Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3133322e39392e302f32342d3234203d3e20313437313736.roa
File: 34352e3133322e39392e302f32342d3234203d3e20313437313736.roa (raw, json)
Hash identifier: GrK+PCBlwfQvb0FU6PLHfQtzHBlwkItB1ZaPI9DKHB4=
Subject key identifier: 45:10:0B:6D:48:F1:D9:38:04:94:A6:14:94:5F:25:99:83:E4:40:5A
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 183809EBCCE11559626C1A36052046B2A02FA6E7
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3133322e39392e302f32342d3234203d3e20313437313736.roa
Signing time: Thu 04 Apr 2024 11:05:15 +0000
ROA not before: Thu 04 Apr 2024 11:00:15 +0000
ROA not after: Thu 03 Apr 2025 11:05:15 +0000
asID: 147176
IP address blocks: 45.132.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:38:09:eb:cc:e1:15:59:62:6c:1a:36:05:20:46:b2:a0:2f:a6:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Apr 4 11:00:15 2024 GMT
Not After : Apr 3 11:05:15 2025 GMT
Subject: CN=45100B6D48F1D9380494A614945F259983E4405A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d0:b4:50:8f:c4:53:a5:18:f6:42:c9:4f:e0:
b6:d5:5c:09:e2:18:72:1a:65:e9:06:ca:25:ac:cb:
74:82:39:4d:8e:31:40:50:8e:5b:44:d0:a6:42:b4:
2e:33:1f:92:87:e1:46:e4:30:f2:19:10:f6:26:14:
7b:b3:63:35:3a:f0:d9:b2:62:b3:f0:ae:62:cf:99:
eb:ae:1b:0d:e6:bd:2e:a6:62:c2:51:21:96:05:4c:
82:98:95:78:9e:2b:2f:7e:6b:94:b1:f3:e2:6c:c9:
8b:89:f8:71:8d:15:f5:a3:52:f6:a8:bb:65:83:95:
f5:da:e4:d9:2a:19:ed:17:44:55:eb:e1:8c:fb:e8:
df:79:b3:09:57:26:da:67:30:3d:e8:ea:b4:79:fe:
40:75:8e:16:5c:01:83:37:4c:62:7b:22:40:bf:35:
d4:85:37:36:7f:d9:81:8e:0c:cc:79:c5:9f:50:29:
54:a4:dd:7c:3d:df:2d:5c:5e:1b:16:63:f2:ec:af:
62:55:d2:d2:fe:04:7a:dd:f2:dd:7c:3a:8c:01:5d:
7a:35:00:7a:73:6d:9f:60:1e:a7:fa:a5:01:75:27:
52:f4:96:66:0d:12:98:a2:58:f9:31:11:43:28:b0:
1a:5b:58:59:8e:42:3d:2a:9d:23:5b:26:fd:44:25:
e4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:10:0B:6D:48:F1:D9:38:04:94:A6:14:94:5F:25:99:83:E4:40:5A
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3133322e39392e302f32342d3234203d3e20313437313736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.99.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:6a:bd:f4:84:47:f2:33:a7:be:34:39:47:c9:dc:f2:11:ea:
1e:4d:de:d3:d7:b9:8b:1b:c9:81:b3:dc:60:93:6a:54:c8:9b:
11:71:14:a4:92:12:f5:7b:c7:28:70:49:1a:5d:0a:0a:70:c2:
d0:62:56:c2:8e:ab:ac:27:65:fa:60:79:b0:92:5d:e3:f6:e4:
f2:13:52:79:24:c9:f6:3a:b8:d4:ce:85:3d:22:ed:bd:d1:55:
6c:68:aa:5e:75:46:29:df:40:cf:d2:03:7f:c0:41:03:14:45:
67:d3:bb:da:2f:2a:d7:30:18:b8:22:b6:a2:7a:d7:1b:96:1d:
c1:93:3e:00:86:b3:14:b7:df:26:5b:0d:87:75:71:92:ac:dd:
8e:69:54:4b:b3:5c:23:aa:7f:d5:f1:c8:c6:4a:24:4b:cc:10:
79:e9:a5:54:0d:c6:fa:72:8a:5e:78:0c:06:54:a2:ed:e7:0d:
e6:7a:c1:07:16:b2:8d:af:18:80:10:78:6a:0e:1b:65:51:13:
16:bb:3a:b5:36:8a:4a:96:a5:2c:b2:9f:5d:f9:1d:73:14:d0:
9d:33:88:df:62:ad:a2:b8:3a:ef:1b:3b:ca:b8:85:17:26:95:
53:24:bf:2b:b5:a7:d1:7d:70:ca:24:d9:81:b1:be:d4:6f:49:
c9:ce:ab:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 20:31:07 2024 by rpki-client on console-fra.rpki-client.org