Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32352e302f32342d3234203d3e20323132323338.roa
File: 34362e3138332e32352e302f32342d3234203d3e20323132323338.roa (raw, json)
Hash identifier: JlUuMcDs9iMbjR7dJiBbcJHNKwygu5z2CyX5rtJmf5E=
Subject key identifier: 81:F0:CA:86:34:40:82:19:0A:5F:F5:CC:F1:4B:3C:58:87:8D:D5:E2
Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Certificate serial: 5370F3DE30B0A3FE8CF30E4C17A2DD4348E4A94B
Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32352e302f32342d3234203d3e20323132323338.roa
Signing time: Mon 20 May 2024 08:36:07 +0000
ROA not before: Mon 20 May 2024 08:31:07 +0000
ROA not after: Mon 19 May 2025 08:36:07 +0000
asID: 212238
IP address blocks: 46.183.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:70:f3:de:30:b0:a3:fe:8c:f3:0e:4c:17:a2:dd:43:48:e4:a9:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Validity
Not Before: May 20 08:31:07 2024 GMT
Not After : May 19 08:36:07 2025 GMT
Subject: CN=81F0CA86344082190A5FF5CCF14B3C58878DD5E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ee:09:13:42:76:02:c9:99:8b:07:74:fe:32:
e6:36:c7:04:c7:87:ce:1b:d3:77:fb:4f:2d:33:85:
85:8b:87:e5:44:39:16:e2:37:26:8a:bf:3b:52:ea:
3b:7c:1c:6d:ca:03:dd:8a:ba:81:f6:3c:34:c1:0f:
de:07:7e:15:9c:0b:53:70:e8:72:0f:53:21:c7:83:
20:ad:1b:a7:ed:46:51:64:d5:ea:3b:6a:ef:4a:3b:
3d:1d:1a:b8:92:b4:10:ad:94:b6:d1:b1:f8:2a:fb:
bf:96:2c:44:c4:43:e4:2a:a8:b7:1c:26:c0:af:f2:
b2:16:6a:4d:13:04:3c:59:6d:3d:cc:3e:b2:f3:d5:
7c:3d:fe:5a:07:d1:5a:49:7d:7b:5a:fa:d1:0a:53:
90:aa:dd:80:07:c9:a4:36:83:87:d3:19:df:de:4f:
e2:64:ff:b0:1d:9e:05:ce:a8:03:74:79:1e:7f:bf:
17:0b:dd:b5:7b:9c:b5:c3:6e:ed:05:21:f2:3d:89:
12:ec:f2:1a:77:65:5e:37:96:7f:ae:e9:c3:8d:f2:
db:7f:ad:ae:e3:1e:e7:df:c9:ca:20:4f:61:a4:03:
20:84:36:8d:4b:5d:37:84:2b:bc:37:c4:70:aa:dc:
f4:3f:56:76:c3:07:1d:18:7c:21:4a:f0:31:96:61:
29:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:F0:CA:86:34:40:82:19:0A:5F:F5:CC:F1:4B:3C:58:87:8D:D5:E2
X509v3 Authority Key Identifier:
keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32352e302f32342d3234203d3e20323132323338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.25.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:6c:59:79:bc:3b:8b:1b:9a:a7:76:af:45:b1:b5:a7:57:07:
9c:09:92:95:90:8d:05:19:19:16:22:4f:47:4c:79:57:32:cd:
36:74:e1:4c:48:4c:d1:ab:b8:d9:c4:ae:36:43:f4:33:0f:32:
c6:b9:a9:3c:b9:9f:cb:90:5a:54:c9:e1:53:32:16:18:29:2b:
0b:11:34:14:89:2d:3f:e0:92:fa:7c:d2:93:6c:80:2f:38:4f:
13:75:8d:98:fd:54:7f:35:51:1e:78:dd:d2:39:d3:23:b0:38:
a7:97:b8:fb:5c:de:89:63:e4:95:14:1c:64:b0:c4:3d:c3:19:
29:ba:af:43:b7:68:c0:a9:f9:5b:d0:84:44:51:7f:19:d4:cd:
7a:08:36:50:85:ac:19:6d:96:ae:7b:90:ea:bc:81:f1:ea:d8:
b9:fa:94:d5:3e:b7:e8:3e:7f:a1:68:6c:2e:28:fd:88:34:4f:
06:d2:ee:a8:85:f3:68:6a:dc:3f:e8:a3:33:b2:6c:87:3c:92:
97:ea:f5:19:0a:14:a2:9d:eb:dd:6f:02:b2:d8:ff:96:9e:79:
cd:ce:58:1e:6c:3d:37:14:c8:39:f2:8f:3a:5b:02:c6:b6:fe:
fe:48:62:56:62:a6:35:fd:19:3f:de:50:6b:f9:47:1e:5e:c5:
50:32:33:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:08 2024 by rpki-client on console-fra.rpki-client.org