Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135382e302f32342d3234203d3e203231383539.roa
File: 34352e3135352e3135382e302f32342d3234203d3e203231383539.roa (raw, json)
Hash identifier: Yh56joRgMiibQzl24+Ry5NIUUAv9vG5m6vKYckswVTk=
Subject key identifier: 5A:37:1E:B1:1D:4F:1D:DD:B7:70:04:8B:C9:4D:0D:20:09:02:DE:24
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 5BC24AAA26CBD46C348057ACAD273A452E5EDF97
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135382e302f32342d3234203d3e203231383539.roa
Signing time: Tue 19 Dec 2023 09:47:55 +0000
ROA not before: Tue 19 Dec 2023 09:42:55 +0000
ROA not after: Tue 17 Dec 2024 09:47:55 +0000
asID: 21859
IP address blocks: 45.155.158.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 16:59:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:c2:4a:aa:26:cb:d4:6c:34:80:57:ac:ad:27:3a:45:2e:5e:df:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Dec 19 09:42:55 2023 GMT
Not After : Dec 17 09:47:55 2024 GMT
Subject: CN=5A371EB11D4F1DDDB770048BC94D0D200902DE24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ec:69:93:ee:ed:ef:fa:7d:47:78:7b:a1:bf:
82:ee:c4:b3:84:d5:a9:d2:fb:3a:ba:ae:6a:47:91:
ca:eb:37:5a:fe:08:38:e0:ef:07:fc:82:21:e7:c1:
63:16:7e:4d:e4:a8:c3:5d:d9:f2:3b:47:71:a0:b9:
4c:64:4e:9c:96:11:eb:d3:06:a3:8f:13:08:84:4a:
77:34:26:f8:6b:79:73:dc:dd:ae:2e:32:d9:5f:24:
73:93:9e:e5:ed:06:72:64:d0:e8:fd:f1:32:fb:75:
1b:19:0d:42:84:56:31:61:25:ea:2e:3a:e9:df:54:
7f:4b:db:8f:1a:11:8f:c4:b2:c7:91:d8:40:13:a2:
4a:a1:9f:b4:fe:f5:c8:2d:3e:c1:f5:d1:71:fd:fe:
41:6f:48:14:cd:e0:f7:bf:65:f0:70:56:c6:ce:d9:
47:63:68:a2:1e:c6:59:1e:f7:23:eb:53:ad:b8:e1:
ec:91:08:26:11:cd:c3:38:f9:bf:13:bf:77:8b:f4:
3d:9f:46:ab:0d:7d:6e:b5:97:db:fa:e1:61:95:3a:
31:71:e4:24:e1:0c:6e:0d:8b:50:44:0a:cb:43:35:
72:95:ee:c2:d4:77:61:d3:19:cd:53:35:17:50:e0:
f3:86:14:18:cb:03:54:b2:4b:fd:aa:82:5f:11:53:
8f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:37:1E:B1:1D:4F:1D:DD:B7:70:04:8B:C9:4D:0D:20:09:02:DE:24
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135382e302f32342d3234203d3e203231383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.158.0/24
Signature Algorithm: sha256WithRSAEncryption
49:4a:6d:23:7a:62:b1:7a:11:5b:aa:40:9b:b0:c6:aa:fa:25:
e2:61:6a:ab:13:08:11:6f:b7:08:8a:10:58:a5:df:58:8f:c3:
6d:5b:3b:00:cf:06:69:8a:7c:e7:40:34:63:2f:34:57:ee:2b:
8a:20:16:85:9f:80:d3:d2:3a:4f:a1:0d:86:77:ee:8e:ed:56:
1c:6b:56:77:29:7b:16:5c:2b:31:e3:04:73:6f:85:13:f4:9c:
32:d5:15:4b:83:f4:58:1c:57:ea:1d:82:44:4c:c3:29:95:a0:
29:8b:03:ea:de:85:a7:e0:fd:b4:59:d9:d9:bd:26:3c:db:3b:
aa:a1:db:85:13:c2:0e:41:11:5a:67:66:a6:b3:29:b0:05:01:
4e:d8:ad:26:5c:8e:12:45:03:72:a4:a5:58:de:73:18:1b:ba:
de:c7:2f:fe:56:87:d7:3a:48:c0:5f:5d:22:9b:aa:04:df:40:
4a:59:90:f9:b1:a7:5b:50:03:93:90:7a:2c:ad:d9:e3:3b:a3:
5f:47:99:b5:7e:23:82:73:33:e7:ed:3b:fb:5f:bf:60:61:c3:
93:20:35:2c:c9:ba:82:79:f0:c4:67:e2:0d:38:a2:5b:7d:17:
40:36:b9:aa:97:72:af:93:c6:fc:4d:0d:76:d0:71:fd:44:11:
9c:b9:6e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 21:31:49 2024 by rpki-client on console-fra.rpki-client.org