Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3134312e32332e302f32342d3234203d3e20313336373837.roa
File: 34352e3134312e32332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: Bf5XVgjFa4ASdQ9PvwU6t4wAACJYnVEnheRfIdpPfa4=
Subject key identifier: 7D:03:9B:7F:E0:A1:2D:1D:4A:FC:D2:87:E9:87:2E:34:28:54:AD:FA
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 7FC55074908FF9A45A57623B3332C5CDD7CA037C
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3134312e32332e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 26 Feb 2024 08:53:37 +0000
ROA not before: Mon 26 Feb 2024 08:48:37 +0000
ROA not after: Mon 24 Feb 2025 08:53:37 +0000
asID: 136787
IP address blocks: 45.141.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:c5:50:74:90:8f:f9:a4:5a:57:62:3b:33:32:c5:cd:d7:ca:03:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 26 08:48:37 2024 GMT
Not After : Feb 24 08:53:37 2025 GMT
Subject: CN=7D039B7FE0A12D1D4AFCD287E9872E342854ADFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9f:00:3e:15:1d:2f:9d:26:12:39:3c:b7:40:
44:33:ed:14:09:ee:6f:51:21:ce:8d:78:ae:ad:82:
27:73:6d:a5:e4:48:eb:e8:34:1f:e7:f3:b1:2d:61:
69:7b:fd:e0:05:9b:5d:b6:ea:1e:44:38:90:2b:ae:
c0:52:35:ef:47:05:79:21:43:d0:8b:d2:c4:98:f6:
70:5a:ff:b0:96:0a:bf:4a:fc:56:6e:34:00:33:f7:
52:fb:86:1b:3b:c7:c9:1b:41:52:02:e8:3f:18:22:
79:0c:cc:b7:a9:f3:5d:d8:32:fb:a6:d7:73:82:e7:
a7:f4:8a:90:87:7c:ee:e3:2b:7b:7b:72:8d:28:ed:
32:12:4d:61:d4:47:18:e9:1d:4f:7d:25:9e:ec:53:
7f:6e:75:62:b7:81:8d:13:c7:74:e8:fe:ea:c1:41:
63:d1:36:70:d4:9b:5e:a9:70:a6:47:ad:ca:f3:ed:
5e:c0:dc:d0:54:68:8b:21:ee:f1:62:08:43:21:15:
5c:f6:6b:21:ee:7f:9d:ee:51:ba:3a:8b:ae:42:03:
1b:23:ca:9d:60:1d:6a:a5:d7:88:35:d4:4e:07:9a:
14:12:39:f9:d8:c4:38:8b:d8:b5:4d:68:c6:80:29:
15:1d:c4:4c:27:bf:73:b6:bf:e5:bb:92:a8:98:1b:
5e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:03:9B:7F:E0:A1:2D:1D:4A:FC:D2:87:E9:87:2E:34:28:54:AD:FA
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3134312e32332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.23.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:64:f5:e0:a9:4e:a4:67:72:7d:52:d3:1c:c0:b8:c6:5a:a7:
66:8a:c0:ff:71:47:5d:f3:3c:6a:82:ea:1e:c6:15:4c:d0:06:
c7:6b:5b:eb:9d:c5:a0:21:ea:38:a3:98:1b:17:5b:f4:f0:f3:
5a:89:59:27:64:7c:26:4e:27:08:45:a4:00:f1:2c:4f:a6:7a:
4c:81:2e:0d:85:56:e3:ba:34:da:95:cf:7b:1e:37:30:d7:45:
bc:c6:f0:d8:f1:ce:38:00:5c:88:50:56:e3:4d:88:e4:f0:a5:
dc:d9:8e:b8:58:73:02:6f:89:91:0c:88:f6:3b:cf:50:3e:e0:
94:9a:b8:ae:7f:30:d0:f0:75:de:19:7c:5e:65:2e:cf:8f:05:
82:80:01:5a:a4:71:29:3c:40:28:8b:92:92:fa:3f:d8:24:19:
54:e6:47:03:99:24:ce:1e:e9:5d:3f:5a:b0:7f:87:9d:36:8f:
18:d4:2b:2b:c0:60:f4:56:c6:f5:67:7f:37:d3:0c:97:a4:4b:
0c:e0:ae:b5:0f:bb:63:03:e2:18:96:6e:41:e3:12:50:60:bb:
2a:5e:9b:19:ae:b3:2f:28:0b:22:96:17:4b:4b:87:d6:1e:64:
7f:67:69:14:56:dd:d5:3b:03:ce:ec:07:5c:f0:b0:13:10:b5:
52:11:a0:54
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUf8VQdJCP+aRaV2I7MzLFzdfKA3wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTJjMmE4MzU0Njg5YWVjMmE3NGZjYTE0OTQ0OTI3NjIx
YmEyN2M5NDAeFw0yNDAyMjYwODQ4MzdaFw0yNTAyMjQwODUzMzdaMDMxMTAvBgNV
BAMTKDdEMDM5QjdGRTBBMTJEMUQ0QUZDRDI4N0U5ODcyRTM0Mjg1NEFERkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtnwA+FR0vnSYSOTy3QEQz7RQJ
7m9RIc6NeK6tgidzbaXkSOvoNB/n87EtYWl7/eAFm1226h5EOJArrsBSNe9HBXkh
Q9CL0sSY9nBa/7CWCr9K/FZuNAAz91L7hhs7x8kbQVIC6D8YInkMzLep813YMvum
13OC56f0ipCHfO7jK3t7co0o7TISTWHURxjpHU99JZ7sU39udWK3gY0Tx3To/urB
QWPRNnDUm16pcKZHrcrz7V7A3NBUaIsh7vFiCEMhFVz2ayHuf53uUbo6i65CAxsj
yp1gHWql14g11E4HmhQSOfnYxDiL2LVNaMaAKRUdxEwnv3O2v+W7kqiYG17jAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUfQObf+ChLR1K/NKH6YcuNChUrfowHwYDVR0j
BBgwFoAUEsKoNUaJrsKnT8oUlEknYhuifJQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzcvMTJDMkE4MzU0Njg5QUVDMkE3NEZDQTE0OTQ0OTI3NjIxQkEyN0M5NC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0VzS29OVWFKcnNLblQ4b1VsRWtuWWh1
aWZKUS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzcvMzQzNTJlMzEzNDMxMmUzMjMz
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
LY0XMA0GCSqGSIb3DQEBCwUAA4IBAQCOZPXgqU6kZ3J9UtMcwLjGWqdmisD/cUdd
8zxqguoexhVM0AbHa1vrncWgIeo4o5gbF1v08PNaiVknZHwmTicIRaQA8SxPpnpM
gS4NhVbjujTalc97Hjcw10W8xvDY8c44AFyIUFbjTYjk8KXc2Y64WHMCb4mRDIj2
O89QPuCUmriufzDQ8HXeGXxeZS7PjwWCgAFapHEpPEAoi5KS+j/YJBlU5kcDmSTO
HuldP1qwf4edNo8Y1CsrwGD0Vsb1Z3830wyXpEsM4K61D7tjA+IYlm5B4xJQYLsq
XpsZrrMvKAsilhdLS4fWHmR/Z2kUVt3VOwPO7Adc8LATELVSEaBU
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org