Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135362e302f32342d3234203d3e20343030303331.roa
File: 34352e3135352e3135362e302f32342d3234203d3e20343030303331.roa (raw, json)
Hash identifier: XMp56M6RFy4JTre/lipmubJdE87CKiIYrwkKzArfDXs=
Subject key identifier: 35:41:53:AE:9E:12:FC:11:97:D9:9B:7A:2F:0A:CD:50:51:32:DD:1A
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 4705EBB3CD72DFBB2603FF14C720D691A2B4C5F7
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135362e302f32342d3234203d3e20343030303331.roa
Signing time: Wed 20 Dec 2023 07:05:08 +0000
ROA not before: Wed 20 Dec 2023 07:00:08 +0000
ROA not after: Wed 18 Dec 2024 07:05:08 +0000
asID: 400031
IP address blocks: 45.155.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 16:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:05:eb:b3:cd:72:df:bb:26:03:ff:14:c7:20:d6:91:a2:b4:c5:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Dec 20 07:00:08 2023 GMT
Not After : Dec 18 07:05:08 2024 GMT
Subject: CN=354153AE9E12FC1197D99B7A2F0ACD505132DD1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3d:e1:fa:a3:5c:46:98:94:e4:70:a3:79:f5:
1b:db:92:f2:e1:58:5b:85:40:f3:76:8f:d4:2e:fe:
62:cd:b3:36:74:72:d8:53:1e:89:3b:db:37:fa:93:
ee:61:26:72:de:2d:28:fe:0b:bd:1f:97:ec:cc:0f:
38:ea:e3:0c:c9:89:e7:04:15:52:df:dd:86:15:c4:
f6:7d:01:00:0c:34:94:45:11:28:07:af:78:d0:b6:
80:b5:88:7c:65:b8:43:25:f7:8c:ef:7f:88:0f:e8:
87:83:db:7a:f7:b2:1c:f6:20:f5:1d:46:57:52:c1:
ff:2c:91:bc:3a:15:5b:df:8c:e5:4a:d1:be:c3:14:
6d:d4:6e:84:55:ef:f9:fb:9a:52:c4:44:18:43:53:
56:d7:08:06:0a:5d:3a:cd:17:4c:97:87:ec:d5:9f:
85:4d:d0:5d:8c:b6:da:cc:70:d7:f4:c5:e1:43:86:
ff:3c:4e:6f:fc:46:13:b2:ef:6e:a4:c2:0a:ed:ec:
d6:71:32:1c:5d:cc:e1:c3:3f:e6:51:57:8f:89:3f:
87:cc:cc:19:94:e2:11:bc:7c:89:eb:50:f3:ff:f9:
c4:d3:51:2a:2a:07:2a:f5:e1:40:b1:f4:89:87:27:
b0:08:e5:7e:f4:d6:df:fa:f8:bc:14:da:82:29:5e:
b8:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:41:53:AE:9E:12:FC:11:97:D9:9B:7A:2F:0A:CD:50:51:32:DD:1A
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135362e302f32342d3234203d3e20343030303331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.156.0/24
Signature Algorithm: sha256WithRSAEncryption
34:d0:32:c9:67:c7:87:d2:6e:de:1c:99:03:a9:16:a7:e8:01:
2f:34:68:d9:cc:ac:49:57:47:6d:91:9b:a8:55:77:67:22:ce:
e0:ee:2e:c6:09:da:cc:1f:ed:bf:4a:05:70:86:20:c7:57:47:
db:7e:82:87:ea:9b:ce:a7:13:6b:48:a4:9f:5d:f8:fa:7c:99:
f3:53:d8:e0:dc:96:eb:f3:f5:20:dc:28:15:82:f2:e7:10:23:
ac:9f:c3:ef:d8:2a:00:1d:d0:da:14:50:e2:06:ac:01:e6:0b:
2b:76:82:80:36:26:b3:f3:39:7c:1f:72:87:2c:33:7b:d7:14:
13:54:3b:25:87:a2:2b:d7:a1:da:c5:dc:6f:3a:44:ac:04:5a:
5f:7f:03:38:01:03:02:ba:15:49:42:21:c7:57:09:2e:53:d0:
68:c7:91:b4:d2:6f:0d:47:06:42:ef:a4:b1:2f:e1:8b:cc:b9:
4b:c7:11:2b:7a:d9:83:8a:2f:05:93:72:cc:f1:23:c6:2d:a6:
1a:6c:cb:f9:36:cc:8f:f3:54:39:1f:35:d7:61:61:0f:37:66:
03:0d:27:1d:33:15:f3:48:a9:7d:6d:df:af:95:ed:9d:8a:ae:
53:08:47:47:98:30:f1:25:d4:a9:75:69:4f:b2:de:b5:14:e1:
10:00:b2:1d
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIURwXrs81y37smA/8UxyDWkaK0xfcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjJmYmQyY2MwMDEyZmIyZjg2ZGI0MGI1ODliZDFhYzRl
OTczMjY2ZDAeFw0yMzEyMjAwNzAwMDhaFw0yNDEyMTgwNzA1MDhaMDMxMTAvBgNV
BAMTKDM1NDE1M0FFOUUxMkZDMTE5N0Q5OUI3QTJGMEFDRDUwNTEzMkREMUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtPeH6o1xGmJTkcKN59RvbkvLh
WFuFQPN2j9Qu/mLNszZ0cthTHok72zf6k+5hJnLeLSj+C70fl+zMDzjq4wzJiecE
FVLf3YYVxPZ9AQAMNJRFESgHr3jQtoC1iHxluEMl94zvf4gP6IeD23r3shz2IPUd
RldSwf8skbw6FVvfjOVK0b7DFG3UboRV7/n7mlLERBhDU1bXCAYKXTrNF0yXh+zV
n4VN0F2MttrMcNf0xeFDhv88Tm/8RhOy726kwgrt7NZxMhxdzOHDP+ZRV4+JP4fM
zBmU4hG8fInrUPP/+cTTUSoqByr14UCx9ImHJ7AI5X701t/6+LwU2oIpXrg9AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUNUFTrp4S/BGX2Zt6LwrNUFEy3RowHwYDVR0j
BBgwFoAUYvvSzAAS+y+G20C1ib0axOlzJm0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNDZiOTNkZjAtYWM4ZC00ZGE4LWFmYjgtZGNiN2YyODg4
MzYyLzAvNjJGQkQyQ0MwMDEyRkIyRjg2REI0MEI1ODlCRDFBQzRFOTczMjY2RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1l2dlN6QUFTLXktRzIwQzFpYjBheE9s
ekptMC5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNDZiOTNkZjAt
YWM4ZC00ZGE4LWFmYjgtZGNiN2YyODg4MzYyLzAvMzQzNTJlMzEzNTM1MmUzMTM1
MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDMwMzAzMDMzMzEucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAAtm5wwDQYJKoZIhvcNAQELBQADggEBADTQMslnx4fSbt4cmQOpFqfoAS80aNnM
rElXR22Rm6hVd2cizuDuLsYJ2swf7b9KBXCGIMdXR9t+gofqm86nE2tIpJ9d+Pp8
mfNT2ODcluvz9SDcKBWC8ucQI6yfw+/YKgAd0NoUUOIGrAHmCyt2goA2JrPzOXwf
cocsM3vXFBNUOyWHoivXodrF3G86RKwEWl9/AzgBAwK6FUlCIcdXCS5T0GjHkbTS
bw1HBkLvpLEv4YvMuUvHESt62YOKLwWTcszxI8Ytphpsy/k2zI/zVDkfNddhYQ83
ZgMNJx0zFfNIqX1t36+V7Z2KrlMIR0eYMPEl1Kl1aU+y3rUU4RAAsh0=
-----END CERTIFICATE-----
Generated at Mon May 20 20:09:36 2024 by rpki-client on console-fra.rpki-client.org