Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/34352e38362e39332e302f32342d3234203d3e203631333137.roa
File: 34352e38362e39332e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: F7r2zHxoMB3WUrCAP4In4YqzyOjtZGc+2V2Sm86c1V8=
Subject key identifier: 7E:3A:32:48:A2:18:F5:59:2E:7C:45:D3:1C:A0:48:60:07:81:1A:AB
Certificate issuer: /CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444
Certificate serial: 2D500CDFD835EAC39124EE8C03871941FAC3A5B8
Authority key identifier: D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/34352e38362e39332e302f32342d3234203d3e203631333137.roa
Signing time: Thu 03 Aug 2023 19:24:34 +0000
ROA not before: Thu 03 Aug 2023 19:19:34 +0000
ROA not after: Thu 01 Aug 2024 19:24:34 +0000
asID: 61317
IP address blocks: 45.86.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl
rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft
rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:50:0c:df:d8:35:ea:c3:91:24:ee:8c:03:87:19:41:fa:c3:a5:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444
Validity
Not Before: Aug 3 19:19:34 2023 GMT
Not After : Aug 1 19:24:34 2024 GMT
Subject: CN=7E3A3248A218F5592E7C45D31CA0486007811AAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:aa:d9:d4:35:a0:6e:ae:cc:06:c9:84:0f:d2:
be:f6:83:4e:e9:d3:4d:09:1e:4d:26:d8:a5:1d:2f:
e4:69:50:31:32:f4:fe:79:c8:6f:71:59:8a:3a:39:
a0:d1:26:61:64:11:0b:cc:2b:75:6d:2c:c5:e7:8b:
97:77:0c:14:23:3e:2b:f1:8f:58:1d:e0:2c:49:7a:
51:f3:02:04:c4:e8:43:2a:8f:7f:72:0b:e9:d3:9e:
35:7a:8c:c3:b6:7d:8f:42:ba:82:25:14:27:2c:c5:
7d:5e:26:0b:f4:4c:4f:78:c4:b6:83:85:da:c4:0b:
21:01:f0:30:4f:0f:09:d2:41:94:3e:60:4f:65:26:
6f:00:14:7b:31:08:9b:38:f2:9c:93:4f:4e:bc:b4:
39:c5:24:43:6a:d9:07:e3:a8:1c:bc:3b:04:30:3b:
73:a8:90:78:3d:6d:89:d6:d4:2b:d9:a8:b4:28:2c:
f1:0c:cb:95:66:57:30:47:3b:e0:48:19:71:c0:13:
3b:59:d6:d1:7b:89:8e:91:00:b5:5d:ba:c3:9e:c2:
89:51:9a:8d:a8:43:82:15:83:ba:d9:6b:49:23:5e:
89:cd:cf:ae:30:e9:a7:ff:9c:7f:18:05:18:65:a2:
fe:5f:8b:f1:ec:be:65:59:50:92:2d:f3:80:b3:40:
4c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:3A:32:48:A2:18:F5:59:2E:7C:45:D3:1C:A0:48:60:07:81:1A:AB
X509v3 Authority Key Identifier:
keyid:D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/34352e38362e39332e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.93.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:d7:ac:a6:94:b9:b4:0b:85:e2:84:e0:1f:be:ff:d6:16:3d:
bf:64:e6:d6:d0:7a:8a:e3:4d:eb:a8:b7:31:c6:34:f9:bd:44:
d0:b0:a9:5b:e0:9e:03:96:e0:1e:ca:13:ea:19:b6:f2:7f:82:
d7:05:5c:af:67:94:14:ca:0b:e3:b6:79:85:b3:8d:4e:18:c0:
b6:c4:1d:b6:fe:87:c0:82:2c:8b:a6:78:2b:59:ce:74:4e:f7:
7a:1f:30:34:af:bf:87:af:7d:bd:99:f9:cc:41:82:e2:27:a2:
6e:7b:a2:f4:b8:16:a6:de:ba:50:a1:5a:82:63:5b:74:14:88:
63:b2:7c:5a:5a:a6:ae:93:b7:73:06:49:87:15:a1:f7:ae:87:
25:60:f9:8c:6d:3e:7c:32:a5:2d:a6:46:e1:67:59:3e:ba:12:
c1:65:75:c1:91:46:70:14:bf:54:7c:da:79:55:9e:d4:57:f7:
96:31:73:95:32:41:e5:49:a2:c2:0e:ab:9e:f9:1a:d0:fc:69:
33:9e:d1:a0:fa:c4:00:49:f1:fb:04:b7:83:12:7d:ad:eb:68:
18:db:79:5f:83:6b:4c:80:56:e7:ba:7c:88:d9:61:7c:35:c1:
6c:b2:dd:eb:07:bf:bd:95:6a:f3:c1:f9:10:db:db:0b:f7:c6:
09:2f:2b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:55:44 2024 by rpki-client on console-fra.rpki-client.org