Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3133322e39362e302f32342d3234203d3e20323037393932.roa
File: 34352e3133322e39362e302f32342d3234203d3e20323037393932.roa (raw, json)
Hash identifier: D56YLUpSVp4xhOmIvfty8gG6iiAYo9VsmYj5N1u64oE=
Subject key identifier: 2A:54:DD:B4:F2:23:CD:AD:9B:AD:DF:FF:7C:E9:B9:FB:3F:16:D8:A7
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 197988A2BEA2F2F3642EBD78F2347DA65F3ACBAD
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3133322e39362e302f32342d3234203d3e20323037393932.roa
Signing time: Thu 04 Apr 2024 11:05:14 +0000
ROA not before: Thu 04 Apr 2024 11:00:14 +0000
ROA not after: Thu 03 Apr 2025 11:05:14 +0000
asID: 207992
IP address blocks: 45.132.96.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:79:88:a2:be:a2:f2:f3:64:2e:bd:78:f2:34:7d:a6:5f:3a:cb:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Apr 4 11:00:14 2024 GMT
Not After : Apr 3 11:05:14 2025 GMT
Subject: CN=2A54DDB4F223CDAD9BADDFFF7CE9B9FB3F16D8A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:61:ab:d8:f2:06:ed:ed:ed:f5:2f:f4:1e:6d:
94:ae:4c:2d:21:eb:89:6c:68:d1:46:83:ec:65:1b:
2f:90:48:20:b8:31:5b:d0:c5:fd:89:37:87:b0:5e:
11:fc:f2:e4:a9:e0:32:fe:af:b0:0e:d5:70:77:43:
22:f1:5d:29:fb:66:86:10:83:c0:b5:83:16:2c:20:
e6:d4:b5:ee:4d:14:d4:95:c2:cf:22:14:ce:7f:4e:
35:39:9c:29:ec:b3:85:77:82:f7:5e:9c:6b:88:7e:
f3:14:e9:6b:1f:03:8e:36:3e:72:88:f0:fe:3a:4a:
a6:50:7a:53:7e:ba:1c:fc:b1:bf:eb:30:f7:f8:48:
17:12:4d:20:c9:e7:0b:f5:f1:40:0e:9e:e0:48:fa:
2d:39:2d:b9:b1:c5:29:d3:6e:2a:72:47:37:1b:53:
e5:f8:a3:e5:88:35:92:fd:57:3b:d6:d2:ba:e6:be:
32:74:6e:49:dc:21:bb:93:d8:76:14:d7:b8:90:4f:
56:5c:98:0d:80:70:2d:a1:3a:75:54:57:58:f9:f3:
59:e4:48:9a:4e:e8:cd:30:94:b3:22:f1:56:cb:fe:
a9:8b:34:3c:28:a0:fc:ea:f4:c5:34:ae:fa:77:5a:
5c:1b:5f:d0:b4:1b:73:a3:2c:36:03:b9:6a:dc:16:
c8:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:54:DD:B4:F2:23:CD:AD:9B:AD:DF:FF:7C:E9:B9:FB:3F:16:D8:A7
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3133322e39362e302f32342d3234203d3e20323037393932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.96.0/24
Signature Algorithm: sha256WithRSAEncryption
05:f4:3b:96:0c:1e:0e:0e:f1:7d:3e:f0:0c:3e:55:3a:ba:02:
d9:5f:48:0c:89:aa:a1:16:db:f7:f7:ed:f6:b2:02:5c:a8:df:
dd:3f:18:8e:f4:5c:e6:c1:86:a6:4d:0e:fc:8e:e1:11:3d:b2:
a6:a4:0d:e5:64:3c:9b:11:6e:f3:4b:b4:9f:2f:e4:d1:ea:2f:
6c:f7:2a:92:65:f6:65:f1:b2:42:59:08:08:44:ea:ca:b0:48:
c1:79:12:6d:61:3b:4a:4e:63:4e:11:4f:1d:5d:2a:00:6d:7b:
e6:6f:88:1d:d4:d7:6c:0c:fd:ad:45:10:dd:08:5c:24:32:2e:
8e:83:69:c5:c1:fc:8b:30:e9:53:f3:b1:9c:16:4b:d1:97:95:
00:45:91:97:51:a2:e1:c5:10:3a:e6:94:33:a1:c6:ae:9e:70:
cf:cc:b1:59:b4:ff:7f:19:b4:98:e1:d9:e6:98:7c:15:36:b9:
29:73:26:34:b2:64:47:de:20:e6:d2:72:a3:de:86:40:33:88:
21:66:a9:3c:5b:05:e4:10:72:04:0b:9c:51:f6:57:35:10:e2:
27:81:fb:dd:94:d1:53:6d:0d:95:bb:7f:55:c9:74:5e:d6:d4:
2d:07:3b:0d:d8:78:13:33:61:95:c6:bb:11:ef:5d:0c:83:32:
64:aa:c2:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 07:03:46 2024 by rpki-client on console-fra.rpki-client.org