Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31332e302f32342d3234203d3e20313939393235.roa
File: 34352e3132382e31332e302f32342d3234203d3e20313939393235.roa (raw, json)
Hash identifier: TsieeK6LC4VF+vsySO4JVNI8P4/HvBVK3mosP7Qgj+E=
Subject key identifier: 2C:F0:6F:1C:12:28:88:41:74:77:D5:97:76:E0:82:FB:90:5E:6B:1D
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 78879E3650F81EFBA1170D74B17B3592120422E6
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31332e302f32342d3234203d3e20313939393235.roa
Signing time: Mon 30 Oct 2023 06:52:18 +0000
ROA not before: Mon 30 Oct 2023 06:47:18 +0000
ROA not after: Mon 28 Oct 2024 06:52:18 +0000
asID: 199925
IP address blocks: 45.128.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:87:9e:36:50:f8:1e:fb:a1:17:0d:74:b1:7b:35:92:12:04:22:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Oct 30 06:47:18 2023 GMT
Not After : Oct 28 06:52:18 2024 GMT
Subject: CN=2CF06F1C122888417477D59776E082FB905E6B1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:66:3f:0f:a4:8f:1d:a7:7b:13:44:84:46:60:
59:9c:db:bc:a9:af:d7:5c:07:fe:9d:41:c5:26:18:
c3:4b:1e:39:06:2a:ef:0f:7a:2f:6e:3b:8a:7c:37:
cc:53:53:4e:f0:d0:1f:3e:16:bf:06:10:71:b5:29:
74:e3:63:23:17:9a:53:b5:53:e5:04:1b:c8:1c:30:
99:30:66:13:2b:ba:d0:c9:a4:ef:2f:3e:ee:24:d8:
30:c9:78:13:c6:e3:64:91:7c:76:09:d0:1b:07:ba:
65:2a:34:67:df:0b:fe:66:d5:d4:6c:cc:aa:ab:7f:
82:51:7d:5b:3b:2d:7c:ed:dd:d8:0f:8c:7a:1e:94:
4b:95:aa:8b:5b:9f:fc:e6:c8:33:b5:f6:1d:5c:23:
fb:a2:bf:71:83:b5:b0:23:6a:d4:dc:00:b1:56:b3:
49:22:aa:7d:b8:06:68:60:db:8f:dd:f6:3c:4f:21:
e0:22:b1:f7:6b:2b:94:7f:8a:3e:13:35:a9:c1:2b:
4b:d8:3f:88:7a:c0:e9:2b:54:aa:47:30:cb:f7:da:
0a:22:af:8c:10:0d:f5:10:cd:a8:14:69:65:6e:02:
83:66:27:3d:08:b2:70:2e:57:56:7c:13:f2:ea:db:
1f:c7:9f:46:39:7f:2a:24:99:0f:68:b0:a8:30:3d:
c7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:F0:6F:1C:12:28:88:41:74:77:D5:97:76:E0:82:FB:90:5E:6B:1D
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31332e302f32342d3234203d3e20313939393235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.13.0/24
Signature Algorithm: sha256WithRSAEncryption
71:4d:21:e1:ba:8f:2d:fe:7e:19:69:a2:c6:89:44:18:1d:14:
b9:57:78:63:2a:d9:e2:b6:e7:53:88:08:1e:da:8e:4a:b6:31:
8d:da:6a:64:fc:6e:5c:3d:8d:92:87:bf:6a:f4:44:a8:7c:46:
d6:18:3e:d5:23:40:7a:67:12:e3:dc:4a:02:c9:cb:31:dd:71:
6e:bb:5c:69:c3:bb:4a:c9:ef:4d:dc:2c:ca:c6:73:b2:af:36:
6c:18:e6:8d:54:77:fa:6f:a4:47:fc:1a:d0:9b:15:b5:94:da:
c2:7d:ef:56:3b:9c:a3:f8:2f:a0:0f:ad:2f:88:8a:38:f6:fa:
70:67:82:1b:e4:a0:a9:a5:d9:5d:06:a8:02:ae:90:c8:3f:f7:
b3:65:9f:da:43:af:33:42:d3:a1:45:6a:d1:17:65:0f:c1:a1:
09:fe:7c:05:20:24:3d:5e:72:1e:1d:82:55:0a:89:99:b3:85:
5e:5b:17:71:a5:82:1b:6e:d5:dc:ea:9d:07:d4:b0:26:ac:d7:
56:49:06:e0:84:bd:80:4b:a5:aa:f1:47:56:53:de:c7:97:0c:
cd:01:03:a6:ae:f4:26:19:bf:c7:e6:6f:dc:59:dd:61:5f:04:
3e:12:12:3a:36:96:93:09:91:0a:41:05:be:57:83:fc:7c:8a:
7a:92:fa:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 15:20:52 2024 by rpki-client on console-ams.rpki-client.org