Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/34352e3134332e3134382e302f32322d3232203d3e203630343538.roa
File: 34352e3134332e3134382e302f32322d3232203d3e203630343538.roa (raw, json)
Hash identifier: 3BkEQkW46jMqyo/nz4IDBICzW8j+Eb9YYj7VOUzIBxU=
Subject key identifier: B1:A4:31:C5:FF:E7:57:FC:E6:5B:EB:7E:55:7D:07:1A:00:36:42:B4
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 0C0969D0100F01FAA174DC51B9A4FC89AAC8EB3D
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/34352e3134332e3134382e302f32322d3232203d3e203630343538.roa
Signing time: Mon 03 Jul 2023 05:42:03 +0000
ROA not before: Mon 03 Jul 2023 05:37:03 +0000
ROA not after: Mon 01 Jul 2024 05:42:03 +0000
asID: 60458
IP address blocks: 45.143.148.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 20:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:09:69:d0:10:0f:01:fa:a1:74:dc:51:b9:a4:fc:89:aa:c8:eb:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jul 3 05:37:03 2023 GMT
Not After : Jul 1 05:42:03 2024 GMT
Subject: CN=B1A431C5FFE757FCE65BEB7E557D071A003642B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fb:01:3e:a8:5f:56:d8:75:0c:cc:70:0f:92:
55:56:e5:77:70:fd:a5:d9:7a:32:3e:0a:45:1c:12:
2a:04:59:ca:ca:b8:d6:a0:b1:69:15:6d:5c:2b:48:
6e:65:9b:d2:78:0c:68:34:13:68:f5:f1:4f:fa:79:
91:45:18:1f:51:08:c5:42:00:7a:46:35:40:78:d3:
7f:e6:da:44:65:ae:3c:cd:68:5e:71:7f:d7:1a:3e:
e4:9c:89:b4:79:28:93:4a:ad:79:67:57:22:1e:c1:
ed:4d:79:b3:18:12:6b:de:2d:ee:5a:f6:7a:85:c7:
be:01:5c:13:91:af:48:0b:5c:cf:57:29:e7:03:d6:
39:f4:90:9d:de:4c:6b:6c:23:8b:3a:26:3a:73:78:
8c:07:12:d3:a1:cb:c7:cd:13:fa:60:4e:98:57:dd:
ff:7c:20:69:b5:db:f8:fb:7f:c6:15:53:81:7a:b9:
0c:bf:77:65:91:67:dd:e4:61:ae:bb:e1:6e:00:2b:
c3:c9:45:d2:83:d9:3e:62:a7:84:61:95:67:f0:f3:
60:3d:7e:8d:67:89:cf:d9:86:eb:55:04:34:a3:ea:
53:7f:84:cb:24:79:85:5b:81:97:c5:be:e9:45:08:
23:cb:04:69:36:7f:4e:22:27:2b:6a:ee:31:9d:f2:
88:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:A4:31:C5:FF:E7:57:FC:E6:5B:EB:7E:55:7D:07:1A:00:36:42:B4
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/34352e3134332e3134382e302f32322d3232203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.148.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:70:58:a0:f1:07:06:2b:78:58:b2:b7:f2:16:58:e0:bb:8f:
13:4f:fa:33:a6:48:7e:bd:81:63:53:c5:89:60:62:e1:e5:b0:
f2:c7:6a:d4:00:67:7c:ad:95:ad:78:5b:6d:0a:33:f5:d4:fe:
8e:6c:e4:a5:0b:aa:aa:bb:01:79:10:8b:fe:8a:51:aa:61:02:
e5:ab:a5:5f:95:a5:f0:60:58:ba:35:b5:d6:a7:2a:a0:f4:21:
9b:52:08:b0:5e:36:df:e1:68:8c:81:09:f0:8d:d5:bf:be:af:
d2:94:d5:b8:6a:36:0f:ff:fd:95:73:07:ab:f0:d3:0d:85:8d:
de:4c:fe:95:c2:30:c5:40:66:1a:ad:bd:62:3e:2e:8f:71:b7:
06:69:0f:94:6a:2c:13:01:c9:d2:93:20:66:47:41:67:6c:df:
ef:35:b1:0f:49:b9:af:22:ed:34:f3:35:d9:c4:02:2f:6e:2d:
ea:20:dc:bd:7f:f9:98:35:dd:b9:b6:c6:d5:11:46:0c:c2:87:
3f:08:70:f8:69:ea:ae:eb:ea:53:ad:dc:40:bb:60:06:16:ef:
a7:de:a5:cb:c8:dc:d2:63:d6:50:c0:c6:07:83:69:6d:c1:ea:
7c:98:3e:2c:2c:72:ca:dc:f4:9f:97:ee:f6:21:da:7e:62:d4:
53:75:e1:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 05:30:57 2024 by rpki-client on console-ams.rpki-client.org