Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135382e302f32342d3234203d3e203231383539.roa
File: 34352e3135352e3135382e302f32342d3234203d3e203231383539.roa (raw, json)
Hash identifier: AyYvQvycZlHfWFu3AAunK3MzEKgW3eNMpD49cWKBJPQ=
Subject key identifier: 8F:82:11:8C:63:70:F2:F4:FD:21:71:CD:7A:28:7B:69:2B:3B:9B:CE
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 0523F9F66C106AC5977D0191A41A7E371B0F47F7
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135382e302f32342d3234203d3e203231383539.roa
Signing time: Tue 19 Nov 2024 10:43:28 +0000
ROA not before: Tue 19 Nov 2024 10:38:28 +0000
ROA not after: Tue 18 Nov 2025 10:43:28 +0000
asID: 21859
IP address blocks: 45.155.158.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:23:f9:f6:6c:10:6a:c5:97:7d:01:91:a4:1a:7e:37:1b:0f:47:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Nov 19 10:38:28 2024 GMT
Not After : Nov 18 10:43:28 2025 GMT
Subject: CN=8F82118C6370F2F4FD2171CD7A287B692B3B9BCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:09:0f:11:18:95:c3:68:4b:9a:7f:c8:9a:36:
98:1b:bf:dc:ad:0b:2a:5e:0f:ed:cd:02:ee:72:0e:
8f:59:2d:d8:f7:32:35:af:5d:84:ff:df:86:bf:11:
4d:df:c6:9d:79:2a:89:fd:1a:ed:cc:20:de:6b:60:
f8:4e:cb:28:7e:11:69:03:c3:ca:bd:6c:f6:d9:84:
07:c6:08:fb:7e:bd:27:47:f0:89:ac:ad:8c:1f:d1:
f1:f3:2a:8c:f9:c9:84:ee:73:ee:8a:b5:03:1d:67:
33:e8:b6:d4:76:93:0c:f5:5e:bb:d5:ec:16:c3:36:
6f:58:b2:13:9f:c7:3a:5c:dd:48:a8:ca:23:4a:25:
b8:b3:d5:97:6d:9e:f7:53:c1:fe:cf:ab:57:73:d9:
0c:03:bb:28:62:96:d2:e0:04:4c:63:09:3b:2d:3f:
58:c4:9e:fe:a9:17:6a:65:3a:ea:03:59:a7:55:cd:
e8:0f:0c:d5:63:49:4d:4f:d7:aa:95:91:b5:b5:90:
4b:52:6f:f9:c4:c0:48:b3:0c:f6:aa:d9:35:73:e6:
4a:c9:19:d6:a5:c0:d0:53:1c:8c:11:f8:06:fc:a1:
c4:0c:b2:d5:07:bf:c9:c9:1e:06:7d:7e:48:84:5f:
e2:0d:1d:66:9a:c4:12:66:64:c2:3d:db:a7:b4:e4:
da:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:82:11:8C:63:70:F2:F4:FD:21:71:CD:7A:28:7B:69:2B:3B:9B:CE
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135382e302f32342d3234203d3e203231383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.158.0/24
Signature Algorithm: sha256WithRSAEncryption
be:d0:d3:bd:e2:ee:d7:ae:1d:90:ed:0e:cd:db:36:de:e2:6e:
80:26:04:c1:2b:48:b9:53:b3:be:3a:e9:fb:a1:85:cc:29:36:
5d:d3:7f:8b:7e:05:98:3d:3e:3e:03:81:42:9b:7e:20:cc:ee:
0d:b8:0c:fe:6b:ea:43:db:1c:c2:1c:c5:21:8c:db:6b:67:d5:
ee:17:13:27:5b:be:87:cb:2b:fd:3d:c7:5a:08:6c:5e:7b:d7:
ff:aa:ff:dc:b2:95:4f:76:16:a2:22:6a:51:d3:1b:c6:09:b1:
a6:95:df:1e:e4:d5:e9:9a:89:48:b8:ea:fc:bb:93:dd:99:f2:
7f:69:a9:e5:6d:58:2a:17:f8:e6:78:3d:68:96:c8:20:e0:97:
be:d3:d9:b7:1d:2e:aa:8c:cd:2d:d6:29:98:95:c0:11:7a:1f:
ce:d7:c4:40:50:a2:49:5c:41:c4:35:03:0a:ac:3a:bb:36:1e:
27:ba:52:50:a9:94:c1:c6:0c:fa:b6:f3:75:3c:2d:63:eb:43:
ba:68:41:01:50:ac:ff:bd:25:02:6e:c4:fa:92:56:cf:b4:60:
16:af:bf:30:92:70:52:20:87:5f:e6:a5:93:5b:78:0c:c7:cd:
63:fa:a1:59:d2:4e:94:14:85:a3:f6:42:9e:ad:df:db:2a:a4:
22:45:e5:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org