Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e38392e3135302e302f32332d3234203d3e20323130353432.roa
File: 34352e38392e3135302e302f32332d3234203d3e20323130353432.roa (raw, json)
Hash identifier: 7sMbysqCaMeL1xaB9cg6fLDXrHQxbnQFfKlJYmZeklI=
Subject key identifier: 28:34:82:51:11:62:AC:88:05:3B:70:17:C2:4D:83:69:56:F7:0A:2A
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 56AA23A5D43372283C9F1389020F8ED43ABBE3E4
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e38392e3135302e302f32332d3234203d3e20323130353432.roa
Signing time: Sat 28 Oct 2023 11:57:46 +0000
ROA not before: Sat 28 Oct 2023 11:52:46 +0000
ROA not after: Sat 26 Oct 2024 11:57:46 +0000
asID: 210542
IP address blocks: 45.89.150.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 04:53:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:aa:23:a5:d4:33:72:28:3c:9f:13:89:02:0f:8e:d4:3a:bb:e3:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Oct 28 11:52:46 2023 GMT
Not After : Oct 26 11:57:46 2024 GMT
Subject: CN=283482511162AC88053B7017C24D836956F70A2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:4b:16:48:1d:d3:83:42:cb:8c:b3:b5:25:35:
0d:43:ea:c7:3f:33:ce:5b:c4:6a:7c:47:94:3e:79:
a2:ff:d7:e5:d6:b9:e2:11:a5:60:b4:ab:72:15:c5:
0c:8b:a0:70:6f:b1:1e:2a:b1:75:d7:72:7a:75:d4:
b0:ad:b8:c0:9e:4e:94:30:c8:d8:c8:70:17:7a:59:
b7:6b:1e:03:10:a1:dc:fa:d9:24:05:c2:6d:cf:e3:
80:5c:77:1c:6b:81:f3:47:b2:d5:4b:b3:32:72:4f:
8a:51:49:c1:78:43:fd:36:15:86:79:66:5a:21:ae:
a9:fb:bd:e3:e9:13:33:ff:a8:fc:f6:1b:df:38:d6:
9c:29:43:88:6d:3b:cf:21:f7:d0:a1:f0:48:99:59:
ad:4b:2d:cb:42:85:7e:61:31:bb:8f:de:c0:b3:40:
c1:fa:0e:6f:cb:56:63:9c:19:ff:c8:ef:4e:2f:bb:
84:32:1d:50:92:91:ea:b7:61:fd:4b:10:56:97:61:
3d:63:c3:76:8a:60:82:5f:e3:c5:7c:4e:46:50:41:
f2:66:6f:6e:97:81:7d:cc:51:46:f0:4d:a1:26:1a:
ea:de:19:fd:ee:fc:ed:29:82:5a:0a:5e:b6:ea:94:
1b:c0:b2:0c:eb:16:6d:24:1d:81:3e:7d:43:20:00:
70:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:34:82:51:11:62:AC:88:05:3B:70:17:C2:4D:83:69:56:F7:0A:2A
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e38392e3135302e302f32332d3234203d3e20323130353432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.150.0/23
Signature Algorithm: sha256WithRSAEncryption
17:63:0e:00:97:97:1a:bc:01:e2:f1:4a:26:b0:4f:f5:b7:30:
ca:9f:6e:19:3c:07:9e:ab:3a:81:8f:bc:ff:3d:ff:3b:b6:ba:
84:70:de:40:87:8d:d7:09:9f:0e:b3:a1:2e:58:e4:2b:f0:7c:
34:4e:d8:1e:6b:e8:69:44:c7:a0:71:91:4e:c6:95:ce:21:f6:
fe:0e:b7:15:32:ed:a5:ea:a6:8a:b9:30:93:1c:90:ef:37:94:
6c:d8:25:15:17:42:90:00:b3:e4:5c:3c:63:9f:e6:51:31:15:
4a:58:cb:90:4c:d7:65:e8:32:bd:15:d9:8e:ae:07:ec:f1:df:
f8:4f:d5:b7:06:0e:9c:26:13:17:fb:7f:ad:c0:c8:bc:7a:e6:
05:61:97:3c:e9:d0:69:4e:a0:62:fb:70:e0:65:bf:9f:ec:ac:
3e:2f:54:50:c9:b1:bf:26:2a:e0:ca:5c:3a:2f:44:ee:87:0e:
16:ff:36:09:ff:51:fb:d6:c9:b1:92:e5:81:76:5d:d1:69:63:
56:2d:a3:49:0a:0a:09:26:7b:ab:b5:fc:93:23:02:fa:4b:f5:
22:ac:b3:14:01:40:9a:a1:8f:ce:9c:02:cb:5e:bb:4b:2f:48:
a9:19:40:81:00:35:6f:22:b3:68:17:95:73:dc:ba:80:5f:b9:
e4:5d:7a:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 12:36:41 2024 by rpki-client on console-ams.rpki-client.org