Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131362e302f32332d3234203d3e20323131393336.roa
File: 34352e36352e3131362e302f32332d3234203d3e20323131393336.roa (raw, json)
Hash identifier: Mu91uLHTOsXyxeEOTpG23s3uO/uXVj4tMWod9s0wMhE=
Subject key identifier: C7:CB:74:F5:7F:5E:38:62:96:C9:07:D4:E8:11:79:0F:9A:11:41:59
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 31898D3BD9CF4D80AFD8D1EE6243A2FB697D11C1
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131362e302f32332d3234203d3e20323131393336.roa
Signing time: Sun 29 Oct 2023 18:33:25 +0000
ROA not before: Sun 29 Oct 2023 18:28:25 +0000
ROA not after: Sun 27 Oct 2024 18:33:25 +0000
asID: 211936
IP address blocks: 45.65.116.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 May 2024 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:89:8d:3b:d9:cf:4d:80:af:d8:d1:ee:62:43:a2:fb:69:7d:11:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Oct 29 18:28:25 2023 GMT
Not After : Oct 27 18:33:25 2024 GMT
Subject: CN=C7CB74F57F5E386296C907D4E811790F9A114159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:25:b7:eb:84:7f:cc:39:32:78:85:61:9e:0a:
67:d3:81:61:fb:2c:59:43:f1:46:8e:b3:73:bb:d8:
d9:58:d1:23:0f:b1:fa:d7:4f:8f:be:c1:c7:bd:1d:
ee:b1:5c:35:fd:0c:f6:18:b4:62:74:c7:48:02:1d:
c9:b5:28:99:83:80:02:56:56:02:24:91:a8:37:ff:
44:6e:0e:98:91:8d:bf:02:9c:19:f5:20:a5:fe:a4:
e5:19:2d:64:37:22:51:e6:fd:52:41:64:84:85:69:
95:fa:a4:9a:84:05:c6:13:c0:69:e9:ee:05:ea:6a:
1b:21:17:73:61:cb:b4:39:56:57:a1:4c:4a:e6:b1:
3b:cd:38:61:db:91:91:5e:4f:69:39:1d:3f:42:1e:
6a:fe:df:f3:4f:ce:4d:95:5b:6c:ba:8f:a6:c6:93:
07:51:6d:31:0d:61:e7:ad:79:3b:a4:d4:bf:15:86:
89:c6:7a:69:0c:da:79:be:5f:29:c6:4f:fa:d6:c2:
a3:80:22:15:e1:67:7d:f7:97:cf:68:82:5b:d9:6f:
a7:17:c4:3b:74:4a:1e:8f:77:c1:e9:86:a7:dc:2d:
c5:39:96:d7:bb:4b:4d:04:26:31:a7:c4:00:3f:c9:
d1:ae:71:b6:5d:75:8c:11:27:9d:48:f9:5e:b0:4f:
ca:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:CB:74:F5:7F:5E:38:62:96:C9:07:D4:E8:11:79:0F:9A:11:41:59
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131362e302f32332d3234203d3e20323131393336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.116.0/23
Signature Algorithm: sha256WithRSAEncryption
d9:80:ae:c4:db:74:2f:30:1a:75:ca:20:b4:7c:56:26:e8:16:
de:c4:c6:fd:bb:e9:2c:b3:d2:78:3a:e1:6e:89:8c:0a:12:04:
0b:18:1e:94:af:d4:4c:0b:c2:58:db:f4:bf:3e:4d:76:d0:a0:
2a:39:94:02:7e:ac:d9:5b:84:3e:c8:ea:0e:20:cf:ce:2c:24:
e8:28:24:8f:01:09:7f:6d:51:c6:03:53:0d:8e:e5:0b:eb:2b:
ae:95:83:0c:5f:79:73:4b:36:fb:15:c9:c7:ce:b3:1a:9d:17:
d2:2a:21:30:a2:8a:ef:94:79:48:c7:3d:9a:7c:95:cf:17:0a:
89:a9:83:cb:72:f2:14:c8:ba:de:d8:4f:c5:ea:48:1e:a8:e6:
cc:59:fb:c9:32:16:c7:59:7d:64:84:12:71:15:1d:80:19:9c:
c4:52:96:c1:80:86:5a:3e:e9:d6:45:6e:2c:e5:6f:cd:83:a3:
e3:54:02:93:d1:76:78:e2:4f:6c:43:ed:27:6d:72:7c:22:34:
5c:b7:7d:71:f3:24:76:db:e1:21:f3:c6:e3:a8:c7:8b:c9:90:
04:88:de:c9:55:f2:d0:38:48:4f:68:20:45:19:2b:af:bc:37:
31:8e:c2:7b:b5:8f:fb:b6:3e:95:4d:d6:36:30:d6:19:6d:bd:
fb:70:5f:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 12:58:30 2024 by rpki-client on console-fra.rpki-client.org