Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134312e302f32342d3234203d3e203530363733.roa
File: 34352e3134382e3134312e302f32342d3234203d3e203530363733.roa (raw, json)
Hash identifier: h6ZEljWDFITTyske/RyPxcU7L5OduhY2PwtRyaePOUQ=
Subject key identifier: E6:D0:50:12:5E:CF:0E:9E:03:7F:BD:02:94:04:1B:00:E3:7C:5C:B2
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 4F7DAB8BEF2A3E6A91B43678CB598D83F1B2F941
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134312e302f32342d3234203d3e203530363733.roa
Signing time: Mon 23 Oct 2023 09:41:42 +0000
ROA not before: Mon 23 Oct 2023 09:36:42 +0000
ROA not after: Mon 21 Oct 2024 09:41:42 +0000
asID: 50673
IP address blocks: 45.148.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 13:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:7d:ab:8b:ef:2a:3e:6a:91:b4:36:78:cb:59:8d:83:f1:b2:f9:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Oct 23 09:36:42 2023 GMT
Not After : Oct 21 09:41:42 2024 GMT
Subject: CN=E6D050125ECF0E9E037FBD0294041B00E37C5CB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:da:69:ba:9e:a4:79:8a:d6:38:84:57:d2:be:
c9:3f:b3:b3:5c:43:60:c5:de:a2:80:86:d0:8b:23:
f7:e7:d6:d2:a5:b3:b6:25:45:fd:ce:a6:74:84:b4:
9a:fb:74:4d:c5:94:31:be:36:1a:9f:90:60:a6:40:
c9:a6:ac:2f:41:f9:2e:27:11:b4:33:cd:47:4a:62:
50:e2:4f:94:e8:55:1c:bf:5e:ac:13:de:8e:0c:22:
f8:65:02:76:82:30:90:e1:2e:5f:72:cb:9d:4e:d1:
59:a9:b8:aa:4c:7a:9e:9d:01:d4:93:ed:0f:0f:53:
85:4c:6a:6f:54:63:27:00:e0:8f:23:8c:70:1a:80:
04:ff:e0:bf:fd:a6:fe:36:12:37:70:a4:9c:11:c4:
2b:75:a0:d1:b0:d6:14:0f:cd:ba:8d:0d:61:da:5b:
25:11:73:9c:af:69:bd:26:b2:83:d1:70:6e:ba:a7:
b4:ae:7c:2e:af:22:5e:69:0e:31:bb:64:38:d1:53:
30:82:a9:63:55:8d:ff:85:9c:15:36:de:81:f7:bf:
f6:76:37:00:5f:2e:92:9a:d0:36:e6:80:00:45:0b:
25:d2:6e:de:fa:cc:f4:ff:90:a0:78:d9:c7:1d:e6:
ea:da:a0:99:7f:d9:6d:f6:27:a9:86:62:76:08:b9:
7a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D0:50:12:5E:CF:0E:9E:03:7F:BD:02:94:04:1B:00:E3:7C:5C:B2
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134312e302f32342d3234203d3e203530363733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.141.0/24
Signature Algorithm: sha256WithRSAEncryption
59:a3:06:df:9f:05:bd:24:17:eb:51:bc:74:1e:25:05:ae:e0:
37:c9:ec:e8:16:de:6d:ec:3b:64:ef:34:9d:22:a3:f1:b0:6d:
c9:bd:84:53:7d:8a:ec:18:13:67:29:a4:bd:61:38:86:74:ca:
a8:44:ae:fa:af:ab:fd:28:24:43:b9:74:30:a7:35:b9:14:a1:
c2:dd:6e:34:64:39:59:7a:92:70:76:a2:30:36:c3:e5:f3:8a:
46:f8:93:25:d3:72:0c:9d:05:59:58:25:60:17:45:4d:09:a3:
6e:de:0b:cd:ff:ce:71:96:df:5d:d9:3e:3b:54:ba:55:47:96:
c9:59:47:9b:54:89:9b:99:c1:b7:e6:d7:2b:f4:44:26:48:aa:
c9:09:5f:04:e4:4e:c5:7a:1e:bc:99:50:42:c3:37:72:f2:fc:
20:e1:d2:f1:1d:70:d3:35:45:d1:3f:90:0c:27:b1:b4:f0:2b:
d6:64:c9:5e:98:03:d2:ea:9b:10:ff:94:65:fa:1d:d6:20:8d:
02:5c:e1:c7:cc:2b:f8:cb:40:07:59:7f:46:13:03:f7:cd:de:
9f:f5:4a:45:00:8d:dc:70:35:a3:94:66:f3:42:df:b5:30:14:
b1:35:f4:44:08:3e:a6:65:2b:ad:67:ee:b3:fe:f2:49:cc:34:
4f:05:c5:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 21:01:38 2024 by rpki-client on console-fra.rpki-client.org