Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31332e302f32342d3234203d3e20313939393235.roa
File: 34352e3132382e31332e302f32342d3234203d3e20313939393235.roa (raw, json)
Hash identifier: lbqo8bVd2bNDEcGLFAZKGWs5cX8HuFPs445xJs/ijC4=
Subject key identifier: 5A:D7:D7:78:75:A7:5C:A9:9F:04:8D:FA:9A:80:04:3F:47:B2:6D:E1
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 52E1193F367336458E9BE220A582D03A91C872B7
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31332e302f32342d3234203d3e20313939393235.roa
Signing time: Mon 30 Sep 2024 07:43:22 +0000
ROA not before: Mon 30 Sep 2024 07:38:22 +0000
ROA not after: Mon 29 Sep 2025 07:43:22 +0000
asID: 199925
IP address blocks: 45.128.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:e1:19:3f:36:73:36:45:8e:9b:e2:20:a5:82:d0:3a:91:c8:72:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Sep 30 07:38:22 2024 GMT
Not After : Sep 29 07:43:22 2025 GMT
Subject: CN=5AD7D77875A75CA99F048DFA9A80043F47B26DE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f3:15:e1:e4:e7:6a:e9:06:28:52:49:04:60:
52:41:1a:e1:d7:8b:4d:84:08:13:1e:1e:a3:9d:18:
90:a4:48:14:6d:b4:26:85:04:e4:c1:21:db:46:51:
90:c5:f2:fb:11:32:fe:fc:46:4d:22:ee:0c:c0:5d:
7f:63:b1:27:fe:97:91:12:d2:ce:59:4c:f1:38:1e:
31:d1:08:3d:2d:01:28:33:6a:05:7a:61:69:71:a9:
a0:3f:0f:6f:8e:a6:72:be:8c:bb:09:28:9b:89:47:
4f:23:00:60:c3:cb:79:8d:54:bf:74:14:0d:81:6b:
cb:88:9e:6c:a1:ec:94:5e:14:df:a0:7b:bc:1c:cd:
e5:ce:0e:bc:6c:c9:f0:91:34:45:b5:3d:ac:d8:fd:
c8:dd:cc:14:b4:49:f6:c4:4e:3e:07:11:b1:6d:cf:
fd:5b:e3:e5:1c:16:b5:16:ec:7e:10:84:2b:c9:fe:
0a:a2:1f:e3:51:31:02:c6:a2:3a:58:34:3a:8b:4b:
65:54:8b:ef:da:60:57:dc:b0:c8:cd:b8:3e:2a:75:
54:94:3a:f6:8c:86:8a:bb:b0:05:0c:58:a1:5e:92:
78:01:00:3e:97:81:d2:6f:62:87:34:b6:de:f1:c4:
fc:79:89:88:4e:0d:d0:3c:bb:3b:a4:0b:f4:6c:19:
fb:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:D7:D7:78:75:A7:5C:A9:9F:04:8D:FA:9A:80:04:3F:47:B2:6D:E1
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3132382e31332e302f32342d3234203d3e20313939393235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.13.0/24
Signature Algorithm: sha256WithRSAEncryption
21:cb:c3:9f:99:5f:98:2b:a7:26:6d:49:08:a2:cd:5c:1b:b4:
22:0d:6a:1e:d1:ec:b0:7c:ad:16:72:87:c7:92:02:bc:a6:22:
1d:11:38:cd:a3:9a:b4:a5:5b:cc:ea:a8:0f:ae:51:63:bb:f7:
af:7b:ad:04:61:d5:ed:2d:6b:d8:f0:13:1e:df:17:4d:80:06:
10:f8:0d:ea:89:21:fe:dc:10:66:ca:90:ed:02:a6:b4:6c:44:
39:47:70:52:3b:75:1a:5c:23:5c:2b:ae:9a:5d:53:07:5b:08:
19:e2:a3:03:29:10:fe:ae:08:5a:43:24:4b:79:23:78:45:9b:
3e:da:b8:7e:9d:b3:39:f2:a4:79:aa:89:d0:db:2b:1b:36:74:
98:51:8c:45:d2:aa:d7:ef:28:94:77:fd:c9:e7:b5:c0:79:8c:
eb:c2:5a:fd:a7:e3:d3:aa:41:69:87:44:54:dd:1c:1d:30:4c:
73:a8:a0:a4:05:6d:a7:f9:bc:c6:db:61:7b:d5:4d:a2:b8:d9:
1b:dd:7b:05:1f:36:56:22:18:16:2f:c9:ba:bb:8d:4d:d2:03:
d2:14:a7:6e:ab:18:dd:dd:cc:0b:0a:ca:04:0b:dd:6f:8e:41:
74:a7:59:c0:bd:4b:5a:f9:7b:52:7a:53:22:b8:9d:6e:86:0b:
4c:ef:9a:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org