Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131392e302f32342d3234203d3e20333937363330.roa
File: 34352e36352e3131392e302f32342d3234203d3e20333937363330.roa (raw, json)
Hash identifier: 0oMoN6QnpBC12n2LpP4ZWGRR1hPhiKzmB9NlEJhhW+E=
Subject key identifier: B8:A2:F2:19:E5:9E:CA:54:A7:3F:75:3B:F7:9D:1D:50:4A:5A:52:2F
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 6FB0C41590D052273A98135A3BF4730DC90CE098
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131392e302f32342d3234203d3e20333937363330.roa
Signing time: Tue 05 Mar 2024 16:31:20 +0000
ROA not before: Tue 05 Mar 2024 16:26:20 +0000
ROA not after: Tue 04 Mar 2025 16:31:20 +0000
asID: 397630
IP address blocks: 45.65.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:b0:c4:15:90:d0:52:27:3a:98:13:5a:3b:f4:73:0d:c9:0c:e0:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Mar 5 16:26:20 2024 GMT
Not After : Mar 4 16:31:20 2025 GMT
Subject: CN=B8A2F219E59ECA54A73F753BF79D1D504A5A522F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:12:46:dc:ab:86:0a:68:9a:c6:04:c6:25:73:
af:bf:d9:81:83:8f:37:6f:62:5d:d0:07:9a:76:22:
53:86:8a:63:c6:46:c1:93:74:56:f7:a6:61:d0:25:
40:ad:39:58:fe:7a:32:89:91:75:82:6e:13:97:83:
7c:56:26:a2:cc:60:2a:d4:5d:dc:51:e6:a0:53:c9:
f2:d4:2e:4d:0a:12:5b:1e:c3:72:26:a8:f3:f9:6d:
be:db:06:72:53:de:4b:21:a4:d5:94:c1:eb:84:10:
1e:d5:95:f2:05:98:d9:17:ee:56:a1:e8:0c:64:3b:
01:1d:c2:b8:f2:c8:e8:4b:83:c1:4d:32:cb:e7:fd:
5a:ef:ea:cc:d6:e2:62:e5:de:d7:be:2c:7d:dc:4d:
ee:a7:b2:08:8f:0f:f7:f8:d0:64:6b:da:b1:e8:db:
65:63:10:a3:dd:2d:90:da:ad:26:62:36:db:44:d9:
71:30:5b:5c:e4:cc:cc:ea:3b:cd:87:c5:f0:3a:24:
54:ec:95:65:07:28:fa:65:2d:4b:72:38:a7:fb:3d:
cb:43:e0:0c:97:bf:76:7a:39:a0:84:6d:a1:9c:57:
12:51:89:e6:79:2c:ee:a1:33:18:00:b5:5b:63:47:
09:63:06:c7:a9:4e:6b:5d:d1:00:d2:f3:c5:ee:60:
74:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A2:F2:19:E5:9E:CA:54:A7:3F:75:3B:F7:9D:1D:50:4A:5A:52:2F
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/34352e36352e3131392e302f32342d3234203d3e20333937363330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.119.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:ef:15:00:1b:75:67:ee:19:b7:38:b7:48:82:23:e3:7f:26:
d3:ec:30:bf:09:f2:25:02:e0:46:eb:31:0e:15:aa:0f:7c:4e:
15:d4:11:d3:35:6e:56:2d:78:8c:1c:f9:de:84:3f:6e:f4:f3:
18:9f:88:d8:91:51:f2:70:e4:dc:c3:4e:45:53:5c:b6:66:d2:
8e:9b:34:ac:fc:86:d0:4a:d5:4c:ff:32:ea:1c:31:74:d1:3a:
a4:d9:c7:b5:8d:5b:87:a5:4e:28:b0:3f:91:ec:ec:d7:43:a5:
96:f6:90:84:96:73:f4:d6:bd:5d:99:21:5c:7d:50:a3:be:58:
22:9c:1a:8d:36:79:00:54:89:c5:6c:3f:88:f9:a6:90:33:02:
7c:a2:d4:6b:57:d6:13:06:dc:6a:23:55:d1:e3:89:45:ce:92:
83:10:33:6b:06:7d:2a:5c:a6:c6:8e:06:6a:e8:a9:97:8b:76:
d8:84:af:64:04:ed:39:f2:a4:10:f4:ce:f2:51:d9:0f:15:0e:
c4:3c:3c:e7:d0:b9:a6:7c:b1:f9:86:dd:d4:9c:8c:8d:a7:8a:
a9:19:6b:98:8a:bb:75:b8:de:76:ca:d5:ad:f7:99:05:51:33:
1a:c3:59:31:6e:d6:cf:9d:f7:96:f3:9b:81:71:36:42:8d:70:
ea:d6:aa:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:44:00 2024 by rpki-client on console-fra.rpki-client.org