Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e36372e3231382e302f32342d3234203d3e203633343733.roa
File: 34352e36372e3231382e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: r51mBz/ihYEdNXfEX2s1X7NIgXvdOuu49UGjWIC6EYM=
Subject key identifier: 30:AD:19:5B:CD:8F:F1:6A:54:DF:06:96:5A:64:7F:9A:D4:D0:E5:24
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 406863D9E9CFC7426B9F340F080A19B4D7A1192A
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e36372e3231382e302f32342d3234203d3e203633343733.roa
Signing time: Mon 04 Dec 2023 09:27:13 +0000
ROA not before: Mon 04 Dec 2023 09:22:13 +0000
ROA not after: Mon 02 Dec 2024 09:27:13 +0000
asID: 63473
IP address blocks: 45.67.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:68:63:d9:e9:cf:c7:42:6b:9f:34:0f:08:0a:19:b4:d7:a1:19:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Dec 4 09:22:13 2023 GMT
Not After : Dec 2 09:27:13 2024 GMT
Subject: CN=30AD195BCD8FF16A54DF06965A647F9AD4D0E524
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6c:52:c1:08:7b:35:4c:87:fb:1e:c0:12:3e:
6b:5e:cd:59:f6:4b:ef:9c:94:39:e0:50:fe:d7:70:
7b:d1:90:e5:4c:92:60:14:1f:ee:2f:7d:2c:35:b3:
8a:18:17:58:98:6c:c1:ab:91:62:7d:cd:d8:a7:60:
db:2b:bf:ad:19:6d:52:af:8e:57:83:c1:52:ba:b5:
cd:de:c0:6e:c8:e6:a0:b4:20:1f:7e:01:cd:5a:97:
13:3b:ae:16:a0:1f:c3:ea:d3:d5:a4:90:97:d6:92:
46:b2:a9:23:5c:00:fb:4e:44:2f:24:89:09:09:18:
ec:51:3c:f3:7e:f7:bc:f1:2a:c7:16:24:c4:11:3b:
af:83:a5:64:ca:90:96:c9:4f:6a:0c:86:ec:ff:e1:
74:c1:f8:ec:98:26:0d:fb:c7:93:75:b8:03:f5:eb:
85:fd:c2:2c:41:30:75:f5:59:34:4f:d1:e9:7e:e7:
54:9c:f6:2a:19:e6:f1:9a:3a:3f:f2:24:df:28:6f:
1d:78:c0:ae:c7:c6:73:7e:c3:86:84:a1:0f:14:3c:
4f:1d:e0:78:d8:b0:d4:25:5e:60:49:9d:91:e1:78:
25:bc:f7:58:4f:25:99:6e:73:35:dd:80:9f:01:df:
09:25:7c:1b:5a:f7:06:cc:8e:f0:60:99:33:4d:bb:
88:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:AD:19:5B:CD:8F:F1:6A:54:DF:06:96:5A:64:7F:9A:D4:D0:E5:24
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e36372e3231382e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.218.0/24
Signature Algorithm: sha256WithRSAEncryption
72:b3:90:c7:3a:fa:4d:72:54:db:14:98:35:77:03:91:1d:71:
a6:a3:fb:75:fa:1c:e9:db:83:ac:15:0b:a2:99:18:c9:10:96:
9a:71:11:b8:a5:4d:cc:3c:bd:de:05:48:35:32:1f:d9:2a:b0:
cf:97:9a:b4:d2:48:fe:4e:ec:66:69:72:20:79:97:3b:a4:2d:
10:f1:1c:6b:56:73:e9:6c:17:dc:73:59:d7:b5:6b:31:f6:5e:
c6:24:66:f8:67:90:b4:23:69:42:3c:9d:b6:6a:ef:b8:cb:13:
f6:b3:22:b8:63:d6:91:0c:7b:92:a7:94:9b:b8:21:99:89:8a:
7d:bf:38:bf:0e:4a:c3:22:ea:bc:7e:3d:03:75:6e:06:32:0a:
27:79:2d:bc:22:8f:46:85:fe:11:f2:88:fa:f1:46:13:e7:86:
21:94:7c:19:01:b6:1d:2b:37:e6:7a:52:32:95:61:bb:a3:33:
0a:e3:ac:ad:46:96:34:79:99:af:0e:b1:a1:0d:24:78:34:c4:
57:c7:80:d0:5d:3c:80:55:b0:2f:1e:70:f4:43:df:cc:51:f6:
96:a3:3c:31:36:60:6c:d8:a8:69:d0:68:2a:ba:9b:88:b2:63:
e6:e1:46:c2:47:d5:02:10:36:bc:c5:5e:12:54:48:96:91:c8:
f7:64:d5:9b
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUQGhj2enPx0JrnzQPCAoZtNehGSowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj
MjMxM2EzYTAeFw0yMzEyMDQwOTIyMTNaFw0yNDEyMDIwOTI3MTNaMDMxMTAvBgNV
BAMTKDMwQUQxOTVCQ0Q4RkYxNkE1NERGMDY5NjVBNjQ3RjlBRDREMEU1MjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/bFLBCHs1TIf7HsASPmtezVn2
S++clDngUP7XcHvRkOVMkmAUH+4vfSw1s4oYF1iYbMGrkWJ9zdinYNsrv60ZbVKv
jleDwVK6tc3ewG7I5qC0IB9+Ac1alxM7rhagH8Pq09WkkJfWkkayqSNcAPtORC8k
iQkJGOxRPPN+97zxKscWJMQRO6+DpWTKkJbJT2oMhuz/4XTB+OyYJg37x5N1uAP1
64X9wixBMHX1WTRP0el+51Sc9ioZ5vGaOj/yJN8obx14wK7HxnN+w4aEoQ8UPE8d
4HjYsNQlXmBJnZHheCW891hPJZluczXdgJ8B3wklfBta9wbMjvBgmTNNu4gjAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUMK0ZW82P8WpU3waWWmR/mtTQ5SQwHwYDVR0j
BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J
eE9qby5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzQzNTJlMzYzNzJlMzIzMTM4
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM0MzczMy5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1D
2jANBgkqhkiG9w0BAQsFAAOCAQEAcrOQxzr6TXJU2xSYNXcDkR1xpqP7dfoc6duD
rBULopkYyRCWmnERuKVNzDy93gVINTIf2Sqwz5eatNJI/k7sZmlyIHmXO6QtEPEc
a1Zz6WwX3HNZ17VrMfZexiRm+GeQtCNpQjydtmrvuMsT9rMiuGPWkQx7kqeUm7gh
mYmKfb84vw5KwyLqvH49A3VuBjIKJ3ktvCKPRoX+EfKI+vFGE+eGIZR8GQG2HSs3
5npSMpVhu6MzCuOsrUaWNHmZrw6xoQ0keDTEV8eA0F08gFWwLx5w9EPfzFH2lqM8
MTZgbNioadBoKrqbiLJj5uFGwkfVAhA2vMVeElRIlpHI92TVmw==
-----END CERTIFICATE-----
Generated at Sat May 18 03:05:18 2024 by rpki-client on console-fra.rpki-client.org