Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131392e302f32342d3234203d3e20323732363035.roa
File: 34352e3135362e3131392e302f32342d3234203d3e20323732363035.roa (raw, json)
Hash identifier: ovZEbu/JU2ZJUt4wx2YnOhnOdtHquRONNw5yZMfXGvQ=
Subject key identifier: B0:07:D9:8B:B6:62:65:BA:37:0F:7C:1C:AC:DB:CA:C6:5E:9B:44:87
Certificate issuer: /CN=06da19f4285eb04d0310733f4ac00107b73337ad
Certificate serial: 2685B9BA1F835E4794D648A0DFA86306D87C4BF9
Authority key identifier: 06:DA:19:F4:28:5E:B0:4D:03:10:73:3F:4A:C0:01:07:B7:33:37:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131392e302f32342d3234203d3e20323732363035.roa
Signing time: Thu 14 Nov 2024 11:25:51 +0000
ROA not before: Thu 14 Nov 2024 11:20:51 +0000
ROA not after: Thu 13 Nov 2025 11:25:51 +0000
asID: 272605
IP address blocks: 45.156.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/06DA19F4285EB04D0310733F4AC00107B73337AD.crl
rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/06DA19F4285EB04D0310733F4AC00107B73337AD.mft
rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:85:b9:ba:1f:83:5e:47:94:d6:48:a0:df:a8:63:06:d8:7c:4b:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06da19f4285eb04d0310733f4ac00107b73337ad
Validity
Not Before: Nov 14 11:20:51 2024 GMT
Not After : Nov 13 11:25:51 2025 GMT
Subject: CN=B007D98BB66265BA370F7C1CACDBCAC65E9B4487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bb:fe:87:93:8b:31:35:4d:2c:39:53:f4:5b:
b2:1b:09:60:c0:f8:ec:0d:9a:cc:f2:f7:59:3f:17:
9f:65:50:b4:8a:40:7a:a8:86:42:60:14:81:e8:23:
ca:e5:e0:b8:07:4e:5b:07:87:7b:7f:89:3a:29:08:
24:9b:bb:00:60:86:31:6f:bd:c1:53:f6:ee:97:b8:
e9:75:bc:c9:d4:e0:9b:e2:73:08:b1:c3:d0:ed:06:
23:74:6c:9f:c3:ba:a9:ae:dd:b7:fa:a9:76:e7:b5:
bb:00:fe:76:9d:90:cc:4b:e9:bd:f3:b2:2c:7e:b5:
a6:c3:cb:c8:6f:7e:88:70:3b:b1:91:2b:1e:22:b8:
67:49:18:d9:c5:f1:f1:ec:24:ff:23:30:38:1b:af:
22:38:bf:0d:8e:10:04:4b:11:ba:e1:d3:76:72:64:
f7:07:64:52:b4:27:e3:ba:ee:fa:82:3f:8d:80:20:
89:02:2f:b3:eb:c1:f4:20:04:32:fd:3f:bc:71:5e:
5a:6c:ed:d9:56:87:00:13:45:32:44:95:67:bd:4c:
47:08:13:89:63:d1:d3:b6:ba:02:60:1b:3e:15:04:
37:35:68:92:33:ee:7f:51:c7:85:c2:b6:80:ae:1b:
02:f9:16:8a:8b:bb:ce:79:f6:42:65:21:68:6b:39:
5c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:07:D9:8B:B6:62:65:BA:37:0F:7C:1C:AC:DB:CA:C6:5E:9B:44:87
X509v3 Authority Key Identifier:
keyid:06:DA:19:F4:28:5E:B0:4D:03:10:73:3F:4A:C0:01:07:B7:33:37:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/06DA19F4285EB04D0310733F4AC00107B73337AD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BtoZ9ChesE0DEHM_SsABB7czN60.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/370be6cd-25d2-4f8b-88a4-b5109f49462d/1/34352e3135362e3131392e302f32342d3234203d3e20323732363035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.119.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:f5:dd:46:fd:46:b7:47:3b:3c:35:c3:42:28:78:91:f3:57:
f8:08:78:9c:bb:9b:50:12:2a:d6:90:4e:0f:ec:2f:76:72:18:
0c:2a:21:2f:ed:ea:c3:bb:2f:bb:6f:86:be:dd:c7:f4:59:a9:
65:c5:05:27:6e:42:6f:af:73:98:95:7c:89:b2:1b:2d:db:6a:
01:ad:af:11:40:d6:df:ed:e9:b2:e5:23:54:d8:3d:f4:e9:e6:
4d:a4:d6:02:9c:66:4d:50:8d:cd:54:e7:b9:3d:92:e0:41:a2:
80:fc:05:f0:61:25:c7:76:92:d9:71:41:14:67:2f:ca:ab:6f:
09:78:99:9e:43:e0:65:71:e6:2e:7f:13:6f:5c:e3:cd:53:e5:
58:fe:1f:fc:b6:8e:6f:86:e2:b9:80:4f:29:6f:5a:22:67:e4:
b5:03:8a:28:92:a0:fb:e0:7f:17:e8:f3:98:2d:b3:7d:34:33:
08:da:aa:ef:a3:c7:7a:ce:8e:e0:02:e3:38:9f:cc:7d:ab:06:
57:5f:dd:8d:45:b2:a8:24:ab:cf:20:45:3a:fb:6d:9f:88:67:
9d:b8:ef:26:08:c4:b5:e8:ed:4e:d1:69:81:14:bc:c9:90:b7:
8c:09:be:bf:a1:22:5e:0a:e7:8b:8a:45:db:cd:03:84:36:cc:
cd:83:a0:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:14:19 2024 by rpki-client on console-ams.rpki-client.org