Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/34352e38362e39322e302f32342d3234203d3e20323039313831.roa
File: 34352e38362e39322e302f32342d3234203d3e20323039313831.roa (raw, json)
Hash identifier: DCKpF3JINbgiAv97896vm066RnUP6QrNVn+tVh6X8tM=
Subject key identifier: 7A:B1:D4:02:DA:A3:7A:BD:31:98:DF:94:11:D8:93:06:D2:C9:DB:83
Certificate issuer: /CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444
Certificate serial: 5FC0C1C6B3DD93C75B2F9D52C58F7BCB91C636ED
Authority key identifier: D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/34352e38362e39322e302f32342d3234203d3e20323039313831.roa
Signing time: Tue 11 Jul 2023 17:24:40 +0000
ROA not before: Tue 11 Jul 2023 17:19:40 +0000
ROA not after: Tue 09 Jul 2024 17:24:40 +0000
asID: 209181
IP address blocks: 45.86.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl
rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft
rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 14:46:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:c0:c1:c6:b3:dd:93:c7:5b:2f:9d:52:c5:8f:7b:cb:91:c6:36:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444
Validity
Not Before: Jul 11 17:19:40 2023 GMT
Not After : Jul 9 17:24:40 2024 GMT
Subject: CN=7AB1D402DAA37ABD3198DF9411D89306D2C9DB83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:64:dc:2b:be:22:ec:35:13:0a:e4:ac:5d:48:
75:a0:61:a3:1b:69:82:3c:af:e3:2d:5c:ec:e1:5d:
21:2d:f0:6c:cf:cf:27:06:a5:b3:eb:34:e0:0d:9a:
eb:62:1b:5e:24:ed:62:59:5b:84:b9:eb:2d:42:ae:
ea:50:d3:45:29:05:86:b2:bd:21:bd:54:58:4b:de:
cc:4f:74:c0:0d:21:6e:05:1e:d4:05:50:81:fa:a8:
26:a9:bf:f9:46:81:a0:a9:57:36:5b:30:98:68:d0:
bc:fb:e8:a8:2c:89:56:03:60:6a:40:5c:8d:1e:3e:
93:0b:c9:c3:de:54:cc:cd:cf:58:be:d6:46:d3:cc:
ec:6f:47:78:a4:22:7e:b5:28:0c:99:5f:5b:7b:e3:
de:74:ba:8d:49:da:88:4c:d8:96:02:84:38:18:39:
19:0a:1b:8b:ca:ef:01:b5:36:6d:67:23:40:73:26:
6c:f0:47:39:fb:c4:6a:34:de:06:24:10:86:0c:76:
03:7d:b1:86:70:1c:d9:b4:99:a1:58:0a:43:52:a1:
85:44:e2:a2:f2:e3:d7:6e:39:73:fd:25:b9:b2:cd:
8e:b9:9f:05:71:0f:fe:9b:2f:56:ce:2d:eb:76:45:
07:07:2d:66:99:df:6d:fb:54:ad:4d:3a:95:b4:61:
10:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:B1:D4:02:DA:A3:7A:BD:31:98:DF:94:11:D8:93:06:D2:C9:DB:83
X509v3 Authority Key Identifier:
keyid:D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/34352e38362e39322e302f32342d3234203d3e20323039313831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.92.0/24
Signature Algorithm: sha256WithRSAEncryption
06:e7:1f:87:bb:59:4d:95:73:df:23:a4:d6:7f:7d:cb:e0:6d:
75:14:a2:31:ff:dd:98:62:4f:f6:c9:3b:c8:bc:02:d5:a1:59:
23:8d:1c:67:16:d2:3b:a7:98:66:83:f9:b1:20:d9:07:d4:0c:
cb:a9:4d:22:9e:20:3e:c2:91:ff:48:51:81:f9:18:2e:5b:57:
dc:d9:e7:91:aa:9c:ae:ff:e7:2a:e9:df:33:b9:9f:f0:3e:65:
55:c6:85:0f:83:ea:92:d4:56:07:a3:a1:3b:b7:7b:35:38:dc:
1e:59:38:c8:ba:31:58:de:11:a3:f2:a1:7f:f9:d4:7c:03:d1:
8f:66:bb:6c:ed:f0:e1:97:f3:df:5d:95:4a:6f:a8:95:32:5e:
2a:64:2a:b7:fa:33:29:7a:da:59:90:49:40:93:eb:61:d1:5b:
a5:66:82:8a:ae:e5:4e:63:2f:c9:03:21:60:6c:33:36:f6:cd:
d8:02:c7:c0:a7:f1:f5:48:65:fe:26:23:47:c1:88:7c:94:c3:
62:88:22:64:3c:4a:8c:b4:2d:20:d7:fe:39:eb:65:4e:9e:c8:
e7:a0:8b:c0:d0:46:14:30:ed:a3:68:02:87:ac:4d:ed:b1:86:
96:3f:bf:cb:6e:66:27:35:c3:b9:b2:3d:e3:3d:b7:02:99:de:
51:b4:ee:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 21:27:18 2024 by rpki-client on console-fra.rpki-client.org