Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3134302e3230302e302f32322d3232203d3e20323031333431.roa
File: 34352e3134302e3230302e302f32322d3232203d3e20323031333431.roa (raw, json)
Hash identifier: 4STkosusiwM8N24qqqSC2V7l7OxnMsAbahEc8fiovqs=
Subject key identifier: DA:38:42:ED:CD:91:C8:6B:9B:2A:60:0C:6B:F2:AA:1F:73:D2:6F:FC
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6B47656FDD793A411884FF70644C6A15E3F87730
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3134302e3230302e302f32322d3232203d3e20323031333431.roa
Signing time: Thu 31 Aug 2023 14:08:14 +0000
ROA not before: Thu 31 Aug 2023 14:03:14 +0000
ROA not after: Thu 29 Aug 2024 14:08:14 +0000
asID: 201341
IP address blocks: 45.140.200.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:47:65:6f:dd:79:3a:41:18:84:ff:70:64:4c:6a:15:e3:f8:77:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Aug 31 14:03:14 2023 GMT
Not After : Aug 29 14:08:14 2024 GMT
Subject: CN=DA3842EDCD91C86B9B2A600C6BF2AA1F73D26FFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b6:0f:61:7d:9e:be:3b:dc:92:a8:cd:0f:e0:
13:2f:2e:46:27:4a:a0:8a:3f:80:9d:c1:3f:ff:b3:
e0:8c:8b:6a:77:da:6e:50:a5:83:1f:97:c6:03:db:
02:51:09:a6:c6:f1:7f:28:e1:c7:ba:7b:47:90:71:
b6:4b:10:74:8b:5f:1c:19:75:7c:bc:19:c2:cc:50:
b2:08:83:ea:58:a7:50:f8:c4:44:4b:cd:40:5d:23:
92:37:2e:55:2f:a0:db:90:4d:e0:76:fc:6b:45:bd:
9f:b9:84:9a:60:c6:82:53:4b:ac:4b:93:73:49:10:
11:ee:16:22:5a:a8:e7:4d:56:f6:27:69:55:50:f8:
78:00:9b:e8:69:97:9d:42:cc:67:0e:47:4c:55:16:
4d:90:66:95:a9:83:79:4f:3d:85:b9:1e:de:72:b2:
00:1f:c9:50:a9:4e:c9:0a:96:ea:0d:68:33:7f:02:
79:ff:a7:36:f5:cf:91:0e:f4:ed:f7:35:56:cf:7f:
9a:0d:13:e1:24:d7:56:88:0c:45:ea:5c:ec:37:b9:
89:f6:75:a9:fb:a7:2b:95:87:c7:c4:37:ad:74:ff:
cd:ff:02:84:c3:c2:54:d7:19:6a:5a:68:d6:42:6d:
b9:49:6b:58:c2:1a:b1:9a:a4:17:ef:33:b0:27:a9:
5e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:38:42:ED:CD:91:C8:6B:9B:2A:60:0C:6B:F2:AA:1F:73:D2:6F:FC
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3134302e3230302e302f32322d3232203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.200.0/22
Signature Algorithm: sha256WithRSAEncryption
62:d2:52:00:ef:a9:7f:50:c6:ec:40:d6:95:73:c6:31:53:72:
5c:66:da:70:14:b1:8c:d5:d3:6f:83:f3:9a:0e:4a:f8:d4:a0:
59:45:4c:61:a8:84:49:05:8c:19:39:e4:b1:5c:19:35:2f:f9:
7a:75:1c:6d:b3:f1:b1:44:62:8e:77:27:d5:81:c8:33:dd:91:
4f:77:fc:7d:c0:8f:49:f3:52:43:12:4c:02:cd:2d:01:1a:93:
a0:72:82:ac:8e:f5:b0:57:4b:52:a6:14:7b:1f:eb:99:98:34:
8b:69:8a:98:7e:9f:f2:9a:78:69:ef:92:40:98:03:87:e6:77:
a7:cb:7e:84:5c:7c:f0:cc:54:81:88:b8:36:2c:82:e3:9a:d2:
ba:6b:86:9f:26:48:93:02:93:10:fb:c3:ea:fe:ab:b7:c8:86:
5c:0a:1e:20:96:dd:73:23:d4:cc:67:ae:61:7e:6d:e4:aa:3c:
7a:b5:ee:45:0d:22:78:77:c1:26:54:b6:65:92:cc:ff:0e:4f:
12:a2:5c:d1:b4:df:f3:5c:93:21:ae:19:0a:31:21:da:90:ea:
d1:2b:85:fe:b6:a0:c9:18:fd:41:14:c7:f1:b5:0c:75:f2:ed:
88:3d:8a:15:b8:19:ca:cb:b7:31:61:2b:44:b2:d9:c7:b6:b1:
08:3d:f3:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 13:47:07 2024 by rpki-client on console-ams.rpki-client.org