Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134332e302f32342d3234203d3e203232373831.roa
File: 34352e3134382e3134332e302f32342d3234203d3e203232373831.roa (raw, json)
Hash identifier: K73uouDyg/zkMi0k7v03Ir/De/zEUXH6l4DpZOC9tQQ=
Subject key identifier: 1B:AE:01:3B:D5:97:FC:98:9C:42:C4:AA:EC:98:A0:93:5C:A8:93:AC
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 6BF99B669F337F5250CCECE9B7E2A77808447DCB
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134332e302f32342d3234203d3e203232373831.roa
Signing time: Wed 27 Dec 2023 23:37:55 +0000
ROA not before: Wed 27 Dec 2023 23:32:55 +0000
ROA not after: Wed 25 Dec 2024 23:37:55 +0000
asID: 22781
IP address blocks: 45.148.143.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 16:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:f9:9b:66:9f:33:7f:52:50:cc:ec:e9:b7:e2:a7:78:08:44:7d:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Dec 27 23:32:55 2023 GMT
Not After : Dec 25 23:37:55 2024 GMT
Subject: CN=1BAE013BD597FC989C42C4AAEC98A0935CA893AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a1:2f:7e:18:04:47:6d:66:c1:fd:a4:e1:a5:
a7:a8:20:47:00:1a:b8:7a:04:6d:57:48:58:e8:3b:
e2:5f:ce:9c:cc:9e:26:1a:fd:ac:de:7f:55:de:88:
c4:bc:74:e4:70:66:4c:29:20:49:c2:20:82:fd:a2:
d0:8b:51:61:50:b9:ef:08:8f:a9:56:78:4f:5c:38:
ff:17:ab:3c:1d:55:26:29:74:16:40:c9:d7:d6:fb:
66:7b:49:1d:1f:04:28:22:9d:bc:07:e1:09:a6:6e:
fe:4b:0f:36:f8:53:89:90:1b:2a:c1:17:fa:6c:93:
ee:ee:89:c4:db:97:f7:14:8f:57:6f:e0:a1:28:1d:
97:d6:f0:ad:97:ac:0b:91:a7:dd:5b:ce:d1:f7:51:
11:a4:31:0a:bf:c2:38:af:35:2c:3d:7b:1a:55:16:
0d:46:d8:42:a6:6f:71:b5:ff:42:4d:77:ef:e1:2e:
e9:77:96:a6:6d:65:2b:b1:4e:38:85:1d:3a:60:82:
4c:64:5e:86:f9:f5:8e:75:aa:39:10:56:90:a0:48:
08:aa:e1:b5:b5:40:d2:99:12:da:5a:9d:b2:7b:5c:
55:9e:19:73:20:08:ac:57:ad:7f:68:20:87:93:82:
2b:1c:14:1d:ff:d1:70:d4:15:f1:93:46:fb:68:8e:
97:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:AE:01:3B:D5:97:FC:98:9C:42:C4:AA:EC:98:A0:93:5C:A8:93:AC
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134332e302f32342d3234203d3e203232373831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.143.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:8a:0e:d9:27:84:78:7b:74:bb:d7:bd:ad:cd:cc:fa:58:d8:
fb:29:e0:95:1b:19:e7:5d:2e:cf:59:6b:ad:7b:8c:cb:f1:b1:
8b:85:27:6b:a1:5f:9c:93:da:b3:00:df:27:01:a3:4d:f6:58:
f7:1d:10:80:ae:71:0b:87:cf:f9:53:fa:d0:cc:50:83:2d:0e:
d7:e7:65:de:b1:36:19:eb:92:09:c1:9b:8e:b4:c0:70:1d:6a:
b2:2d:8d:14:76:9d:f0:d1:98:f5:1e:ac:b0:21:42:8e:dd:35:
db:4b:96:6b:40:48:87:ed:c6:13:f3:f4:a4:e8:1d:46:94:c3:
17:04:0d:99:49:02:71:b2:40:48:fb:8a:2e:17:c6:8c:9c:47:
07:f6:80:70:e6:d6:b4:14:e9:29:1d:7e:02:be:be:d1:b4:71:
81:6f:0d:7c:3b:88:56:55:36:4b:ab:1d:94:2a:11:f3:f5:21:
fb:a1:67:98:f9:0f:a4:24:a0:02:01:34:47:b0:90:62:14:f3:
55:3b:b2:6b:14:b5:2a:28:4d:83:38:bf:79:78:34:81:59:f8:
d4:e0:ba:90:36:cc:32:6a:a7:a7:45:6d:bf:b8:b8:7e:aa:59:
0e:45:2f:80:60:b9:0c:4e:0a:fe:c6:79:f8:d0:32:45:77:ce:
60:b7:85:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 20:18:04 2024 by rpki-client on console-ams.rpki-client.org