Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31322e302f32342d3234203d3e20313336353537.roa
File: 34352e3132382e31322e302f32342d3234203d3e20313336353537.roa (raw, json)
Hash identifier: GI/aZsOCGO0eol75QgiKGdLVWPN+m00XjhLbN7VPSj8=
Subject key identifier: DC:0A:35:15:3C:35:56:D5:77:60:91:CA:B9:87:86:E9:6B:67:EC:A6
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 798E1580CBFC9B49E5394702C0E931C866124B67
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31322e302f32342d3234203d3e20313336353537.roa
Signing time: Thu 26 Sep 2024 09:43:22 +0000
ROA not before: Thu 26 Sep 2024 09:38:22 +0000
ROA not after: Thu 25 Sep 2025 09:43:22 +0000
asID: 136557
IP address blocks: 45.128.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:8e:15:80:cb:fc:9b:49:e5:39:47:02:c0:e9:31:c8:66:12:4b:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Sep 26 09:38:22 2024 GMT
Not After : Sep 25 09:43:22 2025 GMT
Subject: CN=DC0A35153C3556D5776091CAB98786E96B67ECA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1a:22:e7:6a:01:f9:4d:ee:e7:bc:ac:6b:c9:
14:47:6f:b3:59:80:38:77:c1:5b:de:69:5b:69:1e:
6c:ff:c0:1b:86:f1:e5:ad:4c:33:69:b7:bc:34:9f:
c8:6b:1b:55:dc:3e:f8:70:47:49:fa:1f:3b:bf:d7:
5a:b4:c2:76:53:07:40:fb:dd:00:a6:3c:0b:d9:e9:
bb:fa:63:11:d3:ad:0c:f1:1c:45:c1:74:2d:c0:77:
a8:79:cf:88:3b:7c:15:b6:13:f8:a5:25:49:ef:ad:
61:2b:fa:dc:d3:10:fc:d4:aa:f7:c1:12:b9:99:23:
bd:1b:bc:93:95:82:0b:ae:b4:75:24:e6:49:10:e1:
8b:81:5e:dd:93:f3:62:a2:d2:5b:73:85:b7:09:fc:
bc:73:6b:49:3d:fe:d6:02:9b:40:13:6c:a0:31:10:
6b:bc:56:32:d4:aa:7f:9d:96:e8:ca:58:93:e6:e8:
2f:c5:72:64:e6:47:04:c1:91:4b:2c:e1:90:16:ad:
2b:2c:33:2e:44:c3:b1:c3:eb:f0:85:80:05:b0:d8:
d2:c5:69:b1:1e:58:d3:2d:f0:fb:29:50:a3:7d:d7:
9e:05:3e:ce:7c:31:6b:ba:78:91:f3:1d:9d:c3:98:
a0:ca:43:1d:29:23:6e:1d:0b:a7:5b:a4:84:57:64:
73:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:0A:35:15:3C:35:56:D5:77:60:91:CA:B9:87:86:E9:6B:67:EC:A6
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31322e302f32342d3234203d3e20313336353537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.12.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:a7:f9:15:48:50:8e:f0:b1:ff:40:4b:8c:db:6e:76:62:6a:
74:80:d2:c2:12:6e:68:e5:d7:0c:1a:c9:95:c4:37:3e:df:fc:
7c:8e:82:c4:5c:a9:38:3f:5a:d2:0e:58:1e:09:33:54:b5:8e:
5e:51:fb:df:f1:5f:d8:93:7f:00:3d:34:b2:f0:63:66:1c:b6:
42:3f:46:29:93:72:d8:05:73:53:6e:e4:f5:90:70:3e:c1:f8:
1a:e8:96:f9:5e:3b:c4:cf:6c:22:c3:b4:68:c5:21:e4:f6:e1:
37:70:95:3a:a5:58:c8:32:41:c5:3e:4a:4b:e9:8a:d8:c2:08:
b7:cd:fb:33:18:be:8f:1a:9e:15:d7:33:41:9c:0f:b5:37:4a:
04:04:35:69:6a:50:c7:1e:e2:d5:4a:fe:88:33:98:0d:3a:86:
28:e7:a1:2b:fd:7e:b6:3f:de:d5:22:d2:9c:50:a5:df:93:14:
44:fd:36:1a:6b:e0:ef:eb:3c:4e:64:46:cc:c0:ca:7e:21:17:
1e:08:0c:fb:75:2b:d9:0a:16:e6:0a:fe:6a:c4:7b:73:cf:0d:
a4:dc:da:12:fb:76:ff:cb:9b:95:f7:1a:09:13:ec:26:c1:8d:
1b:27:8a:81:46:e2:76:87:dc:be:95:30:83:f2:9e:1b:91:40:
a2:a3:ad:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org