Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131382e302f32342d3234203d3e2039303837.roa
File: 34352e36352e3131382e302f32342d3234203d3e2039303837.roa (raw, json)
Hash identifier: UydZMthdTKcUaAuj4vpyvjXh+hs8HMC2Uk2DgaiumTM=
Subject key identifier: 0E:FD:EE:3C:7F:69:4B:16:A4:FA:EF:EF:E4:E8:C1:81:81:C2:7D:38
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 2414F5B5D017D53BD2A345057837A722458DB366
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131382e302f32342d3234203d3e2039303837.roa
Signing time: Mon 23 Oct 2023 09:41:45 +0000
ROA not before: Mon 23 Oct 2023 09:36:45 +0000
ROA not after: Mon 21 Oct 2024 09:41:45 +0000
asID: 9087
IP address blocks: 45.65.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 19:51:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:14:f5:b5:d0:17:d5:3b:d2:a3:45:05:78:37:a7:22:45:8d:b3:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Oct 23 09:36:45 2023 GMT
Not After : Oct 21 09:41:45 2024 GMT
Subject: CN=0EFDEE3C7F694B16A4FAEFEFE4E8C18181C27D38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a5:b3:78:30:1b:f9:b1:f1:a6:01:83:9c:39:
aa:66:21:b7:0a:d9:b3:4e:e2:3f:10:c1:e1:6a:fd:
16:2d:14:61:07:7a:10:9e:49:1b:4c:83:6d:76:4f:
7f:e3:56:c3:d5:fe:0b:9f:33:5a:92:18:44:ab:72:
7c:2c:12:e4:08:b7:d4:df:c3:1d:9b:f4:a9:39:7f:
82:f0:25:aa:34:4a:6f:e7:7f:c2:08:b9:44:51:5d:
2e:07:89:6b:ba:75:11:71:76:4f:2e:6f:b7:91:1e:
28:4b:83:0f:cf:aa:0f:18:c0:ea:70:bc:df:97:eb:
4c:fb:81:82:59:fd:24:2b:e4:b2:dc:a2:94:de:15:
3e:e8:ba:2f:9a:1a:f1:84:0c:54:ca:0f:95:ce:d5:
c0:45:a7:dc:02:5a:09:4c:4a:ae:f5:14:81:c9:ad:
93:b3:bd:25:01:84:eb:98:80:f6:4f:2e:80:ba:83:
56:24:18:26:1e:6e:87:8f:ee:43:0e:42:b4:00:c9:
92:0f:e1:59:44:70:2e:05:58:8d:38:77:6c:c8:a1:
93:e5:38:32:98:f8:a3:28:3a:d7:8c:bb:a5:75:fc:
cc:5d:50:90:e7:2d:c1:ae:2b:af:12:b8:4f:5c:f2:
95:e6:96:dc:bb:bc:21:14:35:be:c6:ae:7a:22:15:
20:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:FD:EE:3C:7F:69:4B:16:A4:FA:EF:EF:E4:E8:C1:81:81:C2:7D:38
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131382e302f32342d3234203d3e2039303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.118.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:38:fc:be:03:43:d0:a3:65:55:29:fc:95:0f:88:d9:f4:6d:
dd:06:21:ed:7e:4c:ea:6c:a7:b5:25:3d:bd:0b:ac:02:25:15:
2d:79:44:7f:3e:80:58:8f:24:16:0f:9b:c3:62:1a:be:99:d5:
64:aa:f0:8a:71:24:ed:27:2a:d1:33:21:b4:72:bb:b0:e2:c1:
80:60:8c:1e:5b:76:b4:05:db:0c:28:ba:b4:d9:54:e6:e6:6c:
37:af:0b:1a:6f:13:9b:34:a6:74:c0:81:74:65:3a:37:8c:e0:
71:b5:87:65:86:45:85:e6:ee:0d:a4:db:b8:fd:45:f1:61:ae:
6c:cb:e3:82:37:0a:e7:b8:fe:e5:83:16:23:94:11:24:6e:8d:
fb:ca:c4:75:e8:21:64:23:4a:eb:2d:cd:ff:64:ed:ba:84:35:
e4:e9:05:7f:3d:f5:2b:d3:22:76:79:b0:f7:3a:f1:05:37:e7:
16:fb:54:a4:44:3b:6e:56:21:82:b7:8d:ac:5c:89:87:1b:20:
64:ff:17:a4:61:a4:22:9b:11:be:8c:72:72:a0:2f:98:dc:99:
88:24:f6:45:be:89:80:2b:5b:c2:24:88:37:dd:bb:10:e6:0d:
9e:e8:18:f8:54:ca:30:15:02:c2:b0:a0:6c:c4:a0:cf:8c:4c:
44:4a:92:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 04:05:01 2024 by rpki-client on console-ams.rpki-client.org