44:
a3:8d:6d:c2:34:ac:c8:5b:c1:5c:be:77:cb:19:ae:
d5:a5:da:17:e2:c2:92:cd:e4:76:a1:5d:fc:f5:2b:
f6:31:71:67:9c:1b:48:fa:75:84:f0:3e:77:33:cc:
28:00:6b:06:66:e1:0a:fd:3b:f1:4e:6d:b1:54:9d:
26:9c:c3:39:b6:2b:a4:e4:c2:23:1a:f0:00:6b:7a:
ad:b9:51:c3:42:d7:a2:55:a5:b7:a5:c2:dc:5d:1f:
71:4b:bc:f7:0c:24:98:b1:f9:8c:6d:71:c3:46:e6:
61:1b:b1:4c:91:0b:dc:a1:b9:c4:d8:a9:cf:01:2e:
f2:9b:d1:75:f4:9b:e9:a8:4d:99:6b:df:1d:67:18:
ac:30:5f:40:2f:bb:55:b2:89:76:a0:e7:5d:8c:a0:
f1:f1:d8:ad:95:77:16:5c:90:84:dd:11:8e:63:a3:
56:26:ab:06:53:24:5f:72:90:ae:e5:a3:2b:c5:d4:
d0:7a:38:80:fb:75:77:69:2f:c9:39:d9:4b:4f:4d:
d7:fa:cb:20:53:0c:7f:9e:f8:0d:1d:08:e7:99:ea:
39:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:29:36:CA:6E:0B:AC:DB:83:18:3B:FE:0A:6F:87:B0:EA:78:EF:D3
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133342e3232342e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.224.0/24
Signature Algorithm: sha256WithRSAEncryption
61:74:43:df:c2:2a:9a:67:80:e8:be:61:b9:ae:98:26:eb:8f:
3b:9f:7f:28:5b:7b:b7:73:cf:75:00:e8:e8:00:4f:3a:19:1a:
13:da:76:97:ae:ac:df:40:37:7b:36:32:30:3d:bf:47:7f:52:
c4:27:fc:fd:ed:f9:c6:1e:ad:a2:f3:64:c6:09:ab:4b:40:76:
7a:01:a3:0f:c0:b3:df:69:0d:ba:3c:e5:bd:18:e0:c1:a2:46:
c3:28:42:bb:0a:51:69:7f:ca:ed:e4:d8:f5:52:b3:7e:91:76:
d4:45:f0:7c:45:dd:05:0e:f3:86:67:6f:73:e1:43:1f:62:25:
93:b3:3a:8d:57:64:a0:5d:70:57:3c:40:d8:e1:57:4c:79:3f:
7e:94:94:c1:55:f0:71:96:9e:63:cb:a6:81:38:ab:30:a4:84:
c1:a1:ee:16:8f:af:8e:3a:85:04:46:27:3b:a6:95:5d:f4:2e:
c1:25:27:1f:78:6b:b8:92:d2:38:42:09:d7:ff:de:e1:52:f2:
a7:44:03:9d:d8:a4:ef:9d:78:16:2e:ce:88:86:a1:db:09:b3:
54:46:3c:e3:4b:e4:96:b7:01:7d:14:90:07:81:36:a5:54:4b:
5f:dd:3b:ff:ea:cd:2f:15:6b:7d:6c:b2:bb:da:cd:06:df:36:
28:84:82:13
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUdL0rkUz+IgOB2GwX68wMr8a78sAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDhmYjliYTgyN2U2ZjEwYTdhZjM3NDkwODAzZGQ1YTA3
NjM5NzIzNTAeFw0yMzA5MTgxNTMwMDdaFw0yNDA5MTYxNTM1MDdaMDMxMTAvBgNV
BAMTKDU1MjkzNkNBNkUwQkFDREI4MzE4M0JGRTBBNkY4N0IwRUE3OEVGRDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9772GpSUh5G//4aWL9Pj8vDDT
I1yXjZmukK0FfYZQDvoLUWjaWzJD0b39RKONbcI0rMhbwVy+d8sZrtWl2hfiwpLN
5HahXfz1K/YxcWecG0j6dYTwPnczzCgAawZm4Qr9O/FObbFUnSacwzm2K6TkwiMa
8ABreq25UcNC16JVpbelwtxdH3FLvPcMJJix+YxtccNG5mEbsUyRC9yhucTYqc8B
LvKb0XX0m+moTZlr3x1nGKwwX0Avu1WyiXag512MoPHx2K2VdxZckITdEY5jo1Ym
qwZTJF9ykK7loyvF1NB6OID7dXdpL8k52UtPTdf6yyBTDH+e+A0dCOeZ6jlDAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUVSk2ym4LrNuDGDv+Cm+HsOp479MwHwYDVR0j
BBgwFoAUCPubqCfm8Qp683SQgD3VoHY5cjUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzIvMDhGQjlCQTgyN0U2RjEwQTdBRjM3NDkwODAzREQ1QTA3NjM5NzIzNS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NQdWJxQ2ZtOFFwNjgzU1FnRDNWb0hZ
NWNqVS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzIvMzQzNTJlMzEzMzM0MmUzMjMy
MzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM0Mzkucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAAthuAwDQYJKoZIhvcNAQELBQADggEBAGF0Q9/CKppngOi+YbmumCbrjzuffyhb
e7dzz3UA6OgATzoZGhPadpeurN9AN3s2MjA9v0d/UsQn/P3t+cYeraLzZMYJq0tA
dnoBow/As99pDbo85b0Y4MGiRsMoQrsKUWl/yu3k2PVSs36RdtRF8HxF3QUO84Zn
b3PhQx9iJZOzOo1XZKBdcFc8QNjhV0x5P36UlMFV8HGWnmPLpoE4qzCkhMGh7haP
r446hQRGJzumlV30LsElJx94a7iS0jhCCdf/3uFS8qdEA53YpO+deBYuzoiGodsJ
s1RGPONL5Ja3AX0UkAeBNqVUS1/dO//qzS8Va31ssrvazQbfNiiEghM=
-----END CERTIFICATE-----
Generated at Mon May 13 09:30:59 2024 by rpki-client on console-fra.rpki-client.org