Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/34362e3130322e3233332e302f32342d3234203d3e20313338313536.roa
File: 34362e3130322e3233332e302f32342d3234203d3e20313338313536.roa (raw, json)
Hash identifier: mgi+03RnwRvkI7vM28OzuDh1EJbbMK/UHqkNpCp9KwM=
Subject key identifier: 4C:56:3C:47:3A:29:62:3D:89:38:EE:F0:21:ED:58:E4:28:BE:C4:23
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 75E02D159308DC8252FA859BDBBBB391A6095A22
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/34362e3130322e3233332e302f32342d3234203d3e20313338313536.roa
Signing time: Thu 08 Aug 2024 11:46:04 +0000
ROA not before: Thu 08 Aug 2024 11:41:04 +0000
ROA not after: Thu 07 Aug 2025 11:46:04 +0000
asID: 138156
IP address blocks: 46.102.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:e0:2d:15:93:08:dc:82:52:fa:85:9b:db:bb:b3:91:a6:09:5a:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Aug 8 11:41:04 2024 GMT
Not After : Aug 7 11:46:04 2025 GMT
Subject: CN=4C563C473A29623D8938EEF021ED58E428BEC423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2a:36:26:b8:4a:19:84:b8:76:cd:46:d1:82:
53:52:d1:c2:19:f4:fe:e5:20:53:23:96:7e:4a:34:
5c:57:2f:5c:de:10:70:0a:b8:d4:5f:47:b3:d2:78:
64:b0:ba:47:b1:b5:3e:c2:52:c3:81:07:f3:b6:58:
96:e6:fa:24:a5:15:a9:46:50:ae:1a:68:07:5d:e5:
51:55:94:1a:1b:89:3f:65:e6:3f:d0:1f:95:ec:30:
cf:b1:fc:52:3b:8e:1a:f7:24:ad:c2:3a:0a:13:54:
ba:31:12:1f:28:7d:8a:cb:a6:ca:5c:21:5a:fe:64:
f1:51:57:79:97:8a:a8:63:5f:93:9b:d3:e9:f5:3a:
21:7d:f0:f7:96:0a:14:7d:64:8a:cd:0a:19:32:40:
e6:c5:13:4a:54:35:01:89:75:7a:ba:0e:94:f2:7f:
38:15:55:09:c4:e2:36:e4:8a:90:b3:6d:9a:0c:d3:
f7:f3:25:07:32:a1:d1:a2:16:9e:fa:62:27:b7:a6:
6d:2d:f3:0e:9a:35:3b:0b:58:b4:a1:b6:b4:91:d0:
51:f6:07:2a:e9:b6:03:5b:0b:f3:ca:ec:ab:f5:67:
99:d0:91:21:0e:53:fb:e6:7e:a9:a7:e6:8b:38:f4:
a3:2b:19:51:24:b5:b6:2a:fd:88:00:c6:d1:44:8f:
18:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:56:3C:47:3A:29:62:3D:89:38:EE:F0:21:ED:58:E4:28:BE:C4:23
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/34362e3130322e3233332e302f32342d3234203d3e20313338313536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.233.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:40:d7:7d:b9:04:80:1e:f7:9a:39:b7:e7:31:0f:1e:a3:a6:
a8:90:87:79:e3:24:ec:5c:6d:ec:7d:ed:ef:d6:3d:12:7a:65:
07:c8:36:f1:d0:5f:c4:b6:ce:7d:31:ae:48:fe:82:66:08:93:
c8:7d:a7:bd:6e:f7:53:22:60:89:ef:57:6c:52:bc:f0:96:60:
e8:b3:22:4f:79:93:b1:77:f5:be:b2:7a:68:a2:9d:a7:ac:92:
15:2a:a8:f3:f2:31:8e:70:80:84:f0:f0:94:51:8a:9f:cf:2e:
e5:06:6a:71:f5:57:70:61:e5:9b:e6:2a:e1:10:61:ac:f6:2f:
0e:3d:50:0e:4b:9a:1e:17:0f:d3:a4:9a:74:4e:0b:f8:04:8b:
69:41:5a:e9:c8:7e:2e:bf:c7:e3:65:cf:a8:b9:68:73:ee:6d:
91:5e:92:b0:40:6c:4c:73:6c:d0:a3:5d:bd:11:1a:77:85:29:
f4:39:c8:31:9d:41:97:90:1a:ff:e5:23:77:4d:b7:68:8e:ce:
11:01:ac:d9:54:cc:5b:b8:f6:3d:69:0b:20:2d:4c:aa:0d:d8:
0d:99:4b:6f:96:24:ff:c0:d5:68:b1:0e:1b:c6:e9:b1:86:2e:
8a:00:9f:88:51:43:24:a0:13:77:9f:4f:12:33:39:78:f5:e2:
43:c2:2b:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:17 2024 by rpki-client on console-ams.rpki-client.org