Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/34352e36362e3135302e302f32342d3234203d3e20333937333733.roa
File: 34352e36362e3135302e302f32342d3234203d3e20333937333733.roa (raw, json)
Hash identifier: sxG50LgT/h3QpQ5de3gXs44bUdVa+WF/vc37ICDp6aA=
Subject key identifier: EB:E2:60:AF:5A:4F:77:34:C2:19:C1:43:47:7A:BB:E0:BA:76:0F:BD
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 0143ADDEFB00B5F24D90D44268188DD0759B5AAA
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/34352e36362e3135302e302f32342d3234203d3e20333937333733.roa
Signing time: Thu 22 Feb 2024 17:05:13 +0000
ROA not before: Thu 22 Feb 2024 17:00:13 +0000
ROA not after: Thu 20 Feb 2025 17:05:13 +0000
asID: 397373
IP address blocks: 45.66.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Jun 2024 17:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:43:ad:de:fb:00:b5:f2:4d:90:d4:42:68:18:8d:d0:75:9b:5a:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Feb 22 17:00:13 2024 GMT
Not After : Feb 20 17:05:13 2025 GMT
Subject: CN=EBE260AF5A4F7734C219C143477ABBE0BA760FBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:08:bd:c2:f4:32:35:ca:78:ba:61:0f:cf:16:
ba:73:fe:27:fb:5d:e6:74:98:61:22:83:89:64:c6:
8a:32:bb:a2:bc:98:4c:e9:14:4d:0f:1d:c1:e0:10:
15:45:c8:3f:11:62:91:3b:ab:fa:4a:2a:1f:5a:12:
48:2b:3e:dd:b2:b7:56:f5:0b:9c:91:bf:b3:e6:bf:
27:44:b2:28:f4:b8:d2:c0:8d:4d:6d:af:93:14:ab:
0b:53:40:10:0a:be:45:f4:1d:98:c9:08:0d:81:3c:
09:8b:6b:e4:35:f8:0c:fa:05:a8:ec:37:68:7c:25:
fe:08:d1:b3:78:89:05:31:29:56:bc:8b:76:d9:21:
d4:b4:08:9a:36:02:f7:56:e2:0e:60:02:63:f0:cf:
79:de:ae:17:25:23:66:18:94:5b:7a:cc:0a:69:bf:
cc:76:b7:7d:c8:e6:25:c9:ad:39:1f:3f:2a:d7:99:
bc:9a:35:78:39:42:63:18:c7:4c:43:64:13:e0:76:
7b:d9:80:69:41:2d:fc:cf:6d:14:3f:db:85:46:f6:
1e:28:6b:4e:bd:fb:b9:35:4e:1d:8d:1e:47:df:be:
b7:92:81:63:1e:a5:91:e6:15:43:f1:77:0c:41:c0:
92:00:a0:69:25:82:55:41:c5:f2:c7:c9:34:1d:39:
95:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:E2:60:AF:5A:4F:77:34:C2:19:C1:43:47:7A:BB:E0:BA:76:0F:BD
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/34352e36362e3135302e302f32342d3234203d3e20333937333733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.150.0/24
Signature Algorithm: sha256WithRSAEncryption
97:55:0e:d4:96:eb:b8:e7:e8:be:f9:de:f8:29:58:60:a8:c8:
a5:16:34:91:80:3f:96:4c:a4:eb:9c:2b:83:1e:44:47:5a:84:
56:7a:49:09:49:a2:6a:f7:54:cf:c1:d8:4b:3c:e7:54:7d:85:
42:75:87:16:3c:03:2b:b9:99:93:8a:ca:37:42:8e:21:64:19:
11:dd:57:37:c1:1a:e7:1a:f8:ea:6d:05:70:b2:f0:a2:89:aa:
f4:37:64:5b:ad:c9:9c:32:fc:48:30:65:d5:c7:11:d8:55:6c:
1d:ab:e5:82:a2:68:22:bf:b0:86:b0:c7:c9:ac:af:9d:86:9e:
ab:28:1e:bf:4c:ab:45:a3:82:27:d4:72:02:2b:f0:d2:73:99:
5a:84:38:ae:29:93:fa:1b:15:87:2d:1b:c7:57:28:7e:1e:06:
3a:db:39:8f:1d:58:b0:51:a6:5b:22:b7:3e:72:92:34:4d:4a:
e6:e3:39:00:75:9d:cd:fc:67:38:21:d2:7e:8b:9d:32:3f:43:
ef:a8:c8:44:3f:45:39:fa:69:53:75:82:37:05:ae:51:2f:f2:
57:4e:a2:48:27:59:fc:dc:2e:b3:23:c4:62:69:52:16:0a:86:
70:c2:6e:d2:d2:c8:1f:37:6c:84:bc:04:9e:ce:76:96:d6:40:
be:78:ac:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 04:05:59 2024 by rpki-client on console-ams.rpki-client.org