Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135372e302f32342d3234203d3e20343030303331.roa
File: 34352e3135352e3135372e302f32342d3234203d3e20343030303331.roa (raw, json)
Hash identifier: i4QbSuo5HPJU5DaTRCaJwi9bqTvPF8Pa36ysSuTNV8k=
Subject key identifier: 53:F6:84:5C:0D:53:0A:62:07:79:7D:39:3D:11:1E:3E:ED:10:0D:BF
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 64A3A866651ED06F12FD1B2213B58E78A4E70600
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135372e302f32342d3234203d3e20343030303331.roa
Signing time: Wed 20 Nov 2024 07:43:28 +0000
ROA not before: Wed 20 Nov 2024 07:38:28 +0000
ROA not after: Wed 19 Nov 2025 07:43:28 +0000
asID: 400031
IP address blocks: 45.155.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:a3:a8:66:65:1e:d0:6f:12:fd:1b:22:13:b5:8e:78:a4:e7:06:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Nov 20 07:38:28 2024 GMT
Not After : Nov 19 07:43:28 2025 GMT
Subject: CN=53F6845C0D530A6207797D393D111E3EED100DBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d8:13:5c:98:83:43:1f:52:07:1b:30:74:5a:
3d:0d:e6:69:22:6c:e5:50:4e:c5:12:44:1a:37:5a:
0d:92:21:53:76:7f:07:e2:cb:cb:f2:91:3f:fd:85:
4f:15:a4:7c:5c:8a:a6:e2:f1:03:6c:41:8a:23:e6:
28:94:be:49:b3:0c:f6:bc:72:12:47:43:4c:c7:34:
56:7b:3f:40:9f:61:39:0e:78:91:95:46:ce:e7:50:
c9:8a:28:81:a9:21:f3:ea:cc:cb:b7:ba:16:95:d2:
a7:d0:cf:e4:1d:14:25:60:35:d0:97:a6:51:7b:16:
34:35:e1:53:7a:71:bf:35:5d:cd:05:45:4e:3e:9e:
f8:60:90:ef:a1:cc:8c:32:19:bd:e6:e3:04:99:00:
5b:b4:ed:76:4f:ea:20:55:41:34:32:99:f0:bc:6e:
f3:18:98:27:86:9b:52:cf:f8:6f:af:d1:2e:75:80:
98:fe:c4:18:0b:f0:0f:50:8c:b1:b0:79:73:32:95:
ca:ef:a0:3c:41:e6:e7:ff:b4:2d:19:c1:15:ab:f1:
57:d0:c7:a2:e1:01:81:54:15:db:fe:05:2c:0e:d9:
ca:4d:f9:d8:2d:9a:c1:a2:56:01:70:ee:47:33:ac:
fb:a7:f2:6d:34:aa:b9:0b:cc:55:6c:1a:0a:81:6c:
53:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F6:84:5C:0D:53:0A:62:07:79:7D:39:3D:11:1E:3E:ED:10:0D:BF
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135372e302f32342d3234203d3e20343030303331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.157.0/24
Signature Algorithm: sha256WithRSAEncryption
d8:52:da:58:62:fa:c4:32:e2:92:c3:37:be:96:08:4b:52:24:
7d:f6:86:c8:58:74:8a:96:85:c9:62:e3:89:e2:98:c9:89:f1:
f0:e8:c8:06:d7:15:4d:93:a3:dc:b7:a4:19:37:7e:39:11:a0:
f7:94:50:c4:c5:b2:b1:92:34:15:93:79:48:8f:07:d9:13:61:
78:f4:32:2b:70:25:e5:cf:18:30:5d:ea:86:45:3f:1d:18:77:
f6:1d:73:69:ff:2c:ff:25:ee:c9:45:8b:07:41:8a:4d:ae:33:
07:aa:9e:06:b5:dd:ec:9e:33:81:fc:35:64:01:96:fc:c7:e4:
f6:09:92:a6:26:f6:93:b9:c8:d3:d5:02:28:ee:1a:25:84:16:
84:a1:b0:a9:98:68:5a:2e:e2:30:e6:33:aa:6b:82:56:63:91:
72:7a:9d:85:46:28:14:de:1e:20:d8:17:fa:80:42:45:18:aa:
7f:ba:0c:f3:58:26:70:0e:1c:6c:ad:00:b3:e3:8d:ad:79:a7:
95:02:3d:67:5c:98:33:bd:6a:0a:fd:cb:97:ac:23:f6:35:e0:
e7:dc:9f:72:bb:23:5a:cb:74:3e:7c:18:e8:00:f2:1b:1f:da:
8e:91:cf:34:52:20:08:fa:33:83:59:f5:1a:a1:ba:3e:e4:a0:
77:56:7d:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:44:00 2024 by rpki-client on console-fra.rpki-client.org