Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3133322e3231392e302f32342d3234203d3e203536393133.roa
File: 34352e3133322e3231392e302f32342d3234203d3e203536393133.roa (raw, json)
Hash identifier: DLRhvQuCBdQ58YpvI3/WYlPTQO2Xxa/OwmaJ25es1hE=
Subject key identifier: E6:96:44:E6:7F:54:FD:AB:9C:C0:F6:E7:2D:48:B2:EE:AA:61:3A:46
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 6A264D5029E73B6D486E97B89209F022E60E6D06
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3133322e3231392e302f32342d3234203d3e203536393133.roa
Signing time: Wed 27 Sep 2023 12:05:24 +0000
ROA not before: Wed 27 Sep 2023 12:00:24 +0000
ROA not after: Wed 25 Sep 2024 12:05:24 +0000
asID: 56913
IP address blocks: 45.132.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:26:4d:50:29:e7:3b:6d:48:6e:97:b8:92:09:f0:22:e6:0e:6d:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Sep 27 12:00:24 2023 GMT
Not After : Sep 25 12:05:24 2024 GMT
Subject: CN=E69644E67F54FDAB9CC0F6E72D48B2EEAA613A46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f9:b6:76:84:c8:d3:f8:4a:0c:80:46:e7:f3:
7a:57:46:f0:1a:6f:53:d6:7f:f8:36:1d:d0:1f:7b:
b4:1b:f6:47:3d:ad:4b:3d:ac:4d:db:5b:f9:ec:d1:
6b:c5:f0:9e:83:97:f1:0e:bb:ed:b3:83:84:6d:4d:
9c:da:8a:60:db:c7:e1:94:67:3b:11:1c:9c:c1:4b:
76:fd:98:d9:63:93:fc:3a:45:bb:e8:ba:59:36:72:
44:d6:f1:b3:81:2f:6e:c0:42:dd:a9:90:51:b9:9f:
53:a2:ee:3e:32:58:4b:28:ce:77:78:25:6c:d3:9e:
2c:46:d2:91:9c:84:5f:d5:ec:5f:81:98:41:45:40:
39:3e:ff:67:c3:df:6c:42:52:0b:8e:31:fb:24:ea:
f0:dc:a9:ef:31:3a:f0:36:cb:5a:90:2f:6d:10:f6:
dd:e9:f3:bb:64:25:d6:dc:fb:ca:80:9a:48:e7:9a:
0e:3c:7a:d4:b9:fc:6d:ea:2b:fa:da:c9:c3:59:a5:
c8:fe:24:9b:7d:62:6e:bf:32:dc:4f:e1:a2:fe:1d:
d4:3e:0b:ad:b2:9a:c8:81:8c:3d:67:d6:d9:10:c7:
db:c1:31:2d:63:0f:c3:e8:3b:4b:2e:7c:a3:9b:7b:
15:2e:44:77:73:8f:d7:0c:be:b9:e5:c2:98:4e:54:
1c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:96:44:E6:7F:54:FD:AB:9C:C0:F6:E7:2D:48:B2:EE:AA:61:3A:46
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3133322e3231392e302f32342d3234203d3e203536393133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.219.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:6a:db:20:f9:62:a4:36:af:a6:e5:1c:32:d0:b3:1d:26:dc:
e7:db:9a:f8:d2:11:5a:17:16:a2:e6:68:40:3d:cb:29:13:50:
3b:f3:b5:9f:19:77:6e:a8:8c:4c:1f:f9:82:59:01:34:f3:f2:
1c:a4:c6:99:1b:ca:d1:0d:13:63:c9:e1:7c:51:b5:7e:61:f5:
ce:60:39:94:91:66:0d:46:88:8f:05:7f:37:78:10:08:c5:81:
62:6d:26:c8:91:7a:39:99:02:2c:fa:bd:11:3d:63:92:50:63:
f4:9e:74:3f:c7:16:41:1b:bb:ff:58:db:74:0d:7d:8f:64:35:
20:d3:88:6e:2b:9d:be:10:71:15:28:58:33:06:30:bf:1e:5e:
33:80:a3:ce:d9:82:36:bd:e5:8a:25:af:98:03:f0:82:e8:33:
5d:95:9c:f9:ae:57:00:69:e5:c6:06:33:66:85:69:c9:fc:32:
b6:38:37:de:a9:64:f6:33:39:b4:8d:a8:85:c0:2e:89:97:fe:
00:09:d3:6c:48:20:08:f4:a1:6f:97:a6:8b:71:58:5a:36:e4:
7d:21:3a:99:3c:ba:2c:a8:ed:b5:6a:6f:f2:81:4c:0a:08:9e:
85:6f:64:87:b2:18:4a:5b:37:1d:d9:be:f7:92:80:a9:54:65:
18:55:de:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 13:55:59 2024 by rpki-client on console-fra.rpki-client.org