Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e33302e302f32342d3234203d3e203631333137.roa
File: 34362e3138332e33302e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: 8R595puKJ0M4M5VLU1I4/6SdoVkcdzW3Y7T3hy1EG7c=
Subject key identifier: 9E:69:F4:EA:2F:70:CB:78:74:55:FA:5D:78:C5:E4:1A:15:3E:66:49
Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Certificate serial: 60ECFFD6001818D0C87E6F07C75B12CF7FA6FEE8
Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e33302e302f32342d3234203d3e203631333137.roa
Signing time: Tue 01 Aug 2023 14:00:30 +0000
ROA not before: Tue 01 Aug 2023 13:55:30 +0000
ROA not after: Tue 30 Jul 2024 14:00:30 +0000
asID: 61317
IP address blocks: 46.183.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:ec:ff:d6:00:18:18:d0:c8:7e:6f:07:c7:5b:12:cf:7f:a6:fe:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Validity
Not Before: Aug 1 13:55:30 2023 GMT
Not After : Jul 30 14:00:30 2024 GMT
Subject: CN=9E69F4EA2F70CB787455FA5D78C5E41A153E6649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:db:7b:11:cf:48:ac:87:f4:ca:e2:be:72:b7:
36:47:54:7a:85:ac:1f:f8:95:03:e3:05:d9:88:cb:
ce:f3:eb:b5:e4:a9:10:52:eb:22:43:d7:c3:c9:85:
29:3c:f4:9d:3c:06:8c:1d:95:4e:e0:40:c9:ea:5f:
b1:af:4c:dd:57:64:f8:3e:34:d9:ff:1e:cf:9f:8e:
c9:f1:9c:b0:63:3e:b1:35:40:f3:5c:ee:6d:c9:01:
31:d9:6b:96:0b:f8:4d:53:ab:4e:53:83:b4:58:d4:
14:42:8b:aa:d9:0e:c9:2e:ce:4f:2b:c9:ba:67:90:
b3:70:23:37:76:fa:1a:22:bc:ba:84:f2:b4:2a:56:
ca:f7:03:d4:cb:97:67:54:ac:a6:6c:74:a5:c3:d8:
a2:86:e9:31:69:93:d9:00:15:e3:23:a3:b3:38:0d:
ea:57:2c:24:91:5c:38:2d:61:9f:e6:94:30:74:7c:
e5:cd:43:59:5a:a4:a1:76:c3:70:ff:a7:4e:ec:1d:
69:b6:34:e6:9b:f3:bf:5a:f0:6d:d9:67:16:7e:cf:
71:56:07:5d:98:4a:fb:a8:33:6e:ed:de:30:c8:12:
d4:49:8e:30:61:43:ba:8a:0c:40:7b:d1:8f:81:31:
cd:09:94:7c:fb:d6:aa:c4:19:62:ea:4b:31:df:13:
3e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:69:F4:EA:2F:70:CB:78:74:55:FA:5D:78:C5:E4:1A:15:3E:66:49
X509v3 Authority Key Identifier:
keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e33302e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.30.0/24
Signature Algorithm: sha256WithRSAEncryption
29:92:14:fd:7f:16:6a:98:8a:d0:2b:19:f8:2b:8c:1e:d6:29:
b0:0c:f8:6c:f4:b7:12:5e:28:09:64:e1:fb:e6:a3:5c:03:48:
8f:a9:5d:8e:60:bd:04:a4:72:ce:94:a2:8b:80:d7:ed:8f:ab:
07:50:56:bb:bd:62:1e:f6:27:d8:ac:cd:c9:4a:8f:bd:21:3e:
b1:33:c6:a3:1d:74:28:a1:87:6d:2d:df:ac:6c:69:9f:4c:e3:
82:d1:04:a3:3f:73:9f:ce:c0:50:e5:db:83:59:a0:7a:c6:64:
34:7f:5c:8d:a2:5f:ca:12:ce:54:63:50:81:7f:7e:33:17:1f:
28:af:79:3e:39:ac:e5:ea:dc:64:48:0f:47:99:19:a2:a1:63:
69:31:0a:0a:26:90:44:59:dd:98:8b:61:47:3d:f2:9c:3e:61:
24:49:d6:fe:c9:2a:a3:18:e8:db:d8:09:e0:63:e2:70:9f:4f:
90:81:3b:b6:99:5d:b8:53:ac:98:16:27:ee:97:71:5c:3a:03:
10:80:3f:e5:01:0d:d5:53:3f:6b:ce:f0:f7:ff:a6:4d:61:fc:
37:b7:e1:76:c8:f4:32:19:b9:f1:4b:b8:e7:ac:4c:53:c3:49:
b9:02:d5:77:6a:c5:25:ef:a9:60:73:c4:2e:d4:9d:45:0b:06:
a8:88:3b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 07:53:12 2024 by rpki-client on console-fra.rpki-client.org