Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32352e302f32342d3234203d3e203633303233.roa
File: 34362e3138332e32352e302f32342d3234203d3e203633303233.roa (raw, json)
Hash identifier: sxCRvdRH/61CgPyAucOSXXg3g5Gmmg1S97sa3AiLp/w=
Subject key identifier: 60:BC:42:C5:F6:41:C4:F7:5A:3A:2F:BD:3C:F7:7A:46:D2:6C:0D:D0
Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Certificate serial: ABB6F099B241ADAB177B62D794E2D0C105AF2E
Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32352e302f32342d3234203d3e203633303233.roa
Signing time: Mon 20 May 2024 10:20:13 +0000
ROA not before: Mon 20 May 2024 10:15:13 +0000
ROA not after: Mon 19 May 2025 10:20:13 +0000
asID: 63023
IP address blocks: 46.183.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
ab:b6:f0:99:b2:41:ad:ab:17:7b:62:d7:94:e2:d0:c1:05:af:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Validity
Not Before: May 20 10:15:13 2024 GMT
Not After : May 19 10:20:13 2025 GMT
Subject: CN=60BC42C5F641C4F75A3A2FBD3CF77A46D26C0DD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:59:bd:cc:85:8c:18:5b:d1:69:79:cc:05:70:
7f:02:a8:db:2c:f6:95:31:22:cc:ae:4f:19:94:f8:
3d:82:aa:c6:b7:9b:50:6c:03:f0:2c:dd:54:3a:dd:
31:30:59:46:bf:65:7c:3f:0d:d3:a9:8c:be:3c:76:
18:46:01:81:1c:30:70:86:3b:06:82:95:9e:55:86:
7c:0e:e6:9f:72:92:ac:45:d5:79:51:74:d7:5a:05:
bc:c9:0c:9c:f9:7c:74:60:08:64:e2:01:c1:24:4e:
19:f1:15:4c:49:80:96:c8:8d:65:8f:66:a4:db:51:
45:97:17:66:a7:94:c8:c8:4e:35:4d:b6:32:c3:c5:
a8:60:cc:11:cc:81:1a:3d:aa:17:91:19:35:5d:71:
d6:97:6b:89:49:54:67:7e:d0:a2:3c:a0:e7:68:bb:
71:6d:75:5f:5e:57:3f:27:c1:65:56:ab:3b:e3:f8:
d3:5d:32:b7:ad:4d:0f:3d:d6:4d:00:16:f8:5c:f8:
f7:b4:05:8a:74:fb:b3:5a:d1:1b:69:5a:aa:f7:77:
b6:c9:29:e5:b0:be:8d:14:33:fc:df:67:b1:79:1f:
69:3b:d7:fe:1b:a1:b9:54:5f:cb:94:9d:89:0a:d6:
3b:a9:b1:27:48:d0:79:85:51:fb:4e:5a:b6:b8:66:
24:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:BC:42:C5:F6:41:C4:F7:5A:3A:2F:BD:3C:F7:7A:46:D2:6C:0D:D0
X509v3 Authority Key Identifier:
keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32352e302f32342d3234203d3e203633303233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.25.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:83:a8:25:e9:ec:56:5a:c0:62:5b:b4:99:6a:04:ba:d9:03:
e8:27:b7:ed:cc:10:8b:91:d6:ab:14:07:d3:62:f7:a7:91:de:
2d:d8:5a:ed:9f:ea:99:38:4f:c0:99:d5:a4:4a:a2:94:b7:5e:
7d:8a:24:d7:3e:1d:58:c5:7e:29:f1:9a:43:3a:42:32:97:7a:
cf:7e:ef:2e:a5:4b:92:20:1b:cd:b1:57:f7:2e:d6:cb:37:1b:
cd:6e:d0:3c:d3:cd:90:52:47:ce:48:e7:9e:d4:a0:78:24:34:
8f:47:66:98:5b:00:60:9e:ae:bb:a6:63:a5:02:b0:3e:80:0f:
fc:af:c9:37:98:f1:b6:13:b0:1f:e1:6d:bf:96:80:44:fb:e7:
2f:8f:bd:10:03:fd:02:7e:59:c5:4f:2e:ee:6b:ef:74:43:14:
ae:77:71:41:1e:5d:21:c8:88:08:75:67:e6:dc:73:8e:10:a4:
61:61:05:47:4e:4e:5c:af:ff:7d:90:a1:f2:53:8b:1c:5d:21:
f7:81:40:57:a8:fa:5f:33:a4:08:20:1e:bb:85:0a:f7:1b:59:
c9:bf:0a:a6:b7:8d:83:3a:b2:68:57:e6:e2:d8:22:c5:94:c7:
f1:f0:cd:b8:74:29:6b:f4:af:14:7e:ce:77:81:90:ea:64:1d:
61:30:7f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:06:08 2024 by rpki-client on console-fra.rpki-client.org