Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39322e3131382e36332e302f32342d3234203d3e20313336373837.roa
File: 39322e3131382e36332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 2NbAW6CeYnH4dMNUoNkG65LvqMl+nCe1uPxU2rhWmsE=
Subject key identifier: B2:21:BE:F6:23:0C:B1:5E:A4:A6:87:4A:4A:51:BE:6E:FA:B9:0B:48
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 2B0E893AE9C1323E9F066DE5C9EA242694753F64
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39322e3131382e36332e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 19 Jun 2023 16:34:27 +0000
ROA not before: Mon 19 Jun 2023 16:29:27 +0000
ROA not after: Mon 17 Jun 2024 16:34:27 +0000
asID: 136787
IP address blocks: 92.118.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:0e:89:3a:e9:c1:32:3e:9f:06:6d:e5:c9:ea:24:26:94:75:3f:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Jun 19 16:29:27 2023 GMT
Not After : Jun 17 16:34:27 2024 GMT
Subject: CN=B221BEF6230CB15EA4A6874A4A51BE6EFAB90B48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f1:84:9c:a5:fc:f9:07:f1:ad:78:64:a5:5b:
cb:1e:38:2d:41:03:91:43:37:6e:f6:7e:81:73:08:
c9:21:4d:84:fc:85:c3:60:37:7e:17:04:1d:9a:99:
ca:69:5d:0c:7f:47:39:06:6a:18:d7:8f:21:e2:4b:
52:13:9e:99:d7:c2:47:7a:b2:55:80:6a:93:6c:16:
aa:23:4a:40:c5:ff:a1:7f:cb:86:a1:85:93:ed:c7:
c5:65:0a:f3:64:a0:83:13:1c:e1:83:26:2b:e5:89:
5d:c6:ee:6d:a9:6b:ab:ba:65:2c:23:c6:3a:22:4e:
07:46:e1:f9:2f:db:15:5f:04:93:8a:cd:bd:69:c3:
cb:e1:10:8d:45:6f:17:5a:2f:0e:2a:fa:54:2e:5d:
f0:55:45:86:f1:44:af:c3:22:f8:b5:cf:9c:b8:c1:
e8:f4:f3:f5:62:df:0f:00:b0:20:47:fe:95:79:63:
48:d8:39:b5:a7:be:b0:fc:bb:a6:d0:89:e1:96:db:
f7:b0:4d:65:a1:9f:97:81:22:4d:a6:32:3b:35:76:
97:6e:28:e2:c6:5c:3f:b0:34:89:cd:2e:3d:df:39:
f2:1c:72:f9:43:c2:08:15:4f:40:4e:6a:51:49:bb:
46:90:06:dc:17:97:31:7a:b8:36:90:a2:02:70:f0:
d5:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:21:BE:F6:23:0C:B1:5E:A4:A6:87:4A:4A:51:BE:6E:FA:B9:0B:48
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39322e3131382e36332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.63.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:5b:f6:6f:41:5c:71:e2:1f:8f:14:8c:53:e0:b7:76:88:56:
41:0c:5b:cf:95:3c:b3:8d:94:77:21:bd:17:61:20:5f:a8:9a:
ad:3b:ac:be:e1:0f:81:f9:99:c7:a2:4f:6a:9e:23:2b:06:2c:
a9:87:10:4c:55:8a:78:fc:fd:3a:81:bf:f3:d4:85:01:ab:04:
1b:f4:b7:dc:1e:aa:14:3d:0d:fd:5d:37:73:13:38:fe:65:41:
2d:47:2d:97:4b:a9:95:b1:36:8a:80:66:15:aa:05:ca:1c:25:
4e:28:d3:50:32:e7:c9:f1:65:3d:2a:8f:4d:28:45:b2:74:cd:
9d:9d:a6:bd:55:24:5f:ce:71:e0:e2:ed:2c:5b:49:6d:b7:f6:
b2:af:74:89:94:42:b7:e5:eb:23:fc:6b:01:ce:33:77:29:37:
77:a5:44:f0:fc:68:a1:68:2c:5d:e8:87:6f:72:d0:a1:ed:f0:
55:2c:99:51:70:bd:23:a5:50:1b:e1:b4:4f:6d:91:0f:0c:7e:
1f:2c:da:c5:7c:7e:73:c4:2c:cd:0d:8a:3a:53:68:2d:7b:82:
96:35:b6:83:69:cf:7d:e0:e5:29:b8:68:ec:0f:d0:18:07:c7:
dd:43:c5:2a:86:80:16:92:f1:e0:1e:52:a8:3b:6a:24:e8:53:
6c:98:02:78
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUKw6JOunBMj6fBm3lyeokJpR1P2QwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTJjMmE4MzU0Njg5YWVjMmE3NGZjYTE0OTQ0OTI3NjIx
YmEyN2M5NDAeFw0yMzA2MTkxNjI5MjdaFw0yNDA2MTcxNjM0MjdaMDMxMTAvBgNV
BAMTKEIyMjFCRUY2MjMwQ0IxNUVBNEE2ODc0QTRBNTFCRTZFRkFCOTBCNDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX8YScpfz5B/GteGSlW8seOC1B
A5FDN272foFzCMkhTYT8hcNgN34XBB2amcppXQx/RzkGahjXjyHiS1ITnpnXwkd6
slWAapNsFqojSkDF/6F/y4ahhZPtx8VlCvNkoIMTHOGDJivliV3G7m2pa6u6ZSwj
xjoiTgdG4fkv2xVfBJOKzb1pw8vhEI1FbxdaLw4q+lQuXfBVRYbxRK/DIvi1z5y4
wej08/Vi3w8AsCBH/pV5Y0jYObWnvrD8u6bQieGW2/ewTWWhn5eBIk2mMjs1dpdu
KOLGXD+wNInNLj3fOfIccvlDwggVT0BOalFJu0aQBtwXlzF6uDaQogJw8NU5AgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUsiG+9iMMsV6kpodKSlG+bvq5C0gwHwYDVR0j
BBgwFoAUEsKoNUaJrsKnT8oUlEknYhuifJQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzcvMTJDMkE4MzU0Njg5QUVDMkE3NEZDQTE0OTQ0OTI3NjIxQkEyN0M5NC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0VzS29OVWFKcnNLblQ4b1VsRWtuWWh1
aWZKUS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzcvMzkzMjJlMzEzMTM4MmUzNjMz
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzMzM2MzczODM3LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
XHY/MA0GCSqGSIb3DQEBCwUAA4IBAQALW/ZvQVxx4h+PFIxT4Ld2iFZBDFvPlTyz
jZR3Ib0XYSBfqJqtO6y+4Q+B+ZnHok9qniMrBiyphxBMVYp4/P06gb/z1IUBqwQb
9LfcHqoUPQ39XTdzEzj+ZUEtRy2XS6mVsTaKgGYVqgXKHCVOKNNQMufJ8WU9Ko9N
KEWydM2dnaa9VSRfznHg4u0sW0ltt/ayr3SJlEK35esj/GsBzjN3KTd3pUTw/Gih
aCxd6IdvctCh7fBVLJlRcL0jpVAb4bRPbZEPDH4fLNrFfH5zxCzNDYo6U2gte4KW
NbaDac994OUpuGjsD9AYB8fdQ8UqhoAWkvHgHlKoO2ok6FNsmAJ4
-----END CERTIFICATE-----
Generated at Wed May 8 19:21:54 2024 by rpki-client on console-ams.rpki-client.org