Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32342e302f32342d3234203d3e20313432313436.roa
File: 34362e3138332e32342e302f32342d3234203d3e20313432313436.roa (raw, json)
Hash identifier: yMp4N27BXYFMvxFXpYtEzVI3r3SVHmOz4dCZdlG1vnk=
Subject key identifier: 25:ED:70:C8:AB:D6:DA:72:10:B3:72:5B:43:92:B6:73:52:32:96:D2
Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Certificate serial: 57605B7EC2A9068DC6B0BFD693083059A1F7A93A
Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32342e302f32342d3234203d3e20313432313436.roa
Signing time: Wed 26 Jun 2024 06:54:57 +0000
ROA not before: Wed 26 Jun 2024 06:49:57 +0000
ROA not after: Wed 25 Jun 2025 06:54:57 +0000
asID: 142146
IP address blocks: 46.183.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:60:5b:7e:c2:a9:06:8d:c6:b0:bf:d6:93:08:30:59:a1:f7:a9:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Validity
Not Before: Jun 26 06:49:57 2024 GMT
Not After : Jun 25 06:54:57 2025 GMT
Subject: CN=25ED70C8ABD6DA7210B3725B4392B673523296D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8a:27:b3:c5:4e:00:c4:f2:be:d3:f6:1e:e3:
23:b9:08:3a:37:8b:58:d2:ce:99:82:b4:f8:41:93:
e6:35:8c:5f:db:91:a1:95:36:10:fd:46:da:3f:a6:
40:d3:72:20:44:ce:e9:2b:95:39:47:a1:5f:66:06:
9a:c0:c0:60:9a:7c:90:4f:d7:57:c0:44:aa:4c:e9:
35:6d:5b:af:32:0a:9d:0f:af:d7:10:e4:0e:04:be:
cf:0d:60:20:d8:cb:1a:92:a2:fc:c7:d5:c5:c8:dd:
57:de:b9:6b:c5:fd:76:c9:17:03:7c:f5:7c:13:ec:
02:54:6e:cc:9b:7e:ad:67:d0:a7:bc:3f:32:c9:11:
55:f0:f0:9d:b3:1f:aa:29:9b:3f:bd:79:92:2d:11:
53:61:f4:f3:ff:0c:e3:49:5c:50:fa:d6:08:d5:15:
42:31:db:24:b8:0b:1a:2a:d5:dd:e8:04:9c:26:32:
01:7d:2f:21:80:ec:b1:6a:e5:f0:a1:66:de:a5:27:
20:fa:00:26:41:99:06:bd:15:94:1a:6e:bd:b8:5e:
94:4e:2f:4a:e7:37:15:d6:8a:f8:22:b6:e7:5c:d2:
cf:51:b6:19:0a:87:fa:f5:f3:75:2a:9e:b9:72:37:
07:5b:e4:93:59:61:fb:a5:f8:f6:75:cb:9c:84:11:
33:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:ED:70:C8:AB:D6:DA:72:10:B3:72:5B:43:92:B6:73:52:32:96:D2
X509v3 Authority Key Identifier:
keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32342e302f32342d3234203d3e20313432313436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.24.0/24
Signature Algorithm: sha256WithRSAEncryption
86:c8:53:46:c1:61:9e:c0:26:75:e4:57:3a:8e:48:15:f8:63:
b6:15:d7:f6:92:28:fa:d3:19:f5:7b:17:b1:a7:3b:5f:36:f9:
85:72:30:bb:14:be:48:37:b9:c8:cf:30:fa:80:97:7b:28:9e:
51:8f:c2:db:07:fc:d9:9b:3f:2a:ee:cb:b5:88:15:5f:e2:88:
4f:e0:fc:40:e1:3c:8f:8a:d0:a9:a0:06:6e:1b:06:df:d3:c8:
dd:e8:ef:68:0f:08:2e:b3:d5:ff:df:d8:16:b7:50:dc:ee:82:
a7:da:fb:4b:f4:37:17:a0:e7:a7:5b:18:e2:27:5b:39:03:25:
6e:6f:93:c1:47:7c:56:e0:e9:30:87:c8:9c:62:ff:e5:34:fe:
b8:9e:71:d1:45:1e:11:5b:ee:5f:05:3d:d1:69:43:55:04:cf:
6f:b5:91:0c:c4:db:41:30:5b:84:d8:9f:91:dd:4f:f3:0e:7e:
61:66:a2:45:18:5a:af:a5:6c:4c:88:5a:fe:34:b7:78:a1:74:
63:80:31:7e:61:58:52:8c:7b:a5:6b:44:fe:b3:41:bf:bd:69:
21:45:5e:92:b7:c2:2f:f5:ae:48:b5:ad:20:b5:68:8e:d4:25:
6e:31:dc:f7:b1:64:9c:26:f3:b4:cb:ee:7a:bc:c8:20:39:3d:
4a:ea:bf:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:08 2024 by rpki-client on console-fra.rpki-client.org