Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234312e302f32342d3234203d3e20323134353739.roa
File: 34352e3134352e3234312e302f32342d3234203d3e20323134353739.roa (raw, json)
Hash identifier: ecd3AYkEVnl/nPIUjiZIW5gPIFDZnDrC7h/lE1jMOGA=
Subject key identifier: 3A:10:2A:F1:EB:A7:EF:17:D5:50:DE:E4:30:25:3B:16:57:C3:56:7F
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 59D0A8AE829FDFEE009980B7B10098D076649D4C
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234312e302f32342d3234203d3e20323134353739.roa
Signing time: Fri 12 Jul 2024 01:05:12 +0000
ROA not before: Fri 12 Jul 2024 01:00:12 +0000
ROA not after: Fri 11 Jul 2025 01:05:12 +0000
asID: 214579
IP address blocks: 45.145.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:d0:a8:ae:82:9f:df:ee:00:99:80:b7:b1:00:98:d0:76:64:9d:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Jul 12 01:00:12 2024 GMT
Not After : Jul 11 01:05:12 2025 GMT
Subject: CN=3A102AF1EBA7EF17D550DEE430253B1657C3567F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:94:71:dd:6a:7e:45:65:fb:bf:f2:dd:9c:b4:
04:89:26:c7:9d:04:ed:66:01:ab:d8:b9:a5:ff:bf:
99:b6:79:16:f6:88:16:6d:e3:aa:9e:f9:e7:28:42:
84:44:d1:ac:aa:8d:8a:8c:0c:f7:87:24:26:5b:1b:
9f:48:a9:e7:15:dc:c4:84:2c:d4:89:8e:b1:15:09:
29:11:bf:a3:fd:00:60:31:2b:b9:57:93:bb:47:92:
49:b0:d4:23:27:bf:b5:33:0a:79:55:47:8f:1a:1e:
c4:4a:01:b4:2d:22:99:26:89:ca:bd:c1:09:03:25:
7c:b0:e8:c2:a8:6e:45:d2:77:3a:8b:c2:c5:73:40:
6b:f9:f2:73:81:b8:5a:6e:f9:3f:a9:c6:85:11:da:
7c:cc:ef:b5:d9:68:18:68:4b:5c:09:04:9a:e5:80:
99:4a:9d:5a:c8:cb:52:33:65:46:11:bb:49:6f:c6:
41:d7:fb:ce:30:90:a7:2c:00:78:28:2a:19:a6:7b:
05:ac:ec:e5:b7:6c:d1:f1:78:fb:13:d7:94:12:5a:
8c:1a:e6:6d:0d:b9:12:7d:a2:a1:7d:ff:b5:bd:7b:
3e:62:0f:f4:68:75:92:fc:9f:7b:52:1a:0e:f6:5d:
e9:19:d0:6b:20:3e:23:bb:35:60:d8:6d:4f:8f:cf:
d4:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:10:2A:F1:EB:A7:EF:17:D5:50:DE:E4:30:25:3B:16:57:C3:56:7F
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234312e302f32342d3234203d3e20323134353739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.241.0/24
Signature Algorithm: sha256WithRSAEncryption
46:b3:5c:02:f3:89:66:bd:31:a4:d8:dc:12:7b:88:f5:3d:16:
2b:1f:1c:d3:ec:e3:9e:a9:c7:17:68:b0:7b:e3:99:c6:d1:bb:
4a:4e:e2:49:d0:a9:b4:19:6e:64:6e:bc:70:f5:34:4b:52:6d:
37:36:f7:99:c6:3a:c0:4d:7b:1e:fd:05:de:f1:c8:aa:d6:e0:
fe:a6:2f:bb:23:46:6d:3e:1a:6e:4f:ef:ae:79:26:1b:c6:fe:
b9:b7:48:42:46:19:0c:e7:4c:53:7e:c6:ee:ff:ff:32:64:3f:
32:22:32:b8:38:e2:a3:a2:68:ad:99:55:84:33:ef:b6:b2:45:
a1:ba:20:6e:d4:89:80:3b:33:03:3c:d1:95:34:f6:f1:a2:9f:
f9:e8:19:0c:8e:f4:8d:62:fa:13:74:9a:35:8e:c3:95:04:e6:
66:42:fb:fb:11:cc:e2:1b:23:9b:12:7b:aa:f8:8a:6e:30:8b:
8f:bd:6e:a1:f2:c9:47:c2:a5:38:16:13:c9:b7:16:03:8b:52:
d9:98:a7:e4:0f:89:dd:6a:b7:c6:98:b0:52:a4:09:be:10:6a:
8c:70:8c:92:d3:94:cb:4b:6f:14:e3:ec:34:49:3f:37:f6:f4:
f4:8f:c2:48:43:ef:40:3c:af:f9:e9:33:ed:60:eb:f7:30:9b:
f5:18:d7:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org