Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131362e302f32332d3234203d3e20323131393336.roa
File: 34352e36352e3131362e302f32332d3234203d3e20323131393336.roa (raw, json)
Hash identifier: Uee3WUVeBcgfz3srVz1BSHvsm8YFM02ffbPkcBJyKxQ=
Subject key identifier: 45:0D:59:4B:D0:5A:31:BE:0C:76:A5:C4:6B:33:1F:B4:24:B2:CD:F0
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 7F5AA8C6BCA98CF95D023BD8EDE309F2D3362FB8
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131362e302f32332d3234203d3e20323131393336.roa
Signing time: Sun 29 Sep 2024 18:43:22 +0000
ROA not before: Sun 29 Sep 2024 18:38:22 +0000
ROA not after: Sun 28 Sep 2025 18:43:22 +0000
asID: 211936
IP address blocks: 45.65.116.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:5a:a8:c6:bc:a9:8c:f9:5d:02:3b:d8:ed:e3:09:f2:d3:36:2f:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Sep 29 18:38:22 2024 GMT
Not After : Sep 28 18:43:22 2025 GMT
Subject: CN=450D594BD05A31BE0C76A5C46B331FB424B2CDF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f3:3d:ad:7c:51:cc:55:51:ac:74:2a:e0:67:
2f:10:1f:5a:ed:e2:31:99:d0:ae:7a:8e:0a:b3:f5:
fc:73:40:ce:f0:ec:e5:65:0a:80:23:50:21:4b:5f:
fc:1c:45:9c:23:a6:57:94:b2:84:74:6b:14:0b:df:
e8:fc:40:df:a0:86:6e:3a:8c:08:7a:bc:50:0a:38:
41:d1:43:b5:a2:76:e6:85:a9:cd:e1:ff:37:fc:1e:
a1:7b:0f:0c:90:ef:1f:83:55:a8:30:fa:a2:8f:af:
fb:78:a7:d6:d1:da:8a:d2:94:55:11:27:6c:56:8c:
43:4a:ca:24:88:1a:6e:3b:48:91:61:1c:84:67:74:
e7:5d:cb:64:d5:8e:fe:08:c0:7c:eb:9c:3f:85:bf:
7a:bc:06:d9:a7:6f:b3:47:70:21:6d:a0:13:02:b0:
0e:1a:3d:33:14:12:b6:c8:49:1b:f8:cf:ff:02:8f:
f1:eb:7e:e9:29:e6:28:5c:fe:52:57:2c:e4:44:49:
e6:fd:6b:e6:89:e8:a4:09:c4:1f:08:e6:ba:6a:dd:
8c:b2:e9:37:d5:ec:f3:e7:db:83:c9:85:1c:e0:cd:
3c:b2:9f:7a:b0:95:f0:03:38:cf:c7:9e:5c:0d:ab:
d1:bd:8a:3e:77:4d:2b:ec:7a:1d:13:44:69:f7:4e:
2c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:0D:59:4B:D0:5A:31:BE:0C:76:A5:C4:6B:33:1F:B4:24:B2:CD:F0
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131362e302f32332d3234203d3e20323131393336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.116.0/23
Signature Algorithm: sha256WithRSAEncryption
73:f0:a0:67:d8:14:80:d5:7e:85:0a:8b:ad:77:a0:2c:5e:65:
8c:83:fe:a2:01:1f:c2:ef:46:88:6c:54:56:82:98:5b:a2:0b:
8c:2b:e0:9b:62:83:d4:08:6b:81:5d:fb:3a:dc:f6:69:c3:5e:
ae:5c:ee:36:4a:6b:ff:26:bd:a2:2d:7e:a3:75:1f:09:46:72:
fa:7c:87:38:91:47:e1:7a:26:9e:c3:b5:07:30:0e:45:da:f2:
5a:a8:5d:db:ca:fa:37:18:3c:ab:97:78:a4:ab:2d:84:c5:af:
28:de:8e:fb:0a:a4:04:8f:bc:b6:8c:d8:5e:64:68:0a:b5:ad:
79:26:0f:18:1e:f2:41:75:c5:67:5a:ea:93:aa:45:65:5b:c0:
d9:08:4e:85:5b:5d:13:dc:15:ab:2a:81:64:bd:cc:7c:39:fc:
ce:ae:8e:d0:fa:63:93:34:7b:e4:65:4a:90:fa:23:4d:a3:b9:
55:2c:97:0e:3f:93:df:14:73:14:96:ac:1c:8e:19:db:b9:b8:
73:98:95:92:7c:af:2d:cd:71:a7:48:37:11:a9:30:08:0d:f1:
f7:ae:07:48:6f:5c:a5:bf:2f:d0:ed:09:6f:dc:1e:3f:64:34:
d3:a7:65:05:ac:26:d1:04:7d:70:6f:43:4f:1b:06:96:ac:4e:
f1:d8:bd:de
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUf1qoxrypjPldAjvY7eMJ8tM2L7gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjJmYmQyY2MwMDEyZmIyZjg2ZGI0MGI1ODliZDFhYzRl
OTczMjY2ZDAeFw0yNDA5MjkxODM4MjJaFw0yNTA5MjgxODQzMjJaMDMxMTAvBgNV
BAMTKDQ1MEQ1OTRCRDA1QTMxQkUwQzc2QTVDNDZCMzMxRkI0MjRCMkNERjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU8z2tfFHMVVGsdCrgZy8QH1rt
4jGZ0K56jgqz9fxzQM7w7OVlCoAjUCFLX/wcRZwjpleUsoR0axQL3+j8QN+ghm46
jAh6vFAKOEHRQ7WiduaFqc3h/zf8HqF7DwyQ7x+DVagw+qKPr/t4p9bR2orSlFUR
J2xWjENKyiSIGm47SJFhHIRndOddy2TVjv4IwHzrnD+Fv3q8Btmnb7NHcCFtoBMC
sA4aPTMUErbISRv4z/8Cj/Hrfukp5ihc/lJXLORESeb9a+aJ6KQJxB8I5rpq3Yyy
6TfV7PPn24PJhRzgzTyyn3qwlfADOM/HnlwNq9G9ij53TSvseh0TRGn3TixpAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQURQ1ZS9BaMb4MdqXEazMftCSyzfAwHwYDVR0j
BBgwFoAUYvvSzAAS+y+G20C1ib0axOlzJm0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNDZiOTNkZjAtYWM4ZC00ZGE4LWFmYjgtZGNiN2YyODg4
MzYyLzAvNjJGQkQyQ0MwMDEyRkIyRjg2REI0MEI1ODlCRDFBQzRFOTczMjY2RC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1l2dlN6QUFTLXktRzIwQzFpYjBheE9s
ekptMC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNDZiOTNkZjAt
YWM4ZC00ZGE4LWFmYjgtZGNiN2YyODg4MzYyLzAvMzQzNTJlMzYzNTJlMzEzMTM2
MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzIzMTMxMzkzMzM2LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
LUF0MA0GCSqGSIb3DQEBCwUAA4IBAQBz8KBn2BSA1X6FCoutd6AsXmWMg/6iAR/C
70aIbFRWgphboguMK+CbYoPUCGuBXfs63PZpw16uXO42Smv/Jr2iLX6jdR8JRnL6
fIc4kUfheiaew7UHMA5F2vJaqF3byvo3GDyrl3ikqy2Exa8o3o77CqQEj7y2jNhe
ZGgKta15Jg8YHvJBdcVnWuqTqkVlW8DZCE6FW10T3BWrKoFkvcx8OfzOro7Q+mOT
NHvkZUqQ+iNNo7lVLJcOP5PfFHMUlqwcjhnbubhzmJWSfK8tzXGnSDcRqTAIDfH3
rgdIb1ylvy/Q7Qlv3B4/ZDTTp2UFrCbRBH1wb0NPGwaWrE7x2L3e
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org