Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31322e302f32342d3234203d3e20313336353537.roa
File: 34352e3132382e31322e302f32342d3234203d3e20313336353537.roa (raw, json)
Hash identifier: L9kkwUIGESj3eDOy+HeCCkacDV00pjq/+BhpzTK3fU0=
Subject key identifier: F0:37:12:F3:D2:B5:92:87:40:32:BA:D1:FF:B8:C7:3B:01:02:6D:91
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 5F7E1DCDFC7D8C234C7BF9391D099B45B782273D
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31322e302f32342d3234203d3e20313336353537.roa
Signing time: Thu 26 Oct 2023 09:08:02 +0000
ROA not before: Thu 26 Oct 2023 09:03:02 +0000
ROA not after: Thu 24 Oct 2024 09:08:02 +0000
asID: 136557
IP address blocks: 45.128.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 May 2024 19:45:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:7e:1d:cd:fc:7d:8c:23:4c:7b:f9:39:1d:09:9b:45:b7:82:27:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Oct 26 09:03:02 2023 GMT
Not After : Oct 24 09:08:02 2024 GMT
Subject: CN=F03712F3D2B592874032BAD1FFB8C73B01026D91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:15:eb:b3:a9:3d:a7:6e:c2:9e:8d:7a:08:0f:
aa:2a:5f:db:e2:f0:c6:ee:12:ba:a0:c3:6b:63:10:
8d:42:3e:e3:cf:94:90:a4:7e:56:60:4f:86:a4:80:
cf:8e:02:e7:fd:dc:de:49:b3:2a:95:ff:34:18:64:
83:60:4a:ca:94:cd:8f:17:5f:8a:40:a3:8e:e1:ad:
7d:90:58:98:3c:48:3f:ae:bf:6b:e8:e4:94:02:a0:
c6:49:99:92:c4:66:d2:4a:0a:dc:4a:2c:ab:8f:17:
56:7e:64:29:eb:98:9d:59:8c:1e:e0:cf:b6:10:e1:
75:0e:52:4c:57:ae:a3:0c:4e:db:2b:88:ca:0e:58:
71:f6:c6:f3:dc:f3:73:76:5b:ac:52:c3:51:b0:24:
ed:99:ad:82:fa:be:cb:9c:29:b2:d8:9d:68:69:18:
e0:41:08:34:74:14:5d:77:a4:44:2c:fa:3a:66:64:
3b:ac:bd:6c:1f:b3:81:88:a1:f3:50:04:39:28:a8:
d6:ae:3e:78:cf:0f:23:27:90:9c:89:c5:a5:be:3d:
80:92:b2:07:3d:3a:e9:ee:fd:de:d7:d7:02:00:8b:
a9:19:28:76:83:c4:77:50:06:31:e7:23:e7:54:05:
1d:17:1c:da:96:a7:c6:d9:12:9e:51:03:82:20:30:
a7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:37:12:F3:D2:B5:92:87:40:32:BA:D1:FF:B8:C7:3B:01:02:6D:91
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31322e302f32342d3234203d3e20313336353537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.12.0/24
Signature Algorithm: sha256WithRSAEncryption
35:e9:29:81:38:f6:33:4d:01:03:0e:b1:f0:b6:f3:cd:05:3c:
79:e4:3d:d0:48:22:5d:90:71:c3:5d:e8:76:86:5e:eb:6d:6a:
30:ac:1a:3e:5a:64:95:cd:c2:42:57:ed:87:bb:f8:d3:45:2e:
fa:a9:83:39:18:75:10:f3:96:62:4c:62:77:c3:13:4f:8d:82:
5e:64:2b:7d:1b:71:8b:3f:0c:21:f9:a6:75:3d:bd:8a:2e:ba:
f4:63:dc:cb:70:09:53:08:36:c9:32:3a:26:90:e4:7a:cd:0f:
c5:8a:ba:ba:e4:6c:e5:b8:9f:58:ca:36:4b:12:f7:41:a5:e1:
0d:dc:e6:bb:de:fa:0f:5c:5a:37:87:7a:8d:aa:12:23:7a:4d:
48:dc:7b:70:2a:4b:70:c5:bb:dc:87:90:06:a2:a4:d4:92:7a:
79:aa:97:b4:2c:42:ca:76:8b:e5:02:f5:d8:d5:69:02:59:5d:
78:0f:74:6e:c0:23:18:49:c4:7c:86:b8:6b:06:1f:b4:ae:b0:
ba:28:15:c3:5a:44:19:6c:1f:c2:34:8e:b7:90:fd:ca:95:28:
ac:2f:ba:8d:31:63:cd:68:c9:d2:2f:68:7f:95:af:55:8f:bb:
95:ec:46:cc:6e:cc:81:7f:79:fc:a7:88:4c:c7:c6:71:16:32:
51:80:78:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 28 04:35:04 2024 by rpki-client on console-ams.rpki-client.org