Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3133372e39372e302f32342d3234203d3e20313432313131.roa
File: 34352e3133372e39372e302f32342d3234203d3e20313432313131.roa (raw, json)
Hash identifier: nCqYwBbLpPMIDOPc/rS+jmakSEX14iZ+qvWtn/cebhg=
Subject key identifier: 1D:C5:59:AA:7D:9D:A2:99:27:0F:48:16:A7:73:A4:F0:B6:0A:D2:3B
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 2E2EA3D82148B7274E2FDDFBE173EE356FDB42FE
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3133372e39372e302f32342d3234203d3e20313432313131.roa
Signing time: Sat 05 Aug 2023 15:48:58 +0000
ROA not before: Sat 05 Aug 2023 15:43:58 +0000
ROA not after: Sat 03 Aug 2024 15:48:58 +0000
asID: 142111
IP address blocks: 45.137.97.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.mft
rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 May 2024 16:37:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:2e:a3:d8:21:48:b7:27:4e:2f:dd:fb:e1:73:ee:35:6f:db:42:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Aug 5 15:43:58 2023 GMT
Not After : Aug 3 15:48:58 2024 GMT
Subject: CN=1DC559AA7D9DA299270F4816A773A4F0B60AD23B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:4d:96:ea:ed:83:74:23:88:70:bb:23:1f:e8:
16:f4:bd:af:83:6b:5b:4e:da:be:26:a1:c5:8b:a3:
9e:c1:92:a3:a1:67:51:fb:bb:68:fe:a5:29:de:c2:
92:10:4a:f3:e6:b1:3b:bd:dc:fb:64:7c:32:73:a3:
c4:07:56:4d:a9:c1:e6:71:14:50:3f:9f:74:21:07:
66:de:0e:ce:20:51:10:b8:02:1e:d1:f1:0c:8c:81:
16:9f:b6:f1:72:5a:00:01:3c:5a:d9:72:35:e9:43:
02:10:67:a7:90:7e:c0:26:c0:14:91:c6:15:fd:75:
85:57:e5:ab:ca:af:c5:62:e9:77:83:bd:37:94:df:
76:6a:b9:44:c4:ec:59:6c:1c:6a:94:cb:7c:56:12:
bd:c9:c2:9a:d9:af:2b:c4:3c:2a:39:e9:8c:5f:a0:
a8:ab:52:cc:d0:1e:32:19:8a:e9:62:6e:02:14:36:
cf:6b:c9:c9:89:33:f3:9a:51:d4:c5:f4:d7:e1:81:
bf:e4:b8:50:bc:b2:17:00:d0:29:03:f4:8b:c7:e5:
23:b7:69:16:83:74:72:11:bd:c1:93:9e:03:9a:d8:
a6:70:bb:de:88:91:e9:1a:20:55:0c:63:7d:2a:d2:
73:91:95:96:2b:07:73:36:fe:cd:fd:53:2a:f4:d7:
72:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:C5:59:AA:7D:9D:A2:99:27:0F:48:16:A7:73:A4:F0:B6:0A:D2:3B
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3133372e39372e302f32342d3234203d3e20313432313131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.97.0/24
Signature Algorithm: sha256WithRSAEncryption
18:52:4a:dc:c7:c4:a9:a4:f6:be:67:71:a2:a5:72:d2:ac:a0:
65:a7:ba:16:f1:a8:4e:97:a0:90:24:7d:14:85:cd:85:7a:e4:
02:d7:6e:98:56:c2:65:8b:9a:10:9a:f5:87:2f:62:a6:78:af:
80:96:53:cb:ef:c8:7e:24:43:41:03:5c:94:81:4d:e4:4f:82:
c3:0e:ae:a4:3e:f6:22:fa:49:f4:a6:02:df:3e:bb:50:f0:66:
49:41:45:af:9c:01:74:3f:6e:3b:63:f8:6f:37:cd:cb:74:fc:
8c:13:b5:ae:8b:a0:0a:16:f4:b9:c0:05:fd:a6:1d:53:d8:fb:
24:cb:9c:de:68:67:ec:59:cd:2d:ab:0c:a6:07:47:e4:89:2b:
3a:0b:f6:88:46:71:f2:fd:f3:9b:27:b7:41:7c:7a:29:3c:49:
9f:b9:a9:fb:36:bf:99:83:09:db:d7:12:29:ee:f9:73:d2:dd:
53:55:f0:fe:4a:75:81:93:6c:1d:00:b8:05:ba:a7:b5:42:5b:
7f:24:3c:2b:55:b9:c7:8d:ef:a9:87:f1:21:88:8b:4d:a8:86:
8c:4c:e3:a2:30:d9:cf:3e:ee:62:ff:44:76:51:7d:1c:35:35:
78:a4:cb:2e:54:ea:2e:30:27:ef:58:72:9f:3d:a2:56:42:c1:
16:46:39:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 11 20:11:50 2024 by rpki-client on console-fra.rpki-client.org