Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135372e302f32342d3234203d3e20343030303331.roa
File: 34352e3135352e3135372e302f32342d3234203d3e20343030303331.roa (raw, json)
Hash identifier: /eGfYbWTss2FnAnDeRJKi/F1buwwSQWIgbKSoylfRNM=
Subject key identifier: 57:47:AF:7D:16:C4:52:69:AC:B5:90:39:1F:17:0A:FC:E9:FF:BC:51
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 5A6DABB6DB1D5E2034B622DA4216C729E1892BE6
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135372e302f32342d3234203d3e20343030303331.roa
Signing time: Wed 20 Dec 2023 07:05:08 +0000
ROA not before: Wed 20 Dec 2023 07:00:08 +0000
ROA not after: Wed 18 Dec 2024 07:05:08 +0000
asID: 400031
IP address blocks: 45.155.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 16:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:6d:ab:b6:db:1d:5e:20:34:b6:22:da:42:16:c7:29:e1:89:2b:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Dec 20 07:00:08 2023 GMT
Not After : Dec 18 07:05:08 2024 GMT
Subject: CN=5747AF7D16C45269ACB590391F170AFCE9FFBC51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:44:0f:99:c8:c9:c2:fa:69:bb:38:e4:78:88:
8c:69:8f:3f:e9:25:5e:56:e7:37:9c:3b:47:4d:0c:
d9:5a:9b:5a:24:2b:6c:af:ed:b2:0a:cb:c2:7b:a3:
f7:37:db:be:92:4b:c2:6a:a2:d0:bc:64:f3:86:b2:
e5:5c:98:e5:29:54:b6:6c:95:b9:0d:5d:f4:7d:09:
de:12:50:40:b8:8d:7b:34:b2:9f:dc:97:a5:20:05:
67:8b:13:0b:a9:f0:fe:2d:75:42:55:2b:61:21:d5:
86:4a:38:71:99:35:39:f5:a8:11:ea:a4:a5:2d:8b:
7b:07:1c:4f:ca:d4:56:af:2d:4b:5e:3e:88:69:6e:
33:06:df:f9:51:3c:a6:3f:76:ca:41:ef:4f:af:df:
18:fc:44:36:cd:cb:c3:22:47:d4:90:7e:7a:b3:50:
52:d7:91:4a:c6:7a:69:c6:4b:14:af:40:f5:7a:c3:
17:f1:03:86:c1:fc:c8:67:cc:c2:dd:14:63:89:2e:
a9:bf:5f:75:59:be:61:cb:f3:a0:11:63:55:dc:0d:
a7:ff:e3:33:7d:93:d2:cf:45:7c:66:c2:00:8b:13:
5a:f1:00:69:15:8b:f4:9b:da:69:f5:36:6c:49:6d:
0f:a7:66:f7:b8:9a:36:39:8e:45:15:3d:61:96:8b:
c1:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:47:AF:7D:16:C4:52:69:AC:B5:90:39:1F:17:0A:FC:E9:FF:BC:51
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135372e302f32342d3234203d3e20343030303331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.157.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:1b:52:10:ef:18:5c:cd:33:a9:95:41:56:50:16:6c:1c:b1:
53:4e:11:af:c3:74:ad:cd:72:c2:12:c8:c8:b1:68:3e:2c:d7:
1d:8f:23:ad:3d:46:9f:1c:36:65:82:a0:66:18:89:2f:44:c2:
d1:1f:ac:4c:f7:bf:d8:62:14:c5:bd:3a:35:39:d5:62:41:d4:
f8:0d:72:57:0c:31:ac:f0:50:0e:fd:5c:59:47:82:1f:3c:5e:
3f:cf:9d:40:ea:ab:2b:70:bd:c0:63:30:aa:ca:92:59:76:a6:
e5:4e:bd:a3:d3:95:10:2d:85:0a:3c:1e:20:64:19:89:78:08:
45:af:92:61:9f:77:43:d9:9a:c4:f3:b9:d3:ad:47:65:22:ad:
66:30:c1:6f:97:c9:e8:3c:45:5e:71:5b:ee:b6:4c:1e:89:af:
e5:a3:70:63:de:1e:65:a7:c3:0a:a4:4b:81:df:7a:5a:2e:14:
a9:d7:0e:dd:49:22:a1:b3:ab:4b:66:b8:76:8d:e7:b7:63:53:
3c:c7:ca:73:66:65:3f:f9:20:01:be:da:ae:d9:7b:85:5a:6a:
0a:31:42:82:4f:e5:d4:d5:b8:9d:ed:aa:0f:0f:3f:38:ca:37:
b5:cd:d8:d1:5c:66:de:0b:f0:51:e6:9f:1f:a7:50:c5:f9:65:
40:88:db:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 20:09:36 2024 by rpki-client on console-fra.rpki-client.org