Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e31342e3139332e302f32342d3234203d3e20323037313337.roa
File: 34352e31342e3139332e302f32342d3234203d3e20323037313337.roa (raw, json)
Hash identifier: afNnMWh5jxbq8/1GrJC+ROETdHBcx3EHuAd1Khvh3PU=
Subject key identifier: F0:CF:70:73:BC:BF:49:BB:D6:AE:72:B7:56:1F:6E:A3:99:70:83:E6
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6537079ABBCF934010B86F58388917D645572FD1
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e31342e3139332e302f32342d3234203d3e20323037313337.roa
Signing time: Wed 27 Sep 2023 13:40:11 +0000
ROA not before: Wed 27 Sep 2023 13:35:11 +0000
ROA not after: Wed 25 Sep 2024 13:40:11 +0000
asID: 207137
IP address blocks: 45.14.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:37:07:9a:bb:cf:93:40:10:b8:6f:58:38:89:17:d6:45:57:2f:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 27 13:35:11 2023 GMT
Not After : Sep 25 13:40:11 2024 GMT
Subject: CN=F0CF7073BCBF49BBD6AE72B7561F6EA3997083E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:11:b0:b1:7a:c1:1e:14:f0:0e:d8:2f:3c:95:
86:e8:f2:fa:23:56:6c:d8:4e:b2:56:c7:79:14:bd:
3a:9f:92:61:ff:2a:ae:9e:2f:b7:60:66:16:03:47:
bb:bb:af:57:f9:81:6c:f2:09:dd:a0:2b:34:4f:8c:
60:15:5f:42:77:ff:c3:80:d0:ae:e2:01:e1:a3:ea:
40:e6:51:46:19:e2:6f:8a:77:ec:1f:54:70:e2:ab:
fd:be:9a:b8:94:53:8f:aa:04:94:ec:64:3b:c7:b3:
ae:f2:bc:c4:6c:b3:3f:25:f6:56:24:31:4b:76:6f:
94:73:76:4b:84:74:b5:47:be:cc:96:66:2a:ae:0b:
60:88:65:95:ec:e2:95:e9:11:d1:5d:2a:d8:1b:6e:
51:17:67:43:e3:67:27:a4:50:83:5e:28:65:2f:3b:
a2:0a:95:c5:8a:9b:65:07:dd:c7:95:75:ad:de:f2:
0e:68:70:93:93:90:fc:34:18:2f:79:20:ca:98:2f:
33:15:3f:d8:c5:8e:21:82:b6:d8:d5:2c:16:b7:65:
d8:7d:89:76:9b:be:24:63:00:db:04:b2:77:99:c4:
d2:0d:d7:f8:a1:a0:d7:3d:a4:f1:e5:42:9f:b8:31:
45:d0:9f:71:49:e3:29:63:80:e8:6f:50:37:6d:e2:
a2:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:CF:70:73:BC:BF:49:BB:D6:AE:72:B7:56:1F:6E:A3:99:70:83:E6
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e31342e3139332e302f32342d3234203d3e20323037313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.193.0/24
Signature Algorithm: sha256WithRSAEncryption
97:7c:8f:0f:5b:93:f3:ad:7c:ae:a8:e6:fe:d7:42:8e:c9:f5:
fe:09:3b:77:7b:34:9e:49:46:ec:c5:56:76:ac:0a:ec:00:3c:
aa:f7:69:70:d0:fd:ea:00:40:a5:b4:84:91:95:38:51:aa:82:
de:a4:e5:99:f6:56:5b:c5:42:2e:fe:81:1a:f5:1a:17:4d:33:
f1:d4:84:11:47:06:b8:b7:a3:cb:bc:81:48:66:cd:81:57:21:
78:04:49:91:8f:3a:94:46:29:57:1e:f5:c1:4c:8b:a1:8d:64:
79:14:b0:90:a0:bb:69:43:8b:d5:4f:6a:f1:6b:0e:1d:c0:06:
fc:c0:96:25:42:6c:a0:30:c9:5f:88:41:de:33:77:52:24:11:
c2:82:fc:11:30:51:40:11:5b:19:48:94:ba:b0:8b:68:0a:a0:
c9:d3:91:7e:e8:15:3b:07:2c:87:ad:29:78:7c:87:19:87:f1:
90:bf:63:7f:e5:31:cc:c7:4e:b5:7d:3d:d4:79:7f:7c:f2:a1:
0d:e5:cf:3c:40:35:72:06:e7:fd:83:5e:33:f6:5a:03:d9:46:
86:cc:e4:23:ae:b4:5e:74:9d:56:42:68:76:82:1c:82:f3:11:
da:f1:29:8d:96:9a:85:64:98:99:ff:28:b7:50:d0:88:0b:74:
e3:ac:d8:c6
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUZTcHmrvPk0AQuG9YOIkX1kVXL9EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yMzA5MjcxMzM1MTFaFw0yNDA5MjUxMzQwMTFaMDMxMTAvBgNV
BAMTKEYwQ0Y3MDczQkNCRjQ5QkJENkFFNzJCNzU2MUY2RUEzOTk3MDgzRTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7EbCxesEeFPAO2C88lYbo8voj
VmzYTrJWx3kUvTqfkmH/Kq6eL7dgZhYDR7u7r1f5gWzyCd2gKzRPjGAVX0J3/8OA
0K7iAeGj6kDmUUYZ4m+Kd+wfVHDiq/2+mriUU4+qBJTsZDvHs67yvMRssz8l9lYk
MUt2b5RzdkuEdLVHvsyWZiquC2CIZZXs4pXpEdFdKtgbblEXZ0PjZyekUINeKGUv
O6IKlcWKm2UH3ceVda3e8g5ocJOTkPw0GC95IMqYLzMVP9jFjiGCttjVLBa3Zdh9
iXabviRjANsEsneZxNIN1/ihoNc9pPHlQp+4MUXQn3FJ4yljgOhvUDdt4qKnAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU8M9wc7y/SbvWrnK3Vh9uo5lwg+YwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzQzNTJlMzEzNDJlMzEzOTMz
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMDM3MzEzMzM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
LQ7BMA0GCSqGSIb3DQEBCwUAA4IBAQCXfI8PW5PzrXyuqOb+10KOyfX+CTt3ezSe
SUbsxVZ2rArsADyq92lw0P3qAECltISRlThRqoLepOWZ9lZbxUIu/oEa9RoXTTPx
1IQRRwa4t6PLvIFIZs2BVyF4BEmRjzqURilXHvXBTIuhjWR5FLCQoLtpQ4vVT2rx
aw4dwAb8wJYlQmygMMlfiEHeM3dSJBHCgvwRMFFAEVsZSJS6sItoCqDJ05F+6BU7
ByyHrSl4fIcZh/GQv2N/5THMx061fT3UeX988qEN5c88QDVyBuf9g14z9loD2UaG
zOQjrrRedJ1WQmh2ghyC8xHa8SmNlpqFZJiZ/yi3UNCIC3TjrNjG
-----END CERTIFICATE-----
Generated at Tue May 21 08:01:45 2024 by rpki-client on console-fra.rpki-client.org