Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3135382e35362e302f32342d3234203d3e20323039323432.roa
File: 34352e3135382e35362e302f32342d3234203d3e20323039323432.roa (raw, json)
Hash identifier: W6UF1FoprOgv4AOQfIEHTKtAh5PiglgHXY+LFouct0Y=
Subject key identifier: 69:C4:A6:C4:65:53:A5:75:88:E2:D7:3C:54:F4:BB:E3:3D:74:71:C7
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 64377A0ECC8912AF367CFB980D8CFF40CD24EE54
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3135382e35362e302f32342d3234203d3e20323039323432.roa
Signing time: Tue 30 Jan 2024 12:16:05 +0000
ROA not before: Tue 30 Jan 2024 12:11:05 +0000
ROA not after: Tue 28 Jan 2025 12:16:05 +0000
asID: 209242
IP address blocks: 45.158.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.mft
rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:37:7a:0e:cc:89:12:af:36:7c:fb:98:0d:8c:ff:40:cd:24:ee:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Jan 30 12:11:05 2024 GMT
Not After : Jan 28 12:16:05 2025 GMT
Subject: CN=69C4A6C46553A57588E2D73C54F4BBE33D7471C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:65:7b:23:23:26:8d:03:a5:66:00:ef:da:06:
ca:f5:2f:1a:97:c8:39:91:09:a7:35:e4:0f:20:8c:
31:8f:4e:c5:3a:94:61:a2:24:96:36:fb:3e:bf:72:
7b:cc:0e:02:4d:da:9b:e8:4d:62:d0:a0:cc:e1:da:
11:61:5e:bf:19:a4:24:60:4c:22:28:ac:cd:e1:fe:
b9:76:28:d4:41:23:63:4b:c4:13:62:e6:06:db:41:
ac:b1:3f:60:a3:d9:cc:d6:61:c8:e6:11:15:cd:19:
c0:0e:d5:2b:a8:a0:54:85:aa:35:1a:43:bb:f8:23:
1f:4e:a3:cd:ac:f4:a5:4c:12:88:a3:c8:5c:bc:8b:
62:d2:43:df:8a:56:4d:f8:24:cd:aa:8c:9c:37:26:
68:2c:60:d5:9e:d5:37:01:cd:29:fd:cf:7b:6b:76:
3f:a0:3f:e5:ed:38:29:ed:54:19:cf:7e:2b:98:e6:
62:0c:22:40:21:1e:85:0e:fe:95:94:75:a9:0d:d1:
bf:13:8c:60:1f:09:fa:fd:eb:95:99:2a:a5:a0:67:
05:a4:06:9b:94:5c:6d:26:b8:1b:bb:94:f7:3a:26:
d6:11:c9:84:d5:ae:b3:38:ba:6d:5e:4a:2e:2a:f0:
43:7b:5b:55:99:4d:25:a7:f6:5e:97:72:94:24:bd:
3b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:C4:A6:C4:65:53:A5:75:88:E2:D7:3C:54:F4:BB:E3:3D:74:71:C7
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e3135382e35362e302f32342d3234203d3e20323039323432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.56.0/24
Signature Algorithm: sha256WithRSAEncryption
63:86:5e:23:7a:64:c8:45:ef:ab:b8:3a:6f:dd:54:8b:cd:c2:
8b:b2:20:fe:16:73:db:6c:2f:4c:69:01:0e:a9:fd:66:56:e6:
5f:8d:33:52:12:f8:6e:07:b9:73:41:39:69:de:72:32:22:96:
f0:2b:a0:c7:54:08:19:05:91:7e:04:0c:26:84:a6:29:51:bd:
6a:34:f5:b5:d4:3a:ad:a0:e0:98:6d:d6:3f:a0:b7:cf:1a:75:
2e:7c:59:bf:d8:6e:d5:57:92:29:f7:0d:c0:4b:bc:ce:74:83:
a3:04:f8:87:a7:b5:81:85:83:5d:29:9f:29:e5:af:b3:17:56:
b2:9c:f6:1f:a0:73:b9:a1:f5:53:fa:a1:d6:a5:ef:81:4c:4e:
3a:0f:ed:ad:bc:a7:46:75:52:79:dc:b5:1f:7f:bf:ab:48:4a:
45:a7:c3:63:0d:1c:9d:83:fa:9e:e6:05:a0:99:4f:54:00:d8:
95:ec:a5:76:f9:4a:f6:65:5f:3e:80:f3:82:21:63:6d:be:97:
2b:60:45:0d:44:18:d5:05:c7:a2:1a:e3:d4:66:ef:44:51:2e:
5f:8c:51:f5:ce:6a:b5:ea:a5:14:e9:70:dd:d4:d6:95:9e:cd:
4f:5e:a5:21:4d:d4:7f:0f:b3:da:0f:1f:e0:ba:0d:79:aa:71:
52:43:39:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 01:14:08 2024 by rpki-client on console-fra.rpki-client.org