Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e38372e3137352e302f32342d3234203d3e20313532343630.roa
File: 34352e38372e3137352e302f32342d3234203d3e20313532343630.roa (raw, json)
Hash identifier: rzkaH47yGXN7fymWGgYudqZlG5cIQOxd+GO+++d8sRE=
Subject key identifier: 14:B4:CB:C8:B0:2D:9B:6F:73:94:E2:5D:F1:D2:AE:EB:29:9C:06:A9
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 7C61685676EB62A444CFF7E663FABD8BDB1325EF
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e38372e3137352e302f32342d3234203d3e20313532343630.roa
Signing time: Fri 05 Jul 2024 06:29:37 +0000
ROA not before: Fri 05 Jul 2024 06:24:37 +0000
ROA not after: Fri 04 Jul 2025 06:29:37 +0000
asID: 152460
IP address blocks: 45.87.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.mft
rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:61:68:56:76:eb:62:a4:44:cf:f7:e6:63:fa:bd:8b:db:13:25:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Jul 5 06:24:37 2024 GMT
Not After : Jul 4 06:29:37 2025 GMT
Subject: CN=14B4CBC8B02D9B6F7394E25DF1D2AEEB299C06A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ff:93:01:6c:80:0d:dc:81:44:ff:1f:83:36:
40:3b:4f:d6:2e:c6:d4:0b:e2:95:cb:97:39:24:43:
8c:9e:90:85:a8:e6:00:2b:3a:95:68:e4:dd:db:59:
fb:2c:63:a4:f8:05:58:ad:af:9d:93:8e:2e:3b:31:
2d:3a:9f:3c:65:4a:8c:1c:dd:d6:03:e2:ee:00:e7:
e9:d6:66:05:58:60:8e:16:5e:5a:1e:be:7c:00:e3:
cf:4d:aa:8d:3d:c5:97:a4:96:d0:b0:1f:b4:fa:cc:
fb:6a:d2:d0:2f:e5:6c:d6:03:29:b9:93:94:82:dc:
58:cf:17:a0:fd:77:23:35:d8:d5:e5:44:9c:99:dd:
70:bd:ea:d2:3e:4d:11:15:cc:bd:0e:bb:28:fd:18:
59:d8:02:f1:5e:6f:0d:fd:24:21:df:c0:f4:ee:5f:
61:d9:78:01:86:3d:6c:22:c3:7e:2d:21:06:c0:b3:
f0:52:0f:07:6f:6e:1e:04:db:61:b6:2e:7a:06:b0:
c0:10:af:b9:6a:2d:1b:c6:cb:e0:ff:47:db:b6:ab:
76:7b:72:86:c9:98:fa:fa:43:f1:50:82:3d:24:8b:
fa:f6:82:ea:55:78:96:8b:ba:4c:7a:ea:49:17:d8:
02:1c:2c:d3:34:93:d2:4f:98:13:54:d8:de:a0:98:
62:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:B4:CB:C8:B0:2D:9B:6F:73:94:E2:5D:F1:D2:AE:EB:29:9C:06:A9
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/34352e38372e3137352e302f32342d3234203d3e20313532343630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.175.0/24
Signature Algorithm: sha256WithRSAEncryption
69:a6:a8:b0:0a:26:92:ad:83:96:d5:d6:32:c1:fb:da:7b:66:
b9:f6:57:14:4a:30:1b:75:3c:b5:08:44:93:54:f7:ce:a4:54:
d7:01:34:34:3e:05:9a:59:c0:d9:17:d0:fa:a5:04:f4:5d:3f:
14:d8:45:08:0a:41:61:7a:99:54:59:24:11:e7:fa:63:8d:d5:
b2:a1:5c:f1:1e:7b:95:2f:a8:a2:b0:b5:1c:bd:64:14:c1:ef:
b0:eb:b8:ee:59:f8:32:9d:a8:a4:eb:e0:d2:4f:a5:d6:7c:b8:
21:49:17:9a:3f:86:55:e5:fc:e4:73:9a:6b:72:5c:bf:e3:d0:
20:78:bc:e3:58:b6:8e:ae:68:cd:65:e4:50:0d:fe:4c:33:4b:
65:4b:e3:5f:ad:b0:82:52:0a:b9:88:53:45:93:fe:de:ae:f8:
eb:e8:19:51:5b:41:d0:87:4b:87:e9:0a:0a:bf:77:06:2e:8c:
bb:8a:0b:83:d4:f5:bb:12:5c:a8:fb:2f:0b:6b:4a:fe:38:13:
32:76:c3:a2:dd:e1:7b:0b:7e:0d:42:92:c3:7b:71:b4:2d:94:
ba:af:56:4d:a2:35:c3:c8:e5:17:47:f9:ba:7e:3c:c1:44:3a:
8a:28:17:cb:df:9c:4b:22:33:5b:67:b0:ad:a4:39:e9:18:7d:
ce:10:a5:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org