Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134302e302f32342d3234203d3e20313531383732.roa
File: 34352e3134382e3134302e302f32342d3234203d3e20313531383732.roa (raw, json)
Hash identifier: anS9Ru8NcQX3eApYB6OXEklw2g71WIQSJGYSFU6XTrM=
Subject key identifier: B1:BA:7F:B2:B2:8C:25:EA:91:73:53:15:DF:B9:94:CF:F3:8B:A9:4F
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 11F642F38E2217D1A09ECAC6CBC4C38C6C990CD8
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134302e302f32342d3234203d3e20313531383732.roa
Signing time: Thu 23 May 2024 13:26:52 +0000
ROA not before: Thu 23 May 2024 13:21:52 +0000
ROA not after: Thu 22 May 2025 13:26:52 +0000
asID: 151872
IP address blocks: 45.148.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:f6:42:f3:8e:22:17:d1:a0:9e:ca:c6:cb:c4:c3:8c:6c:99:0c:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: May 23 13:21:52 2024 GMT
Not After : May 22 13:26:52 2025 GMT
Subject: CN=B1BA7FB2B28C25EA91735315DFB994CFF38BA94F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:40:e2:7b:90:bc:5c:3d:0a:6d:ac:b0:79:37:
c2:80:98:61:0d:cc:8d:84:7e:ad:f6:16:51:91:8c:
36:05:f4:f7:00:93:2f:29:b4:bc:d7:81:d6:ba:f5:
12:96:62:93:7c:5b:a3:fd:c5:1a:b6:e4:96:64:bf:
e3:e9:c5:fc:c8:70:a4:29:8d:20:27:60:e7:0a:87:
ab:16:9e:dc:3a:24:07:35:76:61:ab:d9:05:9e:25:
4b:b2:b8:4a:b4:d9:ff:6c:20:6a:24:a8:22:ad:eb:
89:34:05:31:5c:df:e1:2c:41:f6:d6:81:70:3c:1c:
a7:a2:cb:59:26:7b:9a:f1:f9:90:49:64:ba:43:68:
d5:d7:cd:54:5d:c3:36:3b:3c:b4:38:9b:4e:4c:87:
b4:6d:cd:e0:4e:f7:74:15:0d:d7:9f:ca:09:03:b4:
7f:41:e5:e5:89:8a:2d:40:5e:e1:60:16:6e:71:25:
91:af:04:51:1e:2c:45:98:42:19:1e:f7:72:79:c3:
69:de:86:05:86:47:64:65:9f:b7:89:35:07:6a:95:
f9:1f:78:df:f9:0d:03:60:23:10:96:4f:4c:96:9c:
47:25:a2:aa:5b:28:2d:3c:f6:d4:f1:12:62:fd:31:
06:9b:70:6d:a3:a1:6f:22:20:33:2b:7b:39:35:61:
a9:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:BA:7F:B2:B2:8C:25:EA:91:73:53:15:DF:B9:94:CF:F3:8B:A9:4F
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3134382e3134302e302f32342d3234203d3e20313531383732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.140.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:b6:eb:99:f8:b5:f9:72:4b:88:34:7b:a5:51:ca:57:74:79:
5c:1f:cc:c2:a0:82:0f:17:62:dd:be:85:87:13:05:f5:7c:2c:
32:40:2f:3d:73:1d:88:ae:a1:a8:50:11:27:99:05:03:30:b0:
c8:f9:3c:df:26:59:5a:5b:57:bb:af:e2:17:37:3b:3c:b7:46:
9b:91:ad:c4:6d:34:65:ef:00:6b:83:30:16:cc:a1:b7:f7:ad:
89:fd:54:83:de:5c:fa:a7:9a:cd:19:97:dc:e6:ff:18:e8:5c:
e5:5f:f4:ac:07:b0:e4:07:29:a7:8a:a2:dd:ba:83:30:1a:a5:
27:5b:33:c6:68:b9:84:af:82:a9:9f:c6:f6:e0:68:89:57:27:
63:c1:9a:e3:a0:a7:2d:f9:45:5f:7e:4c:89:47:f2:3a:b5:ae:
82:94:a6:10:d9:5d:97:97:5e:6b:a1:5e:93:c8:e3:2a:f8:95:
cf:a4:99:b5:a5:85:bd:77:bf:69:50:e3:26:aa:6e:14:bf:ae:
57:86:ef:39:85:20:2a:b4:3f:ba:cf:6f:96:39:43:3c:41:4b:
2e:e7:1d:70:63:61:fd:ad:c4:7c:f6:ff:ce:9f:56:20:48:e8:
5b:18:e6:ab:a9:1b:e6:c6:c6:f5:02:b4:1f:b9:e4:a6:87:8b:
d3:c2:4d:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org