Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131382e302f32342d3234203d3e20343030393039.roa
File: 34352e36352e3131382e302f32342d3234203d3e20343030393039.roa (raw, json)
Hash identifier: WmRphFdXhyuh7JLckyowEd2PNXrTJ78MtCGwtW01tQA=
Subject key identifier: DF:CC:40:1D:2C:B5:05:84:7B:A9:EC:DA:33:75:04:F1:46:6B:94:33
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 219FCD5F69C56518A532362B2C54259D2757BBF0
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131382e302f32342d3234203d3e20343030393039.roa
Signing time: Thu 28 Dec 2023 13:21:36 +0000
ROA not before: Thu 28 Dec 2023 13:16:36 +0000
ROA not after: Thu 26 Dec 2024 13:21:36 +0000
asID: 400909
IP address blocks: 45.65.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 11:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:9f:cd:5f:69:c5:65:18:a5:32:36:2b:2c:54:25:9d:27:57:bb:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Dec 28 13:16:36 2023 GMT
Not After : Dec 26 13:21:36 2024 GMT
Subject: CN=DFCC401D2CB505847BA9ECDA337504F1466B9433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:05:19:42:db:e2:e4:44:07:f3:7b:4c:8f:79:
be:f0:01:a8:29:21:a0:61:00:3f:06:de:be:35:80:
be:45:cd:fc:e9:65:9d:c1:43:15:32:99:09:15:0f:
53:0e:c9:1d:7e:35:6b:2e:58:09:b3:1f:d1:f0:bc:
24:37:9f:be:22:a9:cf:fc:ab:be:2a:47:56:da:94:
c8:71:14:b3:f8:ef:f6:23:ff:18:49:45:01:08:8f:
c1:ca:38:6b:03:b6:be:90:76:7b:38:8e:f2:d6:b2:
9b:8d:18:2b:ad:70:24:7a:3e:59:f9:bb:ec:2b:3d:
f8:a0:0f:cc:35:5c:24:7e:94:fe:33:1c:53:de:76:
be:4c:71:a3:89:23:56:17:16:db:3f:eb:9e:83:18:
04:98:7b:7c:b7:ce:3e:61:0b:9a:9c:dc:d5:90:69:
40:d7:8c:b5:e7:20:b3:79:e0:e2:69:e3:2f:29:ad:
77:cf:a3:02:a1:11:42:94:15:e0:71:01:f7:b7:43:
4f:cb:2a:9f:92:21:14:0b:ad:ae:e8:10:b5:13:7d:
40:78:c4:19:83:31:7c:57:7b:c6:db:db:b4:f5:a4:
20:b9:e9:6e:f4:3a:c4:7b:a4:9d:4b:d0:f7:e9:7b:
78:30:22:e0:55:11:62:84:f0:c6:1c:54:05:6c:cf:
46:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:CC:40:1D:2C:B5:05:84:7B:A9:EC:DA:33:75:04:F1:46:6B:94:33
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131382e302f32342d3234203d3e20343030393039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.118.0/24
Signature Algorithm: sha256WithRSAEncryption
92:82:93:5a:3d:14:68:16:fd:3e:f4:38:ff:3e:0d:b0:a1:3d:
63:f9:ef:de:b3:fe:d2:cf:f0:e1:38:ce:65:d9:51:94:26:59:
95:2d:06:21:45:8d:db:d5:08:2e:2d:f2:0b:1a:ca:cb:68:06:
66:30:4b:0d:ae:2d:9a:59:1b:da:f0:5d:d4:7b:14:ba:a4:42:
37:e0:42:3c:34:07:88:0c:78:c6:99:87:c7:66:86:08:f3:13:
3d:3c:43:8b:12:32:67:49:a9:ef:41:6c:c3:6d:85:53:13:50:
3c:36:c3:b8:90:5a:0d:0e:ef:61:1d:af:4a:e7:84:69:08:e2:
e7:a8:8d:60:e1:cb:f6:af:b9:b3:99:ea:f5:fd:01:50:54:56:
7f:9c:12:f5:92:37:79:b0:ec:78:44:53:51:cc:06:a8:9c:1f:
64:a3:cb:ca:da:af:5e:dd:d7:df:f3:ae:17:43:f1:e4:82:b7:
dd:08:51:1a:20:3f:49:a8:ca:3d:33:de:e4:9f:9c:34:2e:43:
9f:fd:bc:db:ec:1e:57:c7:0a:14:f3:0a:32:41:95:bf:73:5a:
11:9d:32:5b:ee:f9:99:40:f6:fd:66:50:5b:e7:fd:c5:b9:5f:
fe:fb:6e:ef:00:2d:ce:99:5d:1f:df:8a:97:1c:0c:4d:9f:20:
b3:79:90:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 17:38:35 2024 by rpki-client on console-fra.rpki-client.org