Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3133322e3231362e302f32342d3234203d3e203634323637.roa
File: 34352e3133322e3231362e302f32342d3234203d3e203634323637.roa (raw, json)
Hash identifier: qyOntghQWMD4i6O1JanJ9yH4hSKbPEc+YtM/F2NDujM=
Subject key identifier: 09:BA:C5:DE:21:48:4C:50:07:F7:C4:E4:4D:1B:22:32:1E:65:91:F3
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 22461313ECE0C640B7DD969EED535B6339F6179D
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3133322e3231362e302f32342d3234203d3e203634323637.roa
Signing time: Wed 27 Sep 2023 12:05:30 +0000
ROA not before: Wed 27 Sep 2023 12:00:30 +0000
ROA not after: Wed 25 Sep 2024 12:05:30 +0000
asID: 64267
IP address blocks: 45.132.216.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Jun 2024 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:46:13:13:ec:e0:c6:40:b7:dd:96:9e:ed:53:5b:63:39:f6:17:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Sep 27 12:00:30 2023 GMT
Not After : Sep 25 12:05:30 2024 GMT
Subject: CN=09BAC5DE21484C5007F7C4E44D1B22321E6591F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:14:0b:f7:a4:c9:c6:82:bd:e7:d7:ee:65:29:
53:9e:b5:01:14:7a:18:90:ad:29:d0:77:7a:13:45:
2a:56:1e:dc:f2:14:92:b6:26:38:f9:8b:d8:00:65:
5b:23:94:b5:6d:ba:52:6c:1c:69:9a:e9:4a:71:d3:
88:50:e5:be:56:7e:b5:75:e2:90:c6:7f:0b:d2:96:
66:f4:a1:4e:3d:2a:be:8e:c2:96:ea:d9:1c:71:68:
48:03:70:e6:3a:af:f1:aa:95:2d:b8:c9:47:27:2e:
ea:0b:60:6c:25:b8:33:ca:02:32:3b:74:78:09:e8:
d3:f9:68:82:50:cd:41:50:76:49:d4:a3:eb:a4:30:
d3:07:36:a3:f4:25:20:3b:25:48:24:6e:46:f2:ae:
48:46:56:bb:b3:94:e5:93:9d:d6:fb:78:1a:3b:4b:
33:fa:3c:07:79:82:b5:32:3d:b7:7f:7d:a4:56:c0:
6d:4a:c9:c3:e2:a9:b7:c7:6f:dc:1a:1a:9b:e5:49:
13:6a:e6:a9:61:21:80:77:46:e1:af:cc:54:23:1b:
36:b1:cb:46:d6:49:d2:0c:eb:10:e6:5a:42:a9:35:
eb:77:94:38:3c:30:81:6a:5c:80:68:ef:41:2d:a7:
7c:b9:8c:28:a4:98:6e:4d:60:14:cf:f8:5b:5a:48:
e4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:BA:C5:DE:21:48:4C:50:07:F7:C4:E4:4D:1B:22:32:1E:65:91:F3
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3133322e3231362e302f32342d3234203d3e203634323637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.216.0/24
Signature Algorithm: sha256WithRSAEncryption
33:10:56:3b:62:84:06:44:70:05:a4:bf:b6:83:87:df:7e:37:
a1:a2:1f:73:40:74:ec:de:dd:f8:0f:d2:db:a6:c4:3b:db:23:
6d:58:47:ef:17:cc:45:0d:84:9b:69:7b:86:df:84:6f:bf:5d:
1e:98:82:b6:53:c5:0d:a5:bc:c4:53:7d:0c:73:b7:51:7c:5d:
34:a4:39:c8:c7:9f:f9:37:24:03:3e:ed:c9:cb:e0:d9:eb:8c:
3f:2f:b9:0a:fe:f8:5e:02:a3:87:39:86:f7:d7:b1:f8:03:9e:
7f:2d:6a:95:51:6e:6c:2c:66:16:b6:d0:51:b3:35:a7:93:6f:
26:4d:29:f6:c7:db:e7:7c:1f:9e:93:c9:47:bc:09:ed:fe:aa:
35:f3:48:c4:d6:f4:9f:ad:81:d9:e7:14:3b:e4:f3:76:8d:3b:
07:52:e8:d8:e1:da:47:65:21:9c:44:47:6e:91:78:76:ac:54:
3c:95:25:0f:aa:3c:58:7f:9d:b3:cf:ce:47:54:d5:98:6a:8d:
aa:d2:5f:42:39:1d:51:ce:58:d4:ee:98:86:a6:4c:72:62:3e:
75:58:5e:56:07:b2:14:1c:c5:45:cb:7e:f4:60:c6:37:65:0c:
e0:4d:6f:b5:22:34:9c:a7:d5:1b:31:72:05:9c:99:33:4c:3c:
81:8b:4a:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 21:33:37 2024 by rpki-client on console-fra.rpki-client.org