Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134302e33362e302f32342d3234203d3e20323135343630.roa
File: 34352e3134302e33362e302f32342d3234203d3e20323135343630.roa (raw, json)
Hash identifier: 5zMmXjkRkBk9/uGYUTAhE1gW/wF0ZkXO0Ht9YKJUZts=
Subject key identifier: 62:43:D0:06:25:D5:29:EA:A3:61:E1:E1:05:6D:50:A7:9F:17:D1:A5
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 309A2773407F8AF3865B1F50B7E721BF41AC7441
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134302e33362e302f32342d3234203d3e20323135343630.roa
Signing time: Thu 27 Jun 2024 06:44:38 +0000
ROA not before: Thu 27 Jun 2024 06:39:38 +0000
ROA not after: Thu 26 Jun 2025 06:44:38 +0000
asID: 215460
IP address blocks: 45.140.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jul 2024 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:9a:27:73:40:7f:8a:f3:86:5b:1f:50:b7:e7:21:bf:41:ac:74:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Jun 27 06:39:38 2024 GMT
Not After : Jun 26 06:44:38 2025 GMT
Subject: CN=6243D00625D529EAA361E1E1056D50A79F17D1A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9d:c8:1a:d4:a4:80:5f:06:31:a5:70:81:9b:
7f:d4:e5:f8:cb:bd:32:02:96:6f:0f:b9:e2:1e:2c:
9e:c9:02:aa:eb:4a:ec:6d:df:e8:48:93:ea:3c:d1:
6a:f8:0e:fc:8b:7f:42:19:1c:5f:2c:45:7b:6b:ab:
6c:c1:ba:f7:0f:34:7a:ae:35:b8:b0:5a:42:16:3a:
ee:ca:dc:6f:b2:12:ff:95:64:5a:1a:44:a6:c7:af:
29:c8:23:f7:13:e4:1c:6b:16:b8:ec:b0:36:22:98:
70:79:2c:c6:2e:8c:00:73:3a:c1:ec:b1:c5:81:61:
b7:69:b3:3c:76:7c:2d:8d:79:48:0b:fc:b7:38:92:
3e:bc:d3:37:92:9a:75:8a:66:0c:8b:ac:a3:bc:bb:
bd:ea:67:61:96:4f:13:f6:16:b9:c0:14:49:a1:ed:
00:e4:86:8f:e6:6b:f6:5c:f0:0e:39:c0:d3:2f:9d:
c0:34:bb:74:02:fb:f1:c9:48:b4:7e:43:d0:cf:16:
15:23:cb:38:31:80:c5:1e:37:b2:48:87:97:42:91:
03:84:86:58:5b:eb:14:83:cf:0c:d0:e2:af:e4:61:
2d:7a:9e:a1:ad:ed:6a:a6:21:e9:52:7d:15:57:04:
eb:75:b2:86:f8:16:e6:cd:9b:c6:8f:fd:d3:31:62:
77:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:43:D0:06:25:D5:29:EA:A3:61:E1:E1:05:6D:50:A7:9F:17:D1:A5
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134302e33362e302f32342d3234203d3e20323135343630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.36.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:92:f0:36:dc:74:95:b6:7f:e7:c7:75:1e:09:37:27:5c:c9:
e9:7d:e2:54:41:8a:d1:b8:3c:ee:a3:c9:4c:b1:d9:13:23:8a:
c1:a3:6e:86:55:03:f2:84:ed:fa:07:56:de:75:af:e6:18:75:
ee:4a:92:ff:ff:dc:38:f6:9d:7e:03:ca:84:3e:e3:90:b8:b2:
fa:35:3a:f6:c3:e8:6a:52:f0:be:35:80:56:67:1c:1b:97:48:
3f:ae:99:f3:35:bf:62:bb:b1:fa:69:95:4c:b2:11:99:22:44:
85:9d:dc:d7:58:ae:36:d9:53:ea:fc:f5:44:f6:ae:b3:8d:64:
dd:88:e3:72:19:ea:a9:d1:88:f9:7f:86:9f:fe:63:7d:fa:ef:
ad:6c:a9:da:f2:92:4f:71:dd:91:20:2c:31:bf:12:20:55:20:
db:ca:6b:05:f4:bb:68:ab:e7:83:4e:0f:7c:22:c9:fd:56:d3:
d2:9e:c0:0c:52:f7:6b:61:3f:9b:21:21:8a:b7:73:12:b4:b8:
fd:e9:f3:92:2c:bf:ab:d8:53:fc:23:c4:cd:ed:00:8e:41:d9:
45:4f:d7:4c:83:dd:21:e5:e0:c3:7e:99:6c:29:91:fd:2f:b1:
c7:14:91:b6:97:fb:4c:39:d4:66:ad:0d:74:e4:48:97:37:9b:
87:9d:77:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 7 06:17:37 2024 by rpki-client on console-ams.rpki-client.org