Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/34352e3134362e3138382e302f32322d3232203d3e203630343538.roa
File: 34352e3134362e3138382e302f32322d3232203d3e203630343538.roa (raw, json)
Hash identifier: aBI6+D/J+MdhF6uecPlGlIq1TzVBNlfqV5G1bBlB5gA=
Subject key identifier: 33:7E:45:77:BA:3C:49:BE:BC:B6:22:4C:92:A2:74:97:62:72:8B:BD
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 5637837A1F29EAA5E7DAD61F05B7027C983AB48C
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/34352e3134362e3138382e302f32322d3232203d3e203630343538.roa
Signing time: Mon 03 Jul 2023 05:41:58 +0000
ROA not before: Mon 03 Jul 2023 05:36:58 +0000
ROA not after: Mon 01 Jul 2024 05:41:58 +0000
asID: 60458
IP address blocks: 45.146.188.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:37:83:7a:1f:29:ea:a5:e7:da:d6:1f:05:b7:02:7c:98:3a:b4:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jul 3 05:36:58 2023 GMT
Not After : Jul 1 05:41:58 2024 GMT
Subject: CN=337E4577BA3C49BEBCB6224C92A2749762728BBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:29:ac:03:7f:10:d7:f1:96:6e:0a:00:e8:29:
b5:ef:3d:5f:3b:ba:08:2a:41:9e:18:28:a6:48:36:
3a:7f:b3:3b:2a:4a:d7:39:12:53:ec:15:b8:95:03:
ee:b2:ed:67:56:14:73:07:75:e5:0f:fa:e5:03:b2:
82:8b:4f:57:d2:fe:e3:b7:38:86:b3:47:3b:1d:9f:
82:c8:82:16:30:bf:91:7c:bf:38:cb:f9:db:86:57:
6c:75:34:34:e6:83:b1:33:0c:1a:27:84:37:4c:64:
14:68:d0:01:dd:aa:9b:e9:f3:e9:be:a6:5c:8b:aa:
56:c6:86:63:90:58:3c:5b:9d:fe:14:1e:a3:2c:c8:
88:a7:be:36:f6:02:17:38:19:26:a4:62:0f:a7:e0:
e4:03:53:7d:91:48:a6:f0:7c:a5:b0:76:b1:30:a3:
67:49:c3:2d:8d:3e:02:8a:00:b1:98:51:f4:59:2b:
64:4b:e1:41:01:be:6f:4d:c8:c8:dc:e0:05:43:f5:
28:a6:55:42:fc:94:03:b9:82:dc:31:94:d0:46:0c:
30:0e:57:6c:04:f6:8c:4d:9e:73:e5:1b:40:88:8d:
84:86:01:95:02:0b:4c:69:3c:e1:ed:5f:ea:56:d1:
b3:52:06:5b:10:75:21:29:b1:f3:af:f2:b1:bf:be:
9e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:7E:45:77:BA:3C:49:BE:BC:B6:22:4C:92:A2:74:97:62:72:8B:BD
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/34352e3134362e3138382e302f32322d3232203d3e203630343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.188.0/22
Signature Algorithm: sha256WithRSAEncryption
17:4d:41:f8:dd:3a:85:13:e6:53:25:9f:a9:67:b6:1b:87:b2:
b5:7e:33:4e:18:e7:47:be:3f:8b:5d:cd:2a:85:b9:86:0a:64:
8c:61:6e:a2:d8:fb:a7:e9:cc:04:ed:a6:18:7b:82:40:48:15:
08:17:c5:40:d4:0f:ec:28:60:7a:95:1d:69:91:bd:75:2c:92:
a5:4b:90:00:c3:1b:b5:c2:56:bb:c6:fe:41:d3:97:28:db:e8:
c9:bc:9a:b1:c0:5a:0a:79:05:77:c8:2c:a7:84:17:4e:d8:15:
59:8c:a5:fb:e3:2b:bc:f6:8a:ed:55:e2:8f:f4:c9:a8:3e:36:
c6:15:e5:b7:40:76:22:c1:fd:fc:01:e4:08:c3:fb:72:5d:dc:
c1:40:6e:67:6e:3e:cd:98:d0:43:46:2f:00:5e:11:c3:bf:8d:
3a:a9:9c:8c:ed:e4:6f:d2:86:03:47:7e:6f:6c:c8:30:0b:6e:
a4:02:60:7c:71:21:c1:a8:df:26:15:5c:94:ba:43:07:01:6e:
64:b7:ff:dc:b4:ed:c0:9f:76:d9:05:c4:7b:35:a1:68:eb:d2:
35:93:fa:f9:34:ec:22:75:42:1a:6f:4a:55:4b:47:bf:8e:dc:
18:d7:7a:43:94:20:9d:ac:eb:8f:7d:8b:62:d1:38:28:9b:26:
25:53:05:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 01:02:59 2024 by rpki-client on console-ams.rpki-client.org