Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234332e302f32342d3234203d3e203231383539.roa
File: 34352e3134352e3234332e302f32342d3234203d3e203231383539.roa (raw, json)
Hash identifier: PJH1dFKAQPoULr+aUgsQadg9xagPIWIzP9msLqf5QP8=
Subject key identifier: FA:BB:FC:8D:5E:25:4A:79:DB:E3:15:16:18:D0:F3:B0:3B:43:67:D4
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 7F96411F5CFB6D6B747B410FD3916FD5B60445BC
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234332e302f32342d3234203d3e203231383539.roa
Signing time: Tue 16 Jul 2024 11:48:11 +0000
ROA not before: Tue 16 Jul 2024 11:43:11 +0000
ROA not after: Tue 15 Jul 2025 11:48:11 +0000
asID: 21859
IP address blocks: 45.145.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:96:41:1f:5c:fb:6d:6b:74:7b:41:0f:d3:91:6f:d5:b6:04:45:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Jul 16 11:43:11 2024 GMT
Not After : Jul 15 11:48:11 2025 GMT
Subject: CN=FABBFC8D5E254A79DBE3151618D0F3B03B4367D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e0:23:f8:42:96:96:8c:e5:79:28:d5:15:d4:
0a:65:6b:b3:8e:5e:b7:55:07:21:68:be:8b:0a:ae:
85:f2:8f:31:cd:21:1d:b0:3d:64:ec:da:dd:b5:65:
c7:88:b0:13:72:4c:50:09:13:89:a0:22:46:b5:ac:
80:00:59:78:ff:df:56:19:bf:8e:59:ad:9c:d9:b8:
a9:42:c4:ac:53:2e:28:bd:05:e9:82:9e:31:ab:a4:
01:63:83:ee:63:b3:1c:e5:36:2b:19:4a:d5:ae:03:
4b:ec:6c:c5:be:1d:a8:db:86:93:03:7a:0d:7a:db:
63:41:f7:5e:a8:9d:90:40:73:1e:d9:2b:f7:9d:41:
2a:a2:44:99:7f:66:bd:a9:64:6a:2c:20:72:75:77:
04:53:54:63:b0:5b:0b:ed:87:2a:a0:60:65:f9:70:
67:31:78:90:50:8a:8f:4e:f6:27:96:35:2f:00:40:
21:55:0e:90:cc:cc:93:d3:c5:18:d2:24:fd:66:f3:
53:29:49:aa:08:0c:d0:bd:b7:38:3f:13:3b:d0:a2:
58:b8:e8:10:b6:ba:49:7a:62:b2:3e:13:ce:6f:1c:
31:16:1a:54:7b:20:8f:4d:2c:f4:b8:24:0c:5d:7b:
5a:db:cd:af:49:ef:19:f0:89:24:01:91:b5:7a:34:
6b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:BB:FC:8D:5E:25:4A:79:DB:E3:15:16:18:D0:F3:B0:3B:43:67:D4
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e3134352e3234332e302f32342d3234203d3e203231383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.243.0/24
Signature Algorithm: sha256WithRSAEncryption
38:cb:0d:f2:b6:ea:55:d8:4e:21:2e:fb:42:b2:38:35:61:1e:
53:ce:23:ff:ab:d8:0b:98:80:71:45:8d:d6:61:05:36:30:44:
7c:77:56:a2:25:95:04:d6:b6:94:95:7b:14:6b:1f:01:a4:89:
bf:c1:b1:b5:0e:56:11:56:28:06:78:09:dd:33:20:4d:6e:75:
e0:e7:16:53:28:6e:f7:fe:29:2b:7b:38:7d:d7:09:7b:38:4b:
29:1e:48:1a:40:01:f1:e9:06:ef:24:49:fc:d0:dd:93:ce:63:
03:e4:ba:7c:74:81:08:9d:b0:12:ed:c0:ec:c9:55:05:f0:a3:
02:b2:1f:dd:3c:df:aa:73:11:33:d5:e1:d6:72:c8:4c:a1:23:
14:18:31:b5:cb:d5:df:89:ba:be:50:5c:8d:2a:ac:34:d2:d2:
31:be:e6:3e:6b:8a:22:ac:77:e0:8d:1b:1d:96:f1:be:bd:85:
7b:4b:bb:8f:58:82:4e:ed:52:ad:13:95:99:76:c0:77:31:a1:
7a:27:23:cf:88:28:1c:53:c2:f9:f2:dc:90:97:f8:e4:d5:fb:
c9:0e:62:ca:ca:90:df:e7:25:7f:b2:32:df:d8:5d:e3:ca:01:
c5:7c:24:34:15:06:84:1f:1c:0d:68:23:2b:1f:b7:45:9e:c1:
8a:ab:93:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org