Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32392e302f32342d3234203d3e203631333137.roa
File: 34362e3138332e32392e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: OolOIvkaB9Md8NHNINguq6Wo683/C1eDnvTqeTT3Vi8=
Subject key identifier: 94:33:58:DF:CB:C3:90:40:FD:9E:19:88:40:0B:2E:3C:6C:C9:12:ED
Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Certificate serial: 093597C9C6F3187F0456E4C58104057E3D102770
Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32392e302f32342d3234203d3e203631333137.roa
Signing time: Sat 07 Oct 2023 15:39:49 +0000
ROA not before: Sat 07 Oct 2023 15:34:49 +0000
ROA not after: Sat 05 Oct 2024 15:39:49 +0000
asID: 61317
IP address blocks: 46.183.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:35:97:c9:c6:f3:18:7f:04:56:e4:c5:81:04:05:7e:3d:10:27:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Validity
Not Before: Oct 7 15:34:49 2023 GMT
Not After : Oct 5 15:39:49 2024 GMT
Subject: CN=943358DFCBC39040FD9E1988400B2E3C6CC912ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:aa:13:1c:08:b7:7f:5d:77:b9:c9:7b:d4:2d:
58:76:2c:3e:81:6e:1b:2b:23:b5:d2:55:48:9f:83:
16:5b:f2:15:e8:b9:45:71:5e:63:ef:ba:1d:e6:3f:
57:5b:70:7d:b0:fb:ae:fc:2c:f0:f6:0e:03:a5:b0:
eb:60:65:52:ba:e1:01:15:76:73:cf:ae:cd:ef:79:
25:b8:a7:30:cc:bb:44:05:62:0c:ff:8a:c5:fc:03:
cc:58:be:a8:44:23:d7:8f:17:eb:a5:84:82:06:15:
1e:83:7e:7a:28:92:d6:2c:7d:d8:9c:81:9b:42:be:
c8:21:72:d2:15:dc:71:82:d0:af:91:a7:b3:42:a9:
bc:96:9b:11:aa:59:aa:c9:0a:bf:d3:35:e2:52:91:
69:19:2c:12:2e:01:01:39:d0:96:3e:20:df:ea:05:
b9:ec:4d:10:25:e1:1b:64:e6:a6:5d:59:0e:f6:97:
c6:38:7a:03:e9:dd:62:e7:cc:69:b1:6f:e8:62:f8:
31:68:50:6f:c7:f4:1f:3e:b1:b6:35:c3:92:71:e0:
cf:34:fe:87:41:cd:c3:40:95:ab:0b:c6:d7:59:24:
ec:58:ff:f4:0e:43:5b:6c:fb:66:86:fd:45:ea:e1:
b5:2b:a9:bc:3f:5c:52:bb:9f:06:79:03:a1:ab:ea:
79:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:33:58:DF:CB:C3:90:40:FD:9E:19:88:40:0B:2E:3C:6C:C9:12:ED
X509v3 Authority Key Identifier:
keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32392e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.29.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:21:b3:e9:7e:12:04:ef:7b:be:21:30:ed:83:21:21:90:ec:
ec:8f:ad:c6:66:97:2d:c3:d0:19:df:af:0e:97:ef:19:50:6a:
dd:a1:59:05:ee:ee:75:30:bc:1a:3d:65:42:f1:ea:87:97:95:
88:be:22:66:c9:f0:5a:97:09:2f:34:1f:c3:69:a5:63:9a:19:
3f:1d:10:e5:98:03:74:d1:09:56:10:d6:73:17:6f:0d:d1:85:
b4:8a:fa:57:45:2a:73:45:f9:f7:ca:f8:12:75:58:25:6b:da:
f3:21:47:cd:b5:35:f8:3c:5e:71:eb:26:8c:55:51:0e:22:7e:
d9:c5:99:ca:2a:18:e1:bd:60:69:53:ab:1f:53:0c:bc:d5:44:
7b:97:97:b1:3b:41:a1:cf:e6:73:db:04:de:2f:66:ff:12:fe:
ed:a2:9c:fa:d4:c9:fe:fd:e5:4c:21:71:fd:a5:eb:6d:24:28:
da:a0:90:13:c4:4b:06:5c:be:03:91:cb:0a:73:f5:ba:9c:27:
13:fa:35:92:27:f3:74:2a:c8:bd:47:0a:ec:ba:2d:a0:8e:69:
f0:af:03:31:10:52:8f:40:ed:41:29:0f:cd:fb:67:90:9f:4b:
31:b6:bf:5f:ee:af:e7:36:06:d1:d3:e9:d4:c4:ba:6b:af:f6:
11:78:6b:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 17:13:59 2024 by rpki-client on console-fra.rpki-client.org