Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131392e302f32342d3234203d3e20323638353831.roa
File: 34352e3135362e3131392e302f32342d3234203d3e20323638353831.roa (raw, json)
Hash identifier: 8zPTpgTnkE5DT7g6utLjRTV9nq4lv8UtP0kkO2XSRwM=
Subject key identifier: DB:5D:0F:30:43:D8:EC:05:FB:44:BF:68:82:33:DC:73:D9:F2:BA:7B
Certificate issuer: /CN=06da19f4285eb04d0310733f4ac00107b73337ad
Certificate serial: 5CDE05768D38AA838B429EC121300F44F524E6C5
Authority key identifier: 06:DA:19:F4:28:5E:B0:4D:03:10:73:3F:4A:C0:01:07:B7:33:37:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131392e302f32342d3234203d3e20323638353831.roa
Signing time: Fri 14 Jul 2023 14:53:57 +0000
ROA not before: Fri 14 Jul 2023 14:48:57 +0000
ROA not after: Fri 12 Jul 2024 14:53:57 +0000
asID: 268581
IP address blocks: 45.156.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/06DA19F4285EB04D0310733F4AC00107B73337AD.crl
rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/06DA19F4285EB04D0310733F4AC00107B73337AD.mft
rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 May 2024 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:de:05:76:8d:38:aa:83:8b:42:9e:c1:21:30:0f:44:f5:24:e6:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06da19f4285eb04d0310733f4ac00107b73337ad
Validity
Not Before: Jul 14 14:48:57 2023 GMT
Not After : Jul 12 14:53:57 2024 GMT
Subject: CN=DB5D0F3043D8EC05FB44BF688233DC73D9F2BA7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:20:d6:3e:f5:7d:56:ed:a6:91:28:c0:0a:3e:
56:69:d5:3d:bc:68:ec:e7:95:1d:85:7f:d6:d1:e7:
33:75:9d:91:e6:f7:29:db:74:b7:75:70:d1:a4:83:
b0:8e:3b:1e:13:98:55:d5:c9:2e:b3:cf:65:55:45:
09:ba:96:5d:f0:c9:63:d3:6e:48:d5:97:d6:a8:bf:
2e:0c:4f:23:0c:4d:03:24:59:a2:c3:e9:dd:36:1f:
a2:42:d9:d3:d9:0a:17:f7:2d:88:a4:2a:b7:6e:3e:
6b:b7:8d:7b:47:d2:fa:8e:3d:69:1f:2b:7e:75:9c:
50:0f:7f:ad:af:3d:01:63:61:48:c4:fc:3e:11:27:
7e:81:08:ef:07:dd:e6:d6:1d:fd:3c:26:ae:b5:0e:
cd:e7:d7:5d:8d:c9:4c:02:5f:25:14:a2:60:ab:cb:
dc:23:b4:2d:fd:e3:3c:6b:1c:d7:19:76:9a:52:90:
47:5a:ba:21:e0:5b:48:54:d6:49:c6:2e:d0:ba:f8:
89:2b:c4:2d:e5:89:8f:f9:cd:37:03:ad:51:86:52:
a4:40:cb:a2:b6:94:1c:1c:b6:f5:f8:25:48:4f:aa:
e4:39:7b:68:ff:70:fc:1b:a4:ce:83:eb:b3:b1:37:
c8:2c:a2:8f:82:a4:7a:13:77:cc:4a:e6:9f:db:18:
3d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:5D:0F:30:43:D8:EC:05:FB:44:BF:68:82:33:DC:73:D9:F2:BA:7B
X509v3 Authority Key Identifier:
keyid:06:DA:19:F4:28:5E:B0:4D:03:10:73:3F:4A:C0:01:07:B7:33:37:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/06DA19F4285EB04D0310733F4AC00107B73337AD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131392e302f32342d3234203d3e20323638353831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.119.0/24
Signature Algorithm: sha256WithRSAEncryption
56:79:94:0e:1d:49:82:40:71:f8:a7:90:33:3a:93:53:9b:e2:
a7:1a:fd:2c:44:2c:20:a6:b8:e2:00:22:ff:73:6a:87:eb:cd:
a4:ea:46:8c:96:8c:c1:5d:d7:ff:cc:4b:cf:b1:5d:7a:03:92:
1c:29:ce:5a:5f:55:1e:cd:e4:14:8f:cc:82:2e:8f:6e:6f:e9:
d7:de:4d:8a:73:63:1a:44:5e:7a:25:d9:b9:cb:6a:8d:9c:2e:
d6:c4:77:59:91:e6:c0:c2:d6:bf:ae:fc:b8:38:bb:00:78:dc:
15:08:78:3d:19:d7:c3:f2:19:94:75:2e:9a:ee:05:d8:e7:08:
f0:e7:2c:c8:d3:2e:1f:d3:ba:f1:94:3f:94:63:43:2a:69:11:
31:56:1d:aa:f7:7f:e9:7b:c9:9b:b0:97:78:c7:93:ca:65:06:
59:0b:75:eb:1a:13:1c:c6:ac:79:8b:31:90:ca:d2:5f:f7:f5:
bb:54:10:0b:43:2b:18:9f:ec:38:de:3a:8b:69:bf:cc:95:36:
aa:a9:70:82:c0:83:b6:32:f4:c4:b3:8a:65:0b:1b:99:95:68:
89:69:28:4b:7c:77:cf:21:0c:a1:77:60:71:50:60:7e:8d:c3:
9e:be:2d:74:bb:6b:ce:98:bc:53:92:3f:bb:0e:32:47:89:eb:
0e:54:c7:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 15:03:36 2024 by rpki-client on console-fra.rpki-client.org