Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/34352e31332e3135312e302f32342d3234203d3e20323135373033.roa
File: 34352e31332e3135312e302f32342d3234203d3e20323135373033.roa (raw, json)
Hash identifier: tAeFWHRRTDvTUOrOy/1nzIOLy8j2fWFXA6Ea48yF5UE=
Subject key identifier: 91:19:3F:EB:F7:7E:0D:89:88:6B:5E:BE:38:D1:62:38:85:0E:53:1C
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 279A826ACDFB8D0C7E62625E7DE89228B8C66300
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/34352e31332e3135312e302f32342d3234203d3e20323135373033.roa
Signing time: Thu 28 Mar 2024 07:24:46 +0000
ROA not before: Thu 28 Mar 2024 07:19:46 +0000
ROA not after: Thu 27 Mar 2025 07:24:46 +0000
asID: 215703
IP address blocks: 45.13.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 May 2024 14:08:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:9a:82:6a:cd:fb:8d:0c:7e:62:62:5e:7d:e8:92:28:b8:c6:63:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Mar 28 07:19:46 2024 GMT
Not After : Mar 27 07:24:46 2025 GMT
Subject: CN=91193FEBF77E0D89886B5EBE38D16238850E531C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c0:3d:ce:15:c2:fc:da:9e:8d:2e:5d:b6:60:
12:46:20:aa:6a:dd:0c:0b:44:94:d9:bb:7f:e6:8c:
f5:6a:ba:3d:e8:fd:c5:d7:4d:9a:e6:e3:13:67:f0:
83:88:da:29:be:2e:d4:da:e7:f1:c6:ae:b7:4b:07:
aa:4f:25:e2:54:36:b8:1e:b5:f8:a2:90:2f:ab:31:
87:d2:f3:d0:2e:99:bd:ec:dc:56:ef:48:62:04:34:
cd:9d:b6:07:4b:a5:1a:aa:bf:f0:73:f9:7f:55:c0:
0e:b0:21:63:35:84:fb:f6:83:7c:47:1f:43:77:65:
77:51:31:83:c2:f9:c2:61:a0:40:8d:2d:be:e7:1e:
fa:79:2d:46:64:a4:04:1b:0f:df:cb:4d:88:4e:16:
7a:82:40:a6:9b:b6:4d:e3:d4:75:58:42:3d:b2:70:
e0:91:0f:c8:f3:40:31:44:7e:9a:89:91:40:24:b9:
bb:66:83:29:e3:6b:c3:47:ea:46:ad:9d:a5:89:b9:
60:9f:7e:c5:7e:cf:9c:67:0d:4f:39:c6:d6:fb:49:
be:41:d4:1c:26:ed:54:0c:2c:55:d3:1c:84:30:d1:
10:58:c4:90:88:a0:68:67:b2:5e:5e:a6:75:41:44:
47:d0:ce:95:c9:d3:b3:55:35:ae:e4:78:d0:96:34:
73:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:19:3F:EB:F7:7E:0D:89:88:6B:5E:BE:38:D1:62:38:85:0E:53:1C
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/34352e31332e3135312e302f32342d3234203d3e20323135373033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.151.0/24
Signature Algorithm: sha256WithRSAEncryption
13:90:5b:8c:70:1a:6a:40:21:0e:ac:7e:0e:87:27:fc:ab:14:
21:fa:33:74:67:67:b3:01:0f:f1:d4:dc:d3:d5:f7:89:16:49:
be:be:5d:41:7f:c4:d1:44:a1:54:3b:72:4e:5b:ef:16:61:1e:
4c:fb:39:93:36:b5:63:71:60:1b:9a:4c:9e:07:2d:22:c7:fa:
08:44:1e:a8:97:02:34:00:65:7c:f7:79:54:31:20:3b:be:6f:
2c:de:0e:35:6d:3a:2c:58:0a:f0:29:9c:8e:9e:02:7c:af:39:
4e:a4:5f:99:34:96:aa:bd:7f:99:dd:38:ea:26:bb:3d:84:3a:
c8:75:f9:73:44:a8:21:56:53:6b:f5:67:58:f7:94:27:c6:6f:
0b:77:7e:dd:0e:41:1d:a0:9a:ae:57:1f:6f:34:91:24:c6:af:
e2:76:0b:7e:d4:1c:a6:35:ee:f3:63:33:b8:06:78:b9:b3:da:
4f:b9:64:c8:13:a4:76:17:27:14:2e:bb:c0:67:34:e8:72:19:
b0:52:f2:a4:a0:02:16:b5:2f:f6:44:58:a2:ea:c2:89:e7:ab:
3c:e3:f0:00:59:0b:80:42:9f:1f:59:ca:23:09:14:18:5a:39:
6f:23:be:ca:83:35:fb:2e:8a:91:ca:b2:e2:95:b7:84:80:ca:
61:44:aa:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 11 18:18:49 2024 by rpki-client on console-ams.rpki-client.org