Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e38392e3135302e302f32332d3234203d3e20323130353432.roa
File: 34352e38392e3135302e302f32332d3234203d3e20323130353432.roa (raw, json)
Hash identifier: wFozge1poHwEF4lXqXXlfcFZR2pYAANkE7nE8OvV8ZE=
Subject key identifier: 07:2C:05:BA:49:E8:74:F4:04:4C:8A:4A:6C:7A:7D:19:52:F0:D4:BA
Certificate issuer: /CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Certificate serial: 6C251291BA0AD97993ADCE6AD083A0730BE2E24D
Authority key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e38392e3135302e302f32332d3234203d3e20323130353432.roa
Signing time: Tue 16 Jul 2024 14:01:14 +0000
ROA not before: Tue 16 Jul 2024 13:56:14 +0000
ROA not after: Tue 15 Jul 2025 14:01:14 +0000
asID: 210542
IP address blocks: 45.89.150.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:25:12:91:ba:0a:d9:79:93:ad:ce:6a:d0:83:a0:73:0b:e2:e2:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Validity
Not Before: Jul 16 13:56:14 2024 GMT
Not After : Jul 15 14:01:14 2025 GMT
Subject: CN=072C05BA49E874F4044C8A4A6C7A7D1952F0D4BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8b:c8:00:40:a2:82:22:be:73:0f:43:f7:1c:
79:71:f5:8d:19:57:63:7c:49:6b:0c:22:eb:01:45:
6e:9a:2f:e0:3d:7c:6e:c9:60:e6:63:68:87:9a:bf:
c6:29:c6:bd:c3:ef:eb:e7:2c:b4:2b:97:fb:2f:66:
6c:38:25:1d:4f:94:a1:36:85:4d:ee:42:8f:47:7a:
20:6b:37:66:d6:4d:3a:e3:5f:b8:76:41:42:6e:dc:
3b:8a:5e:d1:0e:67:8f:b7:95:d8:8a:75:5a:0a:53:
5f:54:f7:05:a4:d9:f3:18:c9:55:bb:37:df:0f:38:
62:31:54:a0:50:ad:70:9d:7d:de:75:f8:a2:d3:bb:
c5:be:9a:d1:74:5c:2f:dd:de:6c:96:87:65:5b:9b:
a0:3b:f9:99:c4:04:e6:bf:bc:ee:6c:ee:b5:ce:8e:
15:f0:63:b9:9c:7e:1b:44:b9:c5:6a:bb:b4:5a:55:
7f:b7:4b:7c:fe:2c:10:d8:3a:29:b9:9e:ad:2a:31:
b0:5d:b3:1c:6f:4e:fa:e5:fc:d9:b5:11:ff:9b:98:
a8:e9:25:db:94:50:f1:fb:70:76:9c:3d:7a:ff:4d:
4c:2f:6e:25:c3:9b:17:6f:30:f0:f0:0f:e2:49:5c:
a3:33:0a:42:7c:09:2e:bf:1f:56:cd:65:1e:40:8b:
cf:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:2C:05:BA:49:E8:74:F4:04:4C:8A:4A:6C:7A:7D:19:52:F0:D4:BA
X509v3 Authority Key Identifier:
keyid:83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/34352e38392e3135302e302f32332d3234203d3e20323130353432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.150.0/23
Signature Algorithm: sha256WithRSAEncryption
50:cc:aa:d2:a6:b1:0a:e3:16:b6:4b:47:06:0b:84:52:4e:c3:
4e:11:55:ac:b5:4e:af:49:2d:c2:28:4a:85:40:02:ff:db:c3:
04:17:f9:cf:bc:c6:49:bc:78:2c:1d:5a:06:54:d5:d4:5d:66:
ea:87:a9:fe:3f:65:68:3b:25:e1:c2:c5:af:99:22:ca:2e:4a:
15:df:02:1f:6a:5e:72:2c:63:ad:d3:4b:29:f6:1e:23:71:e8:
e2:30:18:02:e9:5a:de:c5:f5:42:62:70:ee:bc:bb:30:60:1a:
9c:46:7c:18:37:9f:5d:5f:3a:9e:85:3f:32:1d:fd:56:83:3f:
72:6c:e8:ae:c7:42:bb:1c:7c:f7:29:5f:d5:ef:a9:b8:ff:b1:
6f:a3:7e:8e:24:49:21:a7:fd:84:2a:2a:c9:5b:3f:fa:0f:08:
10:ce:0c:1a:7b:23:be:aa:d2:50:33:a8:cf:f0:12:69:e9:df:
16:92:02:73:57:a5:2f:2a:22:05:f7:e0:b2:e3:40:99:77:a7:
0f:cc:5a:fa:48:e4:10:ef:74:c8:2b:64:0a:6a:17:94:42:66:
d5:1f:d1:d1:d6:78:a6:f5:ed:fa:5d:f9:18:c2:91:93:37:ae:
6b:3f:fa:7e:00:63:a1:be:0e:ff:f6:92:2e:d4:2b:86:7b:1b:
c0:bc:bb:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org