Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/34352e39352e3231322e302f32342d3234203d3e20323136323030.roa
File: 34352e39352e3231322e302f32342d3234203d3e20323136323030.roa (raw, json)
Hash identifier: a62wSChqz3Qrjo35vLV7tgCoone0zJDhENXTQvFJ1NE=
Subject key identifier: 92:A6:15:FE:A4:04:5A:6F:23:D7:93:72:38:4A:B2:79:57:D6:40:5A
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 0B64982EC9F0461E37660E4004CE23A1C5D4F045
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/34352e39352e3231322e302f32342d3234203d3e20323136323030.roa
Signing time: Tue 23 Jan 2024 07:20:16 +0000
ROA not before: Tue 23 Jan 2024 07:15:16 +0000
ROA not after: Tue 21 Jan 2025 07:20:16 +0000
asID: 216200
IP address blocks: 45.95.212.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.mft
rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 15 May 2024 22:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:64:98:2e:c9:f0:46:1e:37:66:0e:40:04:ce:23:a1:c5:d4:f0:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Jan 23 07:15:16 2024 GMT
Not After : Jan 21 07:20:16 2025 GMT
Subject: CN=92A615FEA4045A6F23D79372384AB27957D6405A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:be:53:e2:f6:0e:45:3a:f1:af:25:0b:54:38:
a0:d5:07:f4:b3:c4:22:63:c3:93:dc:bc:1a:e6:59:
b6:66:39:98:c3:6c:a3:b5:c5:b9:e9:f7:b1:ed:3e:
62:3b:7b:4d:47:8b:ab:6d:88:9e:d5:d5:24:91:75:
7d:3d:3f:c2:5b:de:28:60:ca:79:98:b9:c8:7e:37:
f2:05:49:0d:d7:37:c3:22:24:80:3a:be:f6:42:e6:
a4:20:3f:2c:ae:1e:e5:29:43:f0:f2:47:f2:00:38:
29:d5:f0:eb:8e:6b:e8:45:da:a0:65:a9:56:26:9b:
9e:72:15:ad:cb:52:f8:1a:e7:a0:38:c4:30:a2:8b:
32:47:2f:47:55:12:3f:ba:4f:43:29:66:b0:84:fa:
36:2d:aa:b3:da:ca:5d:75:50:a1:c8:8b:a8:f1:b5:
ed:83:20:37:cd:fc:f7:40:06:65:0e:7e:e1:b1:b6:
e1:ec:01:2f:f7:40:7d:41:de:df:a4:d8:68:54:50:
26:89:18:2c:e4:a0:2b:b5:df:16:51:c2:60:b6:d9:
d0:a9:58:ab:ce:5d:c5:db:50:ac:10:b1:59:39:f2:
de:58:01:10:29:c8:92:2c:2a:bf:6b:86:2c:bf:ad:
cc:4f:3c:0a:61:33:6f:ca:fd:af:f0:1f:60:c5:d5:
c9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:A6:15:FE:A4:04:5A:6F:23:D7:93:72:38:4A:B2:79:57:D6:40:5A
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/34352e39352e3231322e302f32342d3234203d3e20323136323030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.212.0/24
Signature Algorithm: sha256WithRSAEncryption
41:2a:86:cd:fe:f3:1c:69:e5:24:ae:a3:b2:47:63:ab:54:07:
18:0a:71:b5:ef:ca:ca:1d:5a:ba:86:e1:d4:11:1c:40:b9:b1:
ee:6a:c5:2a:d0:da:cb:1b:0d:cf:38:1d:8f:69:96:7f:1a:bd:
86:ab:5f:1e:4f:ce:6b:8c:c3:05:67:94:6a:61:69:bd:84:5d:
1c:4f:c9:d5:04:bf:be:cc:bc:8c:63:75:f7:c8:be:f7:b5:2b:
56:a3:cf:61:9c:1b:4d:f0:a8:46:09:2c:0f:d9:7e:e9:53:ab:
c8:1e:07:31:a4:24:fa:bc:5b:3e:4e:ae:5b:e7:83:0e:40:07:
af:aa:ac:ca:14:d5:d0:fa:e0:cd:74:6e:42:83:1b:7f:02:d3:
9e:8d:32:bd:36:24:ec:14:c9:2e:92:3d:ae:f7:fc:26:b2:a4:
30:b4:c3:3d:d6:91:e7:1d:f2:a3:ea:e5:ef:9e:15:8f:ef:21:
47:f9:43:6f:d5:3c:04:d4:63:06:de:90:25:00:46:67:99:35:
ea:bc:5d:23:06:2d:c9:50:eb:f6:74:41:21:19:75:02:27:07:
81:66:17:56:03:39:92:6c:d3:3f:ff:ff:71:26:34:99:08:47:
e7:40:7d:21:e6:a1:aa:ae:4c:01:40:c7:cf:db:36:2d:33:be:
7d:45:27:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 03:59:44 2024 by rpki-client on console-fra.rpki-client.org