Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135392e302f32342d3234203d3e203438363738.roa
File: 34352e3135352e3135392e302f32342d3234203d3e203438363738.roa (raw, json)
Hash identifier: RbUwdkIrO2AltI9efos5X5Dg3hjicppAbl8SWXeheug=
Subject key identifier: E7:12:02:BB:F0:02:62:54:A9:A7:6A:01:8C:6D:1E:3A:EE:5C:A0:1F
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 7E47AEB08AFE05DBE8BFA9C042D564697E5421CF
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135392e302f32342d3234203d3e203438363738.roa
Signing time: Fri 06 Dec 2024 15:56:10 +0000
ROA not before: Fri 06 Dec 2024 15:51:10 +0000
ROA not after: Fri 05 Dec 2025 15:56:10 +0000
asID: 48678
IP address blocks: 45.155.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 14:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:47:ae:b0:8a:fe:05:db:e8:bf:a9:c0:42:d5:64:69:7e:54:21:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Dec 6 15:51:10 2024 GMT
Not After : Dec 5 15:56:10 2025 GMT
Subject: CN=E71202BBF0026254A9A76A018C6D1E3AEE5CA01F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:46:9e:2d:04:76:9b:60:54:3c:e7:0c:23:c8:
e8:9c:ac:0a:6e:93:b4:9c:cd:f0:58:c1:00:8b:11:
2d:c2:99:58:61:5a:26:32:50:75:09:59:35:8c:40:
02:d5:99:82:a8:35:61:a1:9d:2f:d0:38:3f:c1:9c:
61:1e:37:11:e9:37:07:21:48:59:5b:e1:67:3a:03:
27:23:20:18:da:9f:ce:30:c4:97:35:ed:f8:7b:c9:
91:30:82:33:b6:5d:ba:34:48:57:1b:0d:41:e1:37:
0c:82:22:ba:ff:d3:3b:b6:8f:d8:d6:31:f6:58:a1:
ef:3d:d2:c8:f2:8a:72:d7:f7:e2:08:7e:c4:eb:76:
07:78:52:4f:34:61:91:f0:c0:c6:ae:cf:f3:1d:02:
ad:b2:d4:64:b9:a2:e3:9d:b9:88:00:d6:87:8c:27:
00:29:00:cd:05:f4:fb:de:52:a0:8b:e1:57:ba:88:
50:ed:d1:7b:e0:5b:6c:c8:91:e1:57:72:37:44:c7:
66:61:72:42:98:54:d9:e5:b8:69:92:2d:ee:84:04:
60:9c:2d:84:99:57:00:e9:dc:c8:c9:b5:e2:9d:02:
89:0f:d2:b7:8c:ab:0c:ca:75:8c:09:b6:24:4b:60:
fb:a4:52:6b:47:47:ab:7b:0b:bd:2c:6d:ca:43:30:
11:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:12:02:BB:F0:02:62:54:A9:A7:6A:01:8C:6D:1E:3A:EE:5C:A0:1F
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e3135352e3135392e302f32342d3234203d3e203438363738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.159.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:ff:80:ec:80:46:4e:66:5b:ba:a4:b5:d7:09:98:6e:e0:64:
98:fc:f7:b6:25:f8:09:2c:22:30:04:c1:58:66:5c:34:ed:75:
1e:d5:ce:fc:5a:7e:b2:85:32:3c:cd:7d:1c:72:73:2b:73:2c:
8d:5e:71:cd:d5:60:2f:67:a8:dd:4c:4c:3f:ab:7d:d3:20:1f:
3a:20:ce:1f:ef:3f:77:f0:16:81:67:95:1a:d6:16:5a:30:fa:
2c:42:68:e8:a6:b3:77:ab:f0:da:cd:a6:41:c5:13:0e:da:c2:
42:a9:06:1b:f7:db:74:94:63:54:61:f2:72:64:ca:79:be:a4:
cf:c9:78:92:7b:54:a5:f1:80:10:f9:47:cf:f1:e6:cb:04:cf:
a3:19:c1:e1:d7:e1:3d:a7:74:b3:87:fb:63:d5:9b:8a:8e:df:
2b:aa:be:2f:d4:6a:cc:65:33:a2:3c:7d:51:4b:dd:3c:1a:e6:
d9:de:dd:06:63:aa:56:af:9f:bb:3c:61:96:87:6e:7e:ef:d7:
ab:54:48:d5:20:9a:a6:6e:86:65:f2:01:68:45:e7:68:20:c8:
00:e5:db:a5:3c:51:98:52:76:42:83:9a:47:b0:4b:f5:9a:8d:
3e:41:a8:be:29:05:2a:9f:e4:90:78:b6:07:3f:72:d0:05:1b:
f9:f0:de:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:31:30 2025 by rpki-client