Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134302e33392e302f32342d3234203d3e20323132333834.roa
File: 34352e3134302e33392e302f32342d3234203d3e20323132333834.roa (raw, json)
Hash identifier: 9eMDEw9m3BfsI83cIQHVFVd3ObQ9CMqzUDZSu4P9KjQ=
Subject key identifier: 61:94:BE:9B:04:5D:79:E6:BB:F4:A8:A9:0A:62:F1:78:FC:32:5B:E9
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 527400CD69CF9F6E3CDED690247A23DC41DADF9B
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134302e33392e302f32342d3234203d3e20323132333834.roa
Signing time: Thu 16 May 2024 09:24:45 +0000
ROA not before: Thu 16 May 2024 09:19:45 +0000
ROA not after: Thu 15 May 2025 09:24:45 +0000
asID: 212384
IP address blocks: 45.140.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:74:00:cd:69:cf:9f:6e:3c:de:d6:90:24:7a:23:dc:41:da:df:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: May 16 09:19:45 2024 GMT
Not After : May 15 09:24:45 2025 GMT
Subject: CN=6194BE9B045D79E6BBF4A8A90A62F178FC325BE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:63:70:8a:31:69:f3:6c:76:79:9e:86:23:70:
57:c6:20:ce:d6:4b:ad:66:88:df:8b:a5:0c:46:3e:
33:a9:db:65:1c:7b:17:cf:eb:e2:e9:39:50:75:28:
77:43:92:7c:01:76:4c:34:ef:87:e2:6d:62:7c:de:
64:1e:7e:9d:65:3a:02:df:87:54:21:7d:dd:c4:36:
18:bd:a2:33:97:02:2e:31:88:0e:74:91:13:11:0d:
46:71:a3:c2:36:cd:67:eb:ff:21:7c:27:c6:8b:be:
f2:79:65:ed:dd:77:1a:03:77:b4:92:89:1b:75:2b:
77:2f:2e:47:cd:3e:10:58:4e:c7:0e:d7:af:59:9b:
d2:b2:65:94:92:da:03:e6:96:1f:8e:09:dc:58:b4:
c1:ee:45:ea:f2:54:41:6f:1c:10:e3:5e:af:e4:df:
5d:93:c7:d0:4a:40:64:ec:e0:fc:ae:c6:31:fe:c0:
c2:6b:97:2e:41:b8:66:55:2b:91:47:d8:df:01:3c:
34:7f:9f:80:ae:42:bd:3b:51:df:c6:1e:09:f4:1e:
27:3c:f5:c3:8f:36:71:04:33:74:9a:13:1c:55:89:
7a:d1:03:a5:2a:e3:7d:2d:03:3c:60:cf:9c:3e:3b:
89:d8:58:8e:83:8d:b1:9f:2d:39:fd:49:8f:06:e6:
28:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:94:BE:9B:04:5D:79:E6:BB:F4:A8:A9:0A:62:F1:78:FC:32:5B:E9
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134302e33392e302f32342d3234203d3e20323132333834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.39.0/24
Signature Algorithm: sha256WithRSAEncryption
31:f7:a3:5a:b7:3f:c8:3a:9d:7d:35:f1:35:eb:7c:7d:37:e7:
32:92:ef:05:d3:f1:45:bb:02:f4:a3:29:e1:e8:da:93:53:fd:
f9:77:2e:a4:a3:bb:2d:43:2d:c4:24:1c:ef:7b:7d:59:2e:b6:
38:70:cc:9f:a2:04:00:4d:2f:68:b1:0a:8c:06:12:a1:b8:71:
9e:55:16:b5:72:37:c6:f4:6d:c6:35:7b:2e:5a:fb:70:f5:5e:
fc:78:fd:04:d9:6b:60:f8:a0:33:cd:bd:18:9e:5a:fa:f2:48:
c5:11:6f:e4:9d:3c:af:aa:77:f7:ee:2f:0b:18:2c:a3:9a:5f:
d7:0f:a6:43:f9:61:15:05:02:c0:0b:fd:d4:e2:21:92:38:cf:
c6:8c:f9:02:5a:4c:da:7c:5c:b0:bf:31:e8:3d:e5:ca:e0:05:
5e:bf:6c:b6:6b:99:60:be:ce:e6:c6:cc:93:be:4c:8c:6b:c3:
7b:f5:aa:9f:8a:3e:8c:37:ab:e5:8e:8c:75:b1:ac:35:50:cb:
66:00:12:fe:5a:d7:18:95:65:e1:8c:46:9d:d2:27:b8:10:10:
db:32:2b:47:fe:25:0d:78:ff:87:78:8d:43:7b:6e:b1:37:a7:
d4:cd:23:3d:9e:85:b9:11:f8:b7:c6:8d:43:54:43:dc:da:16:
56:15:89:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org