Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34362e3138332e3130382e302f32342d3234203d3e20313431303339.roa
File: 34362e3138332e3130382e302f32342d3234203d3e20313431303339.roa (raw, json)
Hash identifier: lvrKLxpeZPuPudqEIh09vCaTtvdGq8SD2DzJHY3tW5w=
Subject key identifier: E0:26:5B:9F:6D:BE:76:E8:75:D4:86:43:6B:FB:FA:23:F6:E5:9A:07
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 74273FC1FFB5145B48F5B167200AB49297F21D30
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34362e3138332e3130382e302f32342d3234203d3e20313431303339.roa
Signing time: Wed 09 Oct 2024 07:57:32 +0000
ROA not before: Wed 09 Oct 2024 07:52:32 +0000
ROA not after: Wed 08 Oct 2025 07:57:32 +0000
asID: 141039
IP address blocks: 46.183.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:27:3f:c1:ff:b5:14:5b:48:f5:b1:67:20:0a:b4:92:97:f2:1d:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 9 07:52:32 2024 GMT
Not After : Oct 8 07:57:32 2025 GMT
Subject: CN=E0265B9F6DBE76E875D486436BFBFA23F6E59A07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:8e:74:8b:bb:6c:75:1b:1c:65:70:e7:4d:b0:
1e:76:2d:da:53:f2:df:52:d5:bd:a0:f9:86:84:0c:
2b:09:ed:6a:e8:10:02:84:8f:9a:b4:7f:58:5e:da:
5d:8f:b3:f5:4f:96:3e:65:0a:92:c7:e4:c2:df:a4:
c4:0c:da:e1:50:62:43:52:a4:41:02:77:3d:64:21:
79:96:30:2f:47:0d:e6:13:25:1b:cd:c6:2b:ec:76:
4a:d4:ec:94:3c:c2:c0:84:d6:b0:f9:3e:ae:f0:c9:
5e:a4:9f:f0:0a:97:23:df:3d:26:c2:8b:4b:66:c2:
0b:c0:78:0f:2e:d6:ba:81:62:5f:dd:23:41:6a:7b:
7d:13:e5:40:e4:4e:2c:e7:d0:2e:ab:9f:e6:dc:94:
1b:07:30:69:e3:45:4b:71:55:08:ad:58:94:20:c1:
67:51:a3:e2:95:2e:2e:58:d1:3f:84:af:c8:41:aa:
3c:ce:50:c4:e7:3d:a4:27:85:2d:48:0b:3b:38:7e:
4b:07:0e:a4:d7:02:f7:fe:df:bb:47:d2:52:af:95:
46:90:ab:06:1d:fc:5d:fc:85:b7:ee:a3:18:3e:a5:
6d:f4:29:6a:a0:0f:05:46:8f:5f:e5:ba:cb:42:b3:
a8:ce:b7:ed:9b:d5:1e:d1:26:88:19:96:44:44:9d:
c2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:26:5B:9F:6D:BE:76:E8:75:D4:86:43:6B:FB:FA:23:F6:E5:9A:07
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34362e3138332e3130382e302f32342d3234203d3e20313431303339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.108.0/24
Signature Algorithm: sha256WithRSAEncryption
91:e9:64:a5:39:38:58:8c:46:a3:80:ec:31:c9:0c:20:25:d5:
fe:a7:df:a6:a7:e6:47:cb:a4:2b:2e:53:16:f8:db:e2:9c:4e:
61:b9:c4:a1:67:08:1f:58:6d:6f:ba:3f:7e:c8:d1:d6:d9:bf:
58:ea:32:1f:28:43:d4:87:f4:15:11:0c:4c:ad:5d:17:cc:ab:
45:6f:cd:0a:c1:e8:79:dc:56:a2:d8:d5:75:06:98:f1:0e:90:
f4:35:74:97:f6:8f:2c:b2:cb:c4:a7:bb:1d:11:4d:ba:b4:57:
43:69:b4:87:37:c7:0a:eb:5c:3e:97:f5:c9:0b:c1:73:d4:b1:
c7:8e:23:08:ca:cc:6c:56:16:51:4e:81:de:e7:9f:36:9f:c6:
2a:6d:3f:f8:11:56:c7:b2:1e:b3:2f:83:75:a4:99:04:35:84:
d9:30:4d:f8:5c:de:63:80:87:79:02:af:a5:09:64:89:cc:49:
10:03:af:0c:d9:8c:3e:9d:1b:80:72:bc:4b:db:f4:79:ae:d9:
c1:59:8b:54:73:0f:2c:97:f4:b9:c8:46:c6:26:58:f8:dd:33:
c3:ea:49:51:ad:86:be:d8:98:c1:f7:c8:96:35:22:b7:36:2e:
4e:0d:0c:f6:fa:f6:62:38:23:25:e2:8e:b1:43:8c:8f:fe:d9:
c9:b1:98:01
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUdCc/wf+1FFtI9bFnIAq0kpfyHTAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDEwMDkwNzUyMzJaFw0yNTEwMDgwNzU3MzJaMDMxMTAvBgNV
BAMTKEUwMjY1QjlGNkRCRTc2RTg3NUQ0ODY0MzZCRkJGQTIzRjZFNTlBMDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDejnSLu2x1GxxlcOdNsB52LdpT
8t9S1b2g+YaEDCsJ7WroEAKEj5q0f1he2l2Ps/VPlj5lCpLH5MLfpMQM2uFQYkNS
pEECdz1kIXmWMC9HDeYTJRvNxivsdkrU7JQ8wsCE1rD5Pq7wyV6kn/AKlyPfPSbC
i0tmwgvAeA8u1rqBYl/dI0Fqe30T5UDkTizn0C6rn+bclBsHMGnjRUtxVQitWJQg
wWdRo+KVLi5Y0T+Er8hBqjzOUMTnPaQnhS1ICzs4fksHDqTXAvf+37tH0lKvlUaQ
qwYd/F38hbfuoxg+pW30KWqgDwVGj1/lustCs6jOt+2b1R7RJogZlkREncJbAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU4CZbn22+duh11IZDa/v6I/blmgcwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzQzNjJlMzEzODMzMmUzMTMw
MzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDMzMzkucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAAut2wwDQYJKoZIhvcNAQELBQADggEBAJHpZKU5OFiMRqOA7DHJDCAl1f6n36an
5kfLpCsuUxb42+KcTmG5xKFnCB9YbW+6P37I0dbZv1jqMh8oQ9SH9BURDEytXRfM
q0VvzQrB6HncVqLY1XUGmPEOkPQ1dJf2jyyyy8Snux0RTbq0V0NptIc3xwrrXD6X
9ckLwXPUsceOIwjKzGxWFlFOgd7nnzafxiptP/gRVseyHrMvg3WkmQQ1hNkwTfhc
3mOAh3kCr6UJZInMSRADrwzZjD6dG4ByvEvb9Hmu2cFZi1RzDyyX9LnIRsYmWPjd
M8PqSVGthr7YmMH3yJY1Irc2Lk4NDPb69mI4IyXijrFDjI/+2cmxmAE=
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:04 2024 by rpki-client on console-fra.rpki-client.org