Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa
File: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (raw, json)
Hash identifier: psDfgVVVu3F/vsPke7izdCy7MB6kxmvFZX3Dm2pgz1Q=
Subject key identifier: E9:9B:EA:0F:BA:FF:5A:FE:54:8A:0E:D3:C3:18:A5:94:81:AA:91:C1
Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3
Certificate serial: 61EB4E3FA004C9187CB82DE4E97139D2C8A8EA8E
Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa
Signing time: Mon 13 Nov 2023 07:56:41 +0000
ROA not before: Mon 13 Nov 2023 07:51:41 +0000
ROA not after: Mon 11 Nov 2024 07:56:41 +0000
asID: 216183
IP address blocks: 45.146.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl
rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:eb:4e:3f:a0:04:c9:18:7c:b8:2d:e4:e9:71:39:d2:c8:a8:ea:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3
Validity
Not Before: Nov 13 07:51:41 2023 GMT
Not After : Nov 11 07:56:41 2024 GMT
Subject: CN=E99BEA0FBAFF5AFE548A0ED3C318A59481AA91C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:13:27:f2:12:40:c9:c3:aa:7b:f8:de:78:be:
41:5b:3d:f8:bf:96:22:f7:52:bf:c5:5a:71:fe:9f:
ed:c5:33:3d:d8:16:72:71:91:46:94:0a:2c:74:c8:
3c:d1:ee:ac:0c:09:07:b5:26:30:97:41:fb:38:1e:
e6:12:d4:88:16:c4:21:d0:46:9d:60:43:d0:77:5a:
12:65:af:98:11:d6:68:22:d6:3c:3a:54:61:18:45:
d5:72:08:e4:fa:1e:c7:64:6d:06:f7:24:cf:3d:82:
83:2d:91:0e:87:de:d8:4e:b2:8c:0b:b5:cd:cd:10:
ce:86:a3:b1:95:3b:32:17:bd:76:bd:8c:56:4d:93:
2b:bb:d2:cb:72:f2:fa:23:59:01:1e:af:f0:a0:54:
a7:1a:9b:2c:fc:d0:61:57:a3:1b:28:fd:1a:95:18:
f7:29:56:89:c8:e3:10:d8:87:54:ff:d1:d5:66:7b:
b0:d0:e4:46:36:d0:04:a7:6c:53:ee:eb:c7:f8:78:
7e:d1:74:20:77:43:4d:f1:3c:33:08:01:90:86:22:
19:fa:e0:53:a5:5e:a8:f3:9a:3a:09:62:fd:b7:d5:
b7:67:ff:00:9b:60:9e:7c:c9:83:03:bf:ad:93:ec:
42:f3:ff:a9:84:f3:5c:81:e6:08:40:86:6c:79:f9:
e0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:9B:EA:0F:BA:FF:5A:FE:54:8A:0E:D3:C3:18:A5:94:81:AA:91:C1
X509v3 Authority Key Identifier:
keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.163.0/24
Signature Algorithm: sha256WithRSAEncryption
43:eb:47:7b:37:a9:c8:60:62:12:05:ea:43:d5:79:9d:64:7e:
b6:61:3b:08:4f:c9:8c:56:d4:c3:91:9a:d1:10:ee:7e:9e:0f:
aa:58:9f:72:2d:e3:f4:16:16:79:03:5b:d2:01:93:c4:f1:d0:
f8:50:95:56:2f:1b:76:5f:14:80:70:46:37:67:5d:12:67:38:
85:13:d1:b0:f9:87:c0:4e:d6:d1:47:47:cb:eb:1c:22:16:05:
d1:be:d8:ed:bb:32:79:65:f6:b0:5c:95:0c:8e:6f:4b:e4:f0:
73:b5:a3:ee:e3:40:ba:43:1c:1a:af:84:cb:24:71:05:36:43:
20:2d:61:a6:51:f5:31:23:02:df:4d:19:be:69:ef:16:cc:2b:
8f:51:e4:cf:25:b3:fa:1c:d6:4d:c0:b1:7c:c6:09:81:6e:d7:
a9:d6:fd:32:3a:be:36:cc:26:b7:49:1c:02:2d:71:31:c2:5f:
19:a7:fe:a0:27:e5:52:f8:a6:a6:e5:3c:d0:11:26:c2:38:8b:
0c:14:c0:79:92:66:73:be:1b:95:c4:fb:e7:a2:f4:c4:54:bb:
80:bb:d8:86:89:18:1f:35:c2:9a:e7:41:6c:15:1f:93:2a:15:
d5:02:21:c8:9a:97:0b:b7:c4:c0:88:38:ad:27:0a:c1:85:2d:
66:f4:ea:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 10:34:54 2024 by rpki-client on console-fra.rpki-client.org