Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32372e302f32342d3234203d3e20323132323338.roa
File: 34362e3138332e32372e302f32342d3234203d3e20323132323338.roa (raw, json)
Hash identifier: UnC4dY5BEMTU+QUmHEUrhfl+EBwa6d4Fy2eujPhitvA=
Subject key identifier: 7F:38:42:F6:3F:16:95:4D:95:53:A4:42:6A:24:19:C5:D1:E9:3A:7A
Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Certificate serial: 2FA2CFAE686CD89E68B18153B318A024070631BC
Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32372e302f32342d3234203d3e20323132323338.roa
Signing time: Mon 20 May 2024 08:23:17 +0000
ROA not before: Mon 20 May 2024 08:18:17 +0000
ROA not after: Mon 19 May 2025 08:23:17 +0000
asID: 212238
IP address blocks: 46.183.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:a2:cf:ae:68:6c:d8:9e:68:b1:81:53:b3:18:a0:24:07:06:31:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Validity
Not Before: May 20 08:18:17 2024 GMT
Not After : May 19 08:23:17 2025 GMT
Subject: CN=7F3842F63F16954D9553A4426A2419C5D1E93A7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:43:cf:b1:de:fe:0a:69:db:89:a6:6c:37:a7:
87:26:b6:74:f9:0e:7d:35:31:1e:d5:b3:4c:9a:11:
de:86:c5:d0:81:d7:fc:b0:52:84:34:9c:a7:4e:fd:
6b:6a:2f:66:58:c6:66:85:bb:47:2b:89:7d:e2:50:
ed:d9:a9:09:96:b3:4d:0b:6d:a7:41:d6:f5:5e:70:
f5:4a:82:84:4f:95:40:69:47:4d:6a:46:ec:c4:fd:
c1:d1:35:60:f9:bb:ca:95:df:e0:2d:88:ee:87:a7:
52:45:93:71:43:00:9b:4e:41:da:38:8f:83:d1:d3:
05:57:a0:b8:17:5c:bc:8e:fb:8d:a4:3f:f2:b5:12:
06:79:a3:4a:0f:92:7d:3b:d9:f6:c6:f8:bd:93:dd:
32:f5:a4:97:b6:56:d3:40:ab:02:5a:83:43:e9:b3:
d7:c1:da:c2:07:ed:81:18:87:03:a9:9e:cb:ca:e9:
f6:2a:94:34:3f:dc:fc:ac:cd:26:64:cc:72:60:69:
9e:7f:a5:ef:1c:8e:00:e9:79:95:b9:0a:73:7c:aa:
6f:c7:3f:12:b4:37:41:78:5b:e2:d0:48:ce:d8:5f:
a3:55:39:d1:10:11:82:07:ac:1a:41:26:32:89:30:
14:5e:f1:da:d8:74:7d:20:5f:09:b0:08:9d:5a:2c:
4d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:38:42:F6:3F:16:95:4D:95:53:A4:42:6A:24:19:C5:D1:E9:3A:7A
X509v3 Authority Key Identifier:
keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e32372e302f32342d3234203d3e20323132323338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.27.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:01:16:fc:dc:40:ad:e4:04:ab:9a:bc:dc:de:de:06:3c:72:
b4:4e:e0:d3:06:17:e1:2d:47:a2:71:6b:0c:3a:c9:39:cc:86:
62:69:63:44:97:df:6e:1a:b1:39:00:7b:43:e7:4d:cc:fa:f5:
dd:92:e6:75:c2:8b:37:43:59:96:13:19:bf:aa:72:00:0e:8e:
3d:bc:07:9a:25:ce:34:f8:12:35:cb:83:47:5f:c5:e8:22:bb:
f7:df:3a:1b:b9:c5:7e:58:4c:ee:67:e6:9f:f6:54:e7:05:2f:
0c:da:53:90:4b:c5:33:0d:21:4c:21:c4:bd:5d:c7:8a:1d:14:
e4:34:0c:6d:22:e2:69:eb:95:4d:49:54:55:31:17:50:30:72:
98:cb:e2:e3:0e:ab:e5:dc:14:30:39:32:cb:dc:e5:56:d6:8f:
d4:39:a5:2c:d6:44:fc:bb:2b:74:92:6f:19:b4:29:4a:6e:e4:
9f:bb:c7:c0:f6:8a:bd:a5:7f:68:91:ae:9e:65:2a:6a:11:97:
0a:c6:ac:9b:68:24:5f:88:98:9e:0f:d9:3f:1a:30:50:70:3a:
2b:09:5c:01:d3:d6:67:78:d3:68:54:3f:42:61:01:5c:70:b1:
ed:a9:23:38:29:bc:3f:95:7d:0d:4b:e0:a2:e2:a7:9f:fe:fb:
6e:92:49:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:15 2024 by rpki-client on console-ams.rpki-client.org