Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131382e302f32342d3234203d3e203631333137.roa
File: 34352e3135362e3131382e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: dNmX5eqsfmWRplepUad1r4G843O/iCLDhpeQD1FJkPE=
Subject key identifier: 9C:5B:9F:AB:DF:57:24:51:7B:D5:C1:E5:BC:91:81:71:32:CC:2C:51
Certificate issuer: /CN=06da19f4285eb04d0310733f4ac00107b73337ad
Certificate serial: 2279C852911B83841963C193C07875B0FE219F01
Authority key identifier: 06:DA:19:F4:28:5E:B0:4D:03:10:73:3F:4A:C0:01:07:B7:33:37:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131382e302f32342d3234203d3e203631333137.roa
Signing time: Mon 05 Feb 2024 07:05:12 +0000
ROA not before: Mon 05 Feb 2024 07:00:12 +0000
ROA not after: Mon 03 Feb 2025 07:05:12 +0000
asID: 61317
IP address blocks: 45.156.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/06DA19F4285EB04D0310733F4AC00107B73337AD.crl
rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/06DA19F4285EB04D0310733F4AC00107B73337AD.mft
rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:79:c8:52:91:1b:83:84:19:63:c1:93:c0:78:75:b0:fe:21:9f:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06da19f4285eb04d0310733f4ac00107b73337ad
Validity
Not Before: Feb 5 07:00:12 2024 GMT
Not After : Feb 3 07:05:12 2025 GMT
Subject: CN=9C5B9FABDF5724517BD5C1E5BC91817132CC2C51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:9f:dc:9d:fa:70:e9:ce:8d:ac:27:05:cf:81:
58:c1:d8:90:fa:53:9f:af:bd:da:59:41:8d:26:a0:
d7:16:e8:b0:79:7e:c9:21:d5:88:82:92:d1:ae:99:
92:9d:77:ee:83:e8:86:6a:ab:6f:8d:02:2b:fe:86:
71:a4:6f:ed:d9:62:a8:44:88:7a:86:8a:f7:1b:64:
79:7a:81:de:6c:86:14:e2:19:56:37:4f:98:e6:2e:
c3:7d:a0:38:79:cf:fe:1e:b0:22:61:2c:44:b7:87:
05:c2:51:db:1e:76:8f:ad:69:d0:ba:14:b1:69:f5:
bb:bf:4d:f3:bd:d4:42:2a:af:6b:94:e4:a1:2d:a2:
14:ff:5e:6c:c0:1a:6b:75:06:50:20:ac:cd:64:11:
31:d6:a4:b6:7f:4e:ac:ee:19:68:cb:45:35:2b:05:
2d:39:b9:7b:17:db:d5:12:60:51:04:51:c7:74:12:
95:f2:a3:7d:d5:7b:7b:a2:87:64:31:6f:a3:bb:a7:
48:d5:96:cb:09:e3:22:f6:23:52:f1:90:29:34:7a:
51:b3:fc:7f:06:7a:4a:76:51:d2:a5:ca:b3:dd:10:
e5:13:9b:be:93:64:01:89:79:fe:69:69:51:9d:db:
5c:86:ca:c3:64:df:b5:e9:34:d4:6e:83:d7:5b:63:
0c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:5B:9F:AB:DF:57:24:51:7B:D5:C1:E5:BC:91:81:71:32:CC:2C:51
X509v3 Authority Key Identifier:
keyid:06:DA:19:F4:28:5E:B0:4D:03:10:73:3F:4A:C0:01:07:B7:33:37:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/06DA19F4285EB04D0310733F4AC00107B73337AD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131382e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.118.0/24
Signature Algorithm: sha256WithRSAEncryption
10:29:cc:63:60:13:7d:8e:36:77:b5:2d:df:f4:b6:21:88:bd:
de:28:fc:54:03:32:d1:c1:37:cd:61:1a:4b:65:d2:13:98:1e:
77:60:6c:9e:60:99:df:36:0d:75:36:f3:65:8d:ac:52:db:49:
65:fb:98:56:e2:ea:bb:16:d2:dc:c8:2a:8e:5a:bc:44:91:94:
83:48:59:4a:78:de:63:73:2b:dd:71:9a:1a:59:37:8e:00:90:
75:2c:5a:ed:3b:41:13:de:1a:58:eb:8f:67:fe:72:40:b2:03:
9c:4a:1f:78:ff:23:2b:fe:ad:e7:d8:a8:d5:95:18:8b:49:dd:
1d:db:6c:ea:ba:54:0d:b8:0f:c0:b0:13:9f:03:de:0d:53:7f:
90:7c:d1:7c:39:42:7d:d8:8c:f1:75:fd:bf:da:ff:d1:82:8f:
6e:ce:72:90:93:51:c1:2e:c2:e6:83:aa:3b:c9:f9:48:76:46:
31:a0:09:12:52:6f:6c:f7:b3:ea:7b:8f:c6:41:ad:11:4d:5c:
bd:f6:d1:6a:82:ff:b6:14:6b:7b:78:5f:e6:01:64:2f:d9:ae:
ba:9e:3c:1d:2e:05:fd:c3:09:ba:5e:dc:7d:a8:55:17:cd:c2:
df:ab:01:ed:aa:01:6d:8d:c3:2a:37:4f:0b:b5:8f:2c:a3:d9:
46:f6:b4:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 13:55:50 2024 by rpki-client on console-fra.rpki-client.org