Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3133322e3231372e302f32342d3234203d3e203231383539.roa
File: 34352e3133322e3231372e302f32342d3234203d3e203231383539.roa (raw, json)
Hash identifier: dXFRkKkCKVRo3kheY7TxPeD7qb8C1qNLHcvWTQZirTA=
Subject key identifier: 84:CB:F1:AA:A1:F6:53:0D:D5:68:24:1F:61:3D:5F:47:9E:82:A0:D2
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 0CCFB5405A33AB692BD4149623CB8998FA8A976A
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3133322e3231372e302f32342d3234203d3e203231383539.roa
Signing time: Tue 16 Jul 2024 11:48:11 +0000
ROA not before: Tue 16 Jul 2024 11:43:11 +0000
ROA not after: Tue 15 Jul 2025 11:48:11 +0000
asID: 21859
IP address blocks: 45.132.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:cf:b5:40:5a:33:ab:69:2b:d4:14:96:23:cb:89:98:fa:8a:97:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Jul 16 11:43:11 2024 GMT
Not After : Jul 15 11:48:11 2025 GMT
Subject: CN=84CBF1AAA1F6530DD568241F613D5F479E82A0D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6b:25:0b:96:b6:13:14:cc:83:cd:41:ce:86:
0d:55:48:06:94:ff:41:06:fe:ca:11:22:28:ec:c1:
20:35:09:3c:3a:fd:ea:41:e4:1c:ec:49:2a:ba:dc:
47:f3:19:29:23:7c:18:fb:41:5b:ab:38:b0:e1:fe:
60:f8:b3:cf:12:44:30:cd:13:0b:f5:ff:6b:2b:f1:
1f:94:89:75:0b:31:fb:d1:46:bf:c2:4c:a1:1e:5a:
6d:ba:1e:4e:8f:bc:12:63:00:e5:a5:df:50:66:a1:
0b:19:f5:52:bb:74:61:2b:22:90:80:ec:77:03:4d:
60:41:25:3c:79:72:a7:5b:92:58:7a:f7:41:32:94:
f8:c2:3c:aa:fb:34:67:db:fc:f7:35:b2:c5:49:5c:
f9:62:f9:c0:63:e1:45:37:2a:b0:62:e1:43:62:f8:
63:7f:7e:1e:a0:24:41:7f:19:28:ab:b9:0f:14:3b:
81:e7:15:ea:7c:d2:b9:37:0f:45:ca:b4:e8:9d:aa:
21:95:d2:69:b7:a8:a3:ca:0b:52:3c:86:65:4a:ba:
af:6a:a5:b5:97:84:b2:3a:ac:ac:ab:3d:b6:ba:13:
c6:77:89:57:14:68:bd:a3:0e:5d:78:d2:93:d0:57:
f0:02:ab:23:0a:97:36:70:35:f5:0f:cb:1e:e3:50:
99:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:CB:F1:AA:A1:F6:53:0D:D5:68:24:1F:61:3D:5F:47:9E:82:A0:D2
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3133322e3231372e302f32342d3234203d3e203231383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.217.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:99:ff:3f:a1:6f:97:9e:a1:3a:51:0f:46:ec:f4:f5:42:ca:
5e:0b:49:00:85:e7:d9:d9:73:9a:b4:36:9f:f7:63:9c:c2:81:
ca:fa:7e:74:24:66:88:41:48:fb:22:ea:a4:f9:08:b1:63:ab:
1d:49:28:40:7c:ff:a2:3c:7d:1f:1e:7c:30:a0:46:4a:2a:30:
14:2f:ac:57:82:c7:95:9e:30:df:fd:f6:62:e8:2c:51:b4:e8:
b1:a7:e1:54:1c:7c:28:12:bc:d3:41:f2:f3:f2:1c:f7:3b:6a:
8a:d1:02:c3:23:58:9e:6a:a7:d4:20:e6:3b:92:f2:8a:07:b6:
b6:bf:f9:6a:8c:d2:48:56:a3:f7:dd:7d:73:fa:21:d1:1e:50:
ee:ed:27:5a:c4:4d:73:b2:bb:07:14:02:d7:e2:48:81:af:f9:
7c:19:be:7f:27:2d:ee:86:2a:f2:87:d3:30:ad:39:c8:6d:b9:
60:81:af:3d:02:9f:9d:a3:25:72:15:2e:2b:d3:6c:a4:d3:af:
71:e1:f8:c3:31:43:24:58:c9:06:41:e8:68:12:2c:12:4e:36:
70:89:ed:f1:d1:19:ea:9a:5f:52:2d:7d:e4:fd:a1:50:71:aa:
d6:1d:d7:34:e6:c5:a5:b8:0d:05:ac:36:32:b4:90:00:7a:87:
7b:ad:0b:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org