Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234322e302f32342d3234203d3e203631333137.roa
File: 34352e3134352e3234322e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: Qhuta9sWkkRtiUZMoZqkRD3/Jh6qzQbJ7W+1ZEHJ38k=
Subject key identifier: B7:58:02:EC:AE:07:E8:36:22:AE:63:5C:1F:54:D6:DB:7C:87:EF:3D
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 749FEA57A57D2E28D1D46840B3B4F365196F9B81
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234322e302f32342d3234203d3e203631333137.roa
Signing time: Wed 27 Sep 2023 12:05:27 +0000
ROA not before: Wed 27 Sep 2023 12:00:27 +0000
ROA not after: Wed 25 Sep 2024 12:05:27 +0000
asID: 61317
IP address blocks: 45.145.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:9f:ea:57:a5:7d:2e:28:d1:d4:68:40:b3:b4:f3:65:19:6f:9b:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Sep 27 12:00:27 2023 GMT
Not After : Sep 25 12:05:27 2024 GMT
Subject: CN=B75802ECAE07E83622AE635C1F54D6DB7C87EF3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:63:76:03:ae:c6:28:f2:ce:a0:c7:a2:1e:11:
09:72:9f:ea:31:74:61:65:d9:49:fc:29:59:20:25:
c1:e2:34:58:29:d1:1b:46:29:4a:aa:03:0c:0b:1e:
ee:c2:ff:43:18:02:8c:23:5d:fe:68:20:d3:5e:1a:
63:5a:9b:00:26:e7:c7:ec:8f:b7:35:47:d1:d4:c1:
35:76:d4:90:23:12:bd:cd:83:08:73:e1:82:75:bf:
79:33:53:f4:56:7e:0a:67:34:1e:a4:8b:3d:e8:a9:
1e:87:b4:85:4c:6e:16:11:85:71:f6:fe:6f:6a:2d:
d6:12:f8:c4:d8:6f:90:69:7a:fa:c5:c8:c3:be:eb:
e0:43:39:bc:63:55:e0:b8:08:b7:f5:f3:b0:f7:65:
c0:91:b1:ef:9c:5b:c4:e2:fc:38:0e:b0:ae:ee:4b:
37:de:b2:ea:2d:e8:a1:f7:69:c3:1e:fa:f7:83:c7:
a6:c8:3d:f4:e1:0e:6b:8e:f6:e8:33:80:a8:6d:a5:
1c:18:54:57:63:a8:78:1e:55:f8:d6:91:a7:d6:ef:
dd:3b:1c:7b:16:fd:88:63:4a:c4:4b:fb:6a:6f:76:
e4:7a:9f:9b:32:58:40:4e:a3:d0:f6:f1:15:9f:72:
f3:8c:be:3e:82:ae:fe:f2:0d:78:da:52:01:70:3c:
0a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:58:02:EC:AE:07:E8:36:22:AE:63:5C:1F:54:D6:DB:7C:87:EF:3D
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234322e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.242.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:df:82:4e:01:49:9d:d5:02:f2:2c:04:42:27:e3:36:56:56:
e6:a4:cc:dc:7d:12:58:e1:46:a6:cb:e7:86:8b:8d:66:40:f6:
4e:a8:35:14:e2:ab:6f:35:2a:e8:c6:0e:ac:13:49:2c:11:0f:
a9:74:ec:e4:15:e4:7d:c9:fa:f9:d8:21:be:99:f3:34:0c:a1:
43:06:50:b4:cf:ac:7e:2b:06:ed:4b:4c:d1:26:74:44:0d:63:
8b:ba:5c:47:e2:81:6a:53:69:fb:d5:0d:03:e6:9a:7a:61:4c:
ae:9d:e4:5f:e9:37:ed:f2:f6:54:27:43:5d:89:2a:ea:6c:32:
76:db:69:db:37:c1:94:2d:5c:f6:af:73:59:88:a4:da:08:dd:
49:3c:f4:e7:df:92:a8:65:f4:ce:73:e1:a1:e1:79:50:44:85:
41:ca:0e:62:72:77:a4:d7:cc:95:36:3d:6e:31:8a:96:0f:cd:
44:03:92:d3:24:12:e8:d7:a1:b9:0a:8d:e0:a2:a3:f4:7f:73:
72:e2:1f:14:72:51:4a:75:e6:d4:a4:b0:2c:4f:d9:32:ed:30:
01:14:bc:d0:15:12:8c:b0:3f:4a:9e:11:53:64:10:ab:9a:d3:
09:ba:a1:76:7a:f8:d1:e8:44:38:a4:10:ac:07:41:ec:4e:b9:
29:61:98:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 05:41:46 2024 by rpki-client on console-fra.rpki-client.org