Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/33312e3136392e3132312e302f32342d3234203d3e20323039383534.roa
File: 33312e3136392e3132312e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: CyRxVeXGOKZe9NiOxlIFb+MxkXFbtdqnxBaL46/x+Qc=
Subject key identifier: 64:DF:6A:76:85:D9:9B:BE:F1:55:D9:00:1F:20:5A:3B:C0:D0:93:49
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 229613939E5B2CC0153FE454B8FD9288346683A4
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/33312e3136392e3132312e302f32342d3234203d3e20323039383534.roa
Signing time: Tue 30 Jul 2024 14:04:28 +0000
ROA not before: Tue 30 Jul 2024 13:59:28 +0000
ROA not after: Tue 29 Jul 2025 14:04:28 +0000
asID: 209854
IP address blocks: 31.169.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:96:13:93:9e:5b:2c:c0:15:3f:e4:54:b8:fd:92:88:34:66:83:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Jul 30 13:59:28 2024 GMT
Not After : Jul 29 14:04:28 2025 GMT
Subject: CN=64DF6A7685D99BBEF155D9001F205A3BC0D09349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:1c:e0:f1:d1:b3:b2:17:6f:0f:79:c9:c4:4c:
2a:97:dc:9e:fa:13:90:e0:b3:9e:9d:ba:41:c5:10:
d0:93:cc:b0:72:65:67:83:5c:49:6f:86:bf:54:9e:
a0:88:39:5c:29:fe:e8:de:fb:7c:b2:1f:cc:23:cd:
dc:27:3d:de:24:4d:e7:3d:77:66:fb:4d:e0:74:7e:
e2:89:68:00:dd:ea:9d:90:54:8a:72:9d:70:6a:00:
40:48:55:cd:f8:fa:77:82:69:bd:a2:6e:27:05:43:
1d:0a:07:a5:13:e9:fb:4a:38:df:e9:4c:89:dc:eb:
1e:af:08:1c:49:29:d1:a4:50:48:dc:fe:88:38:40:
b0:47:90:81:db:0a:5c:13:09:0e:e1:2a:09:ce:36:
29:9e:0c:f0:03:67:7f:55:e6:22:c3:29:c5:57:d1:
81:79:f3:a9:25:b9:a2:aa:cf:b6:8c:df:b3:91:bf:
dc:1f:9e:89:e0:56:5e:63:18:28:22:14:67:c3:3c:
f3:23:8b:a5:3d:ec:d9:74:e2:a5:16:20:7b:b3:da:
7f:48:29:d8:c0:4d:f6:31:31:f9:48:f6:bb:24:62:
85:2c:01:df:30:90:f5:c1:58:a9:18:3f:b4:5c:be:
8d:f6:91:1d:ba:3d:ab:22:28:23:36:c3:ec:a6:c3:
95:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:DF:6A:76:85:D9:9B:BE:F1:55:D9:00:1F:20:5A:3B:C0:D0:93:49
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/33312e3136392e3132312e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.121.0/24
Signature Algorithm: sha256WithRSAEncryption
20:e9:c6:44:79:73:28:cb:2d:6c:f3:35:9a:cd:a5:41:c4:11:
f3:f3:de:67:f8:22:12:8c:bf:60:1d:f0:84:27:5e:0f:93:d5:
80:6d:d2:83:b3:df:82:f6:4b:ff:0d:17:df:e0:1b:d9:92:b6:
1a:d6:17:ce:e5:18:c1:32:7e:c2:19:2d:74:ce:85:3f:ab:95:
ef:30:98:dd:8b:a7:74:ea:ba:ef:a6:9b:1e:14:ed:48:7a:b5:
c9:aa:6f:e1:e6:33:65:b7:4e:95:28:50:96:cc:7a:db:28:9a:
f2:ea:b6:af:ed:8a:e6:ec:b4:d9:5c:04:23:b0:7c:70:fe:c3:
af:4c:c6:83:7a:c0:15:ac:73:d7:e2:8b:d3:24:dd:61:b6:15:
e4:1d:6e:68:1d:26:ae:0f:1f:72:4b:ad:94:0a:03:a4:7a:54:
b6:7f:46:0f:36:7d:b9:98:e6:e6:17:05:a8:ad:3f:d1:94:8b:
f8:37:39:c2:dd:dc:8f:95:8d:b7:d1:29:ad:05:07:30:0b:d9:
28:21:71:ab:60:d4:ab:30:3c:0c:e7:7b:26:d9:83:85:10:43:
ed:7c:17:a1:d0:fb:f2:32:ac:57:74:58:fc:ab:c0:70:cb:0f:
e7:40:ee:06:32:63:5c:03:78:68:83:7c:f8:88:ee:34:4b:e7:
c6:7d:e4:e1
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUIpYTk55bLMAVP+RUuP2SiDRmg6QwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTJjMmE4MzU0Njg5YWVjMmE3NGZjYTE0OTQ0OTI3NjIx
YmEyN2M5NDAeFw0yNDA3MzAxMzU5MjhaFw0yNTA3MjkxNDA0MjhaMDMxMTAvBgNV
BAMTKDY0REY2QTc2ODVEOTlCQkVGMTU1RDkwMDFGMjA1QTNCQzBEMDkzNDkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnHODx0bOyF28PecnETCqX3J76
E5Dgs56dukHFENCTzLByZWeDXElvhr9UnqCIOVwp/uje+3yyH8wjzdwnPd4kTec9
d2b7TeB0fuKJaADd6p2QVIpynXBqAEBIVc34+neCab2ibicFQx0KB6UT6ftKON/p
TInc6x6vCBxJKdGkUEjc/og4QLBHkIHbClwTCQ7hKgnONimeDPADZ39V5iLDKcVX
0YF586kluaKqz7aM37ORv9wfnongVl5jGCgiFGfDPPMji6U97Nl04qUWIHuz2n9I
KdjATfYxMflI9rskYoUsAd8wkPXBWKkYP7Rcvo32kR26PasiKCM2w+ymw5UBAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUZN9qdoXZm77xVdkAHyBaO8DQk0kwHwYDVR0j
BBgwFoAUEsKoNUaJrsKnT8oUlEknYhuifJQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzcvMTJDMkE4MzU0Njg5QUVDMkE3NEZDQTE0OTQ0OTI3NjIxQkEyN0M5NC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0VzS29OVWFKcnNLblQ4b1VsRWtuWWh1
aWZKUS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzcvMzMzMTJlMzEzNjM5MmUzMTMy
MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzkzODM1MzQucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAAfqXkwDQYJKoZIhvcNAQELBQADggEBACDpxkR5cyjLLWzzNZrNpUHEEfPz3mf4
IhKMv2Ad8IQnXg+T1YBt0oOz34L2S/8NF9/gG9mSthrWF87lGMEyfsIZLXTOhT+r
le8wmN2Lp3Tquu+mmx4U7Uh6tcmqb+HmM2W3TpUoUJbMetsomvLqtq/tiubstNlc
BCOwfHD+w69MxoN6wBWsc9fii9Mk3WG2FeQdbmgdJq4PH3JLrZQKA6R6VLZ/Rg82
fbmY5uYXBaitP9GUi/g3OcLd3I+VjbfRKa0FBzAL2Sghcatg1KswPAzneybZg4UQ
Q+18F6HQ+/IyrFd0WPyrwHDLD+dA7gYyY1wDeGiDfPiI7jRL58Z95OE=
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org