Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/36322e3134362e3233322e302f32312d3332203d3e20313431393935.roa
File: 36322e3134362e3233322e302f32312d3332203d3e20313431393935.roa (raw, json)
Hash identifier: 94XLsppJxc5SfUGY/PAPhlxQOkr9R4dfx3JyinKfwBM=
Subject key identifier: 9C:06:88:20:0E:7C:CE:54:AD:D2:AD:3B:8D:6E:00:E9:0B:F1:26:64
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 5DBB191CDAB50739D1C2E61C7E61B454A5CC0742
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/36322e3134362e3233322e302f32312d3332203d3e20313431393935.roa
Signing time: Wed 19 Jun 2024 11:33:16 +0000
ROA not before: Wed 19 Jun 2024 11:28:16 +0000
ROA not after: Wed 18 Jun 2025 11:33:16 +0000
asID: 141995
IP address blocks: 62.146.232.0/21 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:bb:19:1c:da:b5:07:39:d1:c2:e6:1c:7e:61:b4:54:a5:cc:07:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 19 11:28:16 2024 GMT
Not After : Jun 18 11:33:16 2025 GMT
Subject: CN=9C0688200E7CCE54ADD2AD3B8D6E00E90BF12664
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2c:e2:58:e7:10:d8:f9:cb:e8:7c:ca:47:52:
43:80:0f:43:d3:d1:78:c4:13:56:b7:bf:96:4c:06:
83:f1:d3:36:a2:58:49:3b:29:58:89:91:18:2d:3c:
72:48:90:92:6f:08:4b:70:af:9e:8b:45:87:02:0d:
ab:c5:f9:23:3d:01:52:4c:3b:fe:08:41:09:46:53:
2b:0d:10:46:9d:02:12:03:3c:b1:33:18:99:d7:95:
45:e6:fd:cf:d9:60:92:ac:52:8c:0e:9e:cc:52:76:
99:90:e7:28:e7:c2:c9:4a:47:2e:68:c1:2f:9a:a1:
87:ef:8d:15:45:f4:e4:3c:40:54:e3:d2:57:73:94:
5a:eb:a2:fb:b1:0b:a3:7c:1a:8d:34:54:5e:4b:4a:
72:5a:4a:22:98:a5:c5:9d:c1:8b:05:82:7d:a2:0e:
3d:16:b2:4a:5a:1a:ed:56:50:7e:c9:1f:6c:24:74:
8b:e2:ff:36:e6:df:2c:75:34:a0:36:9e:10:4a:05:
cf:b5:88:a5:8c:74:4e:c7:80:02:30:d7:48:31:df:
7c:c3:98:c4:80:e6:a2:c1:ef:8d:6f:3c:b7:a2:c7:
fc:4d:a0:77:61:0f:3a:89:36:70:4d:2f:cc:b3:e7:
6f:8c:1c:b7:1d:ff:60:a7:3b:31:44:87:16:fe:ee:
f5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:06:88:20:0E:7C:CE:54:AD:D2:AD:3B:8D:6E:00:E9:0B:F1:26:64
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/36322e3134362e3233322e302f32312d3332203d3e20313431393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.146.232.0/21
Signature Algorithm: sha256WithRSAEncryption
4b:d0:b7:06:59:aa:46:7d:ee:29:f6:d2:66:6c:12:6b:21:d4:
e8:53:0b:11:2f:ed:66:77:55:27:c9:bf:5a:23:15:81:6e:16:
eb:7b:ba:8c:a7:d8:73:2f:b7:63:a5:16:b8:e8:99:0c:85:a0:
d2:4d:b5:87:17:91:a6:9c:95:79:93:d9:56:08:59:f6:44:05:
6d:7d:f2:54:09:01:14:f5:01:72:6d:8e:a4:87:7c:6a:65:1f:
29:21:1c:bd:fa:77:39:08:d5:8b:29:ed:5a:93:bf:ea:b2:0a:
10:51:13:50:52:c3:57:fd:c2:44:54:98:44:e5:9c:6b:72:4e:
7a:9f:d1:57:34:7b:a8:f8:85:29:2c:08:42:5a:04:4f:66:a7:
0b:7e:96:f4:0a:bc:0d:8b:a3:78:5f:58:6e:1d:29:95:47:23:
9f:b3:e8:55:7c:d3:a3:64:fb:51:fe:50:3a:0c:74:3a:8b:7e:
92:66:29:86:ec:a0:69:50:14:cb:89:16:4b:1a:6a:3a:ed:cb:
e1:36:c1:23:87:55:91:ab:9f:be:cd:77:09:88:06:9a:2f:f1:
40:98:36:d9:53:46:89:f2:81:1a:37:26:3d:94:42:af:14:62:
b6:b2:03:77:57:9d:1e:31:a1:39:25:c3:97:c7:dd:56:3a:db:
8e:fc:9e:94
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUXbsZHNq1BznRwuYcfmG0VKXMB0IwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDA2MTkxMTI4MTZaFw0yNTA2MTgxMTMzMTZaMDMxMTAvBgNV
BAMTKDlDMDY4ODIwMEU3Q0NFNTRBREQyQUQzQjhENkUwMEU5MEJGMTI2NjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVLOJY5xDY+cvofMpHUkOAD0PT
0XjEE1a3v5ZMBoPx0zaiWEk7KViJkRgtPHJIkJJvCEtwr56LRYcCDavF+SM9AVJM
O/4IQQlGUysNEEadAhIDPLEzGJnXlUXm/c/ZYJKsUowOnsxSdpmQ5yjnwslKRy5o
wS+aoYfvjRVF9OQ8QFTj0ldzlFrrovuxC6N8Go00VF5LSnJaSiKYpcWdwYsFgn2i
Dj0WskpaGu1WUH7JH2wkdIvi/zbm3yx1NKA2nhBKBc+1iKWMdE7HgAIw10gx33zD
mMSA5qLB741vPLeix/xNoHdhDzqJNnBNL8yz52+MHLcd/2CnOzFEhxb+7vWjAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUnAaIIA58zlSt0q07jW4A6QvxJmQwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzYzMjJlMzEzNDM2MmUzMjMz
MzIyZTMwMmYzMjMxMmQzMzMyMjAzZDNlMjAzMTM0MzEzOTM5MzUucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAM+kugwDQYJKoZIhvcNAQELBQADggEBAEvQtwZZqkZ97in20mZsEmsh1OhTCxEv
7WZ3VSfJv1ojFYFuFut7uoyn2HMvt2OlFrjomQyFoNJNtYcXkaaclXmT2VYIWfZE
BW198lQJART1AXJtjqSHfGplHykhHL36dzkI1Ysp7VqTv+qyChBRE1BSw1f9wkRU
mETlnGtyTnqf0Vc0e6j4hSksCEJaBE9mpwt+lvQKvA2Lo3hfWG4dKZVHI5+z6FV8
06Nk+1H+UDoMdDqLfpJmKYbsoGlQFMuJFksaajrty+E2wSOHVZGrn77NdwmIBpov
8UCYNtlTRonygRo3Jj2UQq8UYrayA3dXnR4xoTklw5fH3VY62478npQ=
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:48 2024 by rpki-client on console-ams.rpki-client.org