Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e31332e3233332e302f32342d3234203d3e20313336373837.roa
File: 34352e31332e3233332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: BT322EIKmfhlhQKph/1RqHOWRS8SKQkx1w82PusNQU0=
Subject key identifier: D5:7B:0E:48:72:E3:1E:7A:11:99:A4:B8:18:C9:EF:3A:8B:8E:41:B0
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 3A22EA48F5495D4AF25D8604DD257E69D9340556
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e31332e3233332e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 13 Feb 2024 12:54:59 +0000
ROA not before: Tue 13 Feb 2024 12:49:59 +0000
ROA not after: Tue 11 Feb 2025 12:54:59 +0000
asID: 136787
IP address blocks: 45.13.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:57:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:22:ea:48:f5:49:5d:4a:f2:5d:86:04:dd:25:7e:69:d9:34:05:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 13 12:49:59 2024 GMT
Not After : Feb 11 12:54:59 2025 GMT
Subject: CN=D57B0E4872E31E7A1199A4B818C9EF3A8B8E41B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:04:e7:48:ac:c1:70:09:75:d9:46:ad:d8:21:
97:d3:15:be:cb:94:59:f0:19:1a:ef:5e:27:de:fe:
eb:df:6d:1b:41:22:ff:a6:ab:d5:83:ea:ca:fc:fc:
7e:cb:23:b3:59:c6:92:2c:98:10:e4:51:8f:cb:9b:
2b:35:0a:45:66:72:e8:b2:1a:6f:0c:65:72:11:d3:
f6:13:6a:b7:3e:0e:ad:7c:e1:6c:1a:5f:ea:f0:4b:
48:bc:a4:e5:d0:4c:77:36:68:87:f6:98:be:f5:08:
a3:34:19:90:1e:ab:e4:c8:29:4a:2f:5f:33:4f:3b:
84:94:37:c2:2d:47:cb:31:24:90:74:80:f2:f8:c7:
9b:6f:30:0b:fc:61:bf:b3:b9:0f:9b:13:bb:28:36:
6b:04:86:29:3f:ff:7b:00:34:dc:d9:e8:44:91:74:
ce:04:d0:89:93:24:7d:72:fc:f3:3e:3a:43:ff:8c:
9a:60:0e:60:cb:6b:e1:d7:49:60:fc:df:29:b9:d4:
27:da:44:c5:b1:4f:8b:5e:c9:57:95:bb:da:17:b6:
d8:17:5b:63:fa:66:a6:15:7c:bd:50:13:36:dd:66:
ed:7e:fb:8f:89:c2:d7:e0:f2:c1:8d:bb:73:75:cb:
f5:f3:2e:da:62:ee:18:24:b0:13:67:e5:99:1e:23:
b9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:7B:0E:48:72:E3:1E:7A:11:99:A4:B8:18:C9:EF:3A:8B:8E:41:B0
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e31332e3233332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.233.0/24
Signature Algorithm: sha256WithRSAEncryption
73:47:35:75:1b:75:d4:4a:a2:74:ff:96:d3:2d:00:27:81:77:
ea:ec:fe:0a:c5:69:50:e0:a0:bc:5e:1d:42:58:c1:df:9d:85:
2e:f5:18:47:d4:af:59:d4:97:58:22:2e:db:5d:d1:7f:48:f4:
09:2a:39:5a:8a:29:2f:49:08:94:f7:3a:f4:28:09:89:5f:93:
53:2f:92:b6:d2:c2:49:31:35:34:2c:32:28:df:b0:13:23:8c:
bb:96:ab:3c:00:ad:6f:bb:d9:71:68:d9:43:10:90:e3:24:60:
7d:f5:91:cc:48:f8:b6:4a:2d:b5:d4:23:8c:a4:25:35:a9:70:
a2:65:87:b8:fa:11:45:6c:49:f7:7a:69:e4:4c:56:ff:3d:2e:
f3:64:82:a9:68:c4:aa:fb:b3:bf:34:17:06:25:e8:32:aa:65:
eb:36:6b:98:d4:2d:73:84:f1:f1:42:92:5b:eb:3b:5c:9c:c1:
30:1b:19:ca:1d:c0:7a:32:2e:ee:a4:c6:ab:eb:55:5d:65:c6:
bd:7e:4e:00:ab:b2:37:3d:66:84:86:e5:b7:b8:64:c2:23:86:
97:aa:89:1d:a1:90:75:ec:3f:22:35:d3:f8:9a:21:12:3e:3f:
f5:02:a2:33:14:0d:5b:ff:ee:91:c7:1f:8e:8f:67:e3:13:4f:
53:e5:e5:bb
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUOiLqSPVJXUryXYYE3SV+adk0BVYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTJjMmE4MzU0Njg5YWVjMmE3NGZjYTE0OTQ0OTI3NjIx
YmEyN2M5NDAeFw0yNDAyMTMxMjQ5NTlaFw0yNTAyMTExMjU0NTlaMDMxMTAvBgNV
BAMTKEQ1N0IwRTQ4NzJFMzFFN0ExMTk5QTRCODE4QzlFRjNBOEI4RTQxQjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYBOdIrMFwCXXZRq3YIZfTFb7L
lFnwGRrvXife/uvfbRtBIv+mq9WD6sr8/H7LI7NZxpIsmBDkUY/Lmys1CkVmcuiy
Gm8MZXIR0/YTarc+Dq184WwaX+rwS0i8pOXQTHc2aIf2mL71CKM0GZAeq+TIKUov
XzNPO4SUN8ItR8sxJJB0gPL4x5tvMAv8Yb+zuQ+bE7soNmsEhik//3sANNzZ6ESR
dM4E0ImTJH1y/PM+OkP/jJpgDmDLa+HXSWD83ym51CfaRMWxT4teyVeVu9oXttgX
W2P6ZqYVfL1QEzbdZu1++4+Jwtfg8sGNu3N1y/XzLtpi7hgksBNn5ZkeI7lNAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU1XsOSHLjHnoRmaS4GMnvOouOQbAwHwYDVR0j
BBgwFoAUEsKoNUaJrsKnT8oUlEknYhuifJQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzcvMTJDMkE4MzU0Njg5QUVDMkE3NEZDQTE0OTQ0OTI3NjIxQkEyN0M5NC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0VzS29OVWFKcnNLblQ4b1VsRWtuWWh1
aWZKUS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzcvMzQzNTJlMzEzMzJlMzIzMzMz
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
LQ3pMA0GCSqGSIb3DQEBCwUAA4IBAQBzRzV1G3XUSqJ0/5bTLQAngXfq7P4KxWlQ
4KC8Xh1CWMHfnYUu9RhH1K9Z1JdYIi7bXdF/SPQJKjlaiikvSQiU9zr0KAmJX5NT
L5K20sJJMTU0LDIo37ATI4y7lqs8AK1vu9lxaNlDEJDjJGB99ZHMSPi2Si211COM
pCU1qXCiZYe4+hFFbEn3emnkTFb/PS7zZIKpaMSq+7O/NBcGJegyqmXrNmuY1C1z
hPHxQpJb6ztcnMEwGxnKHcB6Mi7upMar61VdZca9fk4Aq7I3PWaEhuW3uGTCI4aX
qokdoZB17D8iNdP4miESPj/1AqIzFA1b/+6Rxx+Oj2fjE09T5eW7
-----END CERTIFICATE-----
Generated at Mon Nov 25 17:14:45 2024 by rpki-client on console-ams.rpki-client.org