Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130352e302f32342d3234203d3e203631333137.roa
File: 34352e3134362e3130352e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: YU4ONWSxyxnyzqTVUkJd0/DTD03kQIU4wTi23LIp7Kw=
Subject key identifier: 29:40:A7:BB:AB:D4:9C:DE:44:8F:42:6B:7E:C1:1C:34:9E:A2:DD:D1
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 62662020AC89048EA5BC37329DBBF2ACCC179FC4
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130352e302f32342d3234203d3e203631333137.roa
Signing time: Thu 04 Apr 2024 11:05:15 +0000
ROA not before: Thu 04 Apr 2024 11:00:15 +0000
ROA not after: Thu 03 Apr 2025 11:05:15 +0000
asID: 61317
IP address blocks: 45.146.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Apr 2024 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:66:20:20:ac:89:04:8e:a5:bc:37:32:9d:bb:f2:ac:cc:17:9f:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Apr 4 11:00:15 2024 GMT
Not After : Apr 3 11:05:15 2025 GMT
Subject: CN=2940A7BBABD49CDE448F426B7EC11C349EA2DDD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8d:18:ce:25:99:86:fa:07:8e:bf:c1:a2:25:
34:f9:5a:76:78:b8:07:02:a9:2c:76:05:82:bd:52:
75:09:6d:aa:5e:3e:f1:8b:dd:7c:f3:f1:04:3e:ba:
46:0b:71:08:7d:c6:ad:8a:92:33:5c:fd:d6:f5:b8:
a6:6b:95:34:c0:db:18:93:94:df:9d:99:73:16:d6:
ee:cb:43:92:88:e2:0e:ae:2f:ac:a2:f2:62:4a:59:
6f:01:b3:48:de:8d:b1:b5:14:9f:48:3f:2c:ae:0e:
aa:6b:14:f4:16:ae:96:ed:d8:6b:df:be:1c:79:2b:
db:3b:df:30:c9:16:bb:43:e2:a7:8c:8d:ec:09:5d:
2c:a5:e0:b9:c0:45:66:0b:d6:62:77:be:7c:0f:df:
aa:e6:c8:b4:ad:38:af:98:94:ea:37:56:46:01:7f:
21:fd:90:bb:ca:7c:db:5b:a6:7d:4c:6b:07:24:c0:
64:17:28:ce:2c:c6:34:83:b0:9a:62:34:ca:47:6b:
ab:11:d1:87:03:ec:51:65:81:8e:05:3f:69:e5:9f:
a8:3e:02:7a:40:24:96:85:8a:5e:0d:53:f6:09:36:
b4:07:1f:9b:7e:58:e5:80:08:6c:c5:61:09:d0:4a:
06:fb:19:25:cc:0e:c9:7f:33:3e:41:65:f0:d6:60:
68:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:40:A7:BB:AB:D4:9C:DE:44:8F:42:6B:7E:C1:1C:34:9E:A2:DD:D1
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130352e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.105.0/24
Signature Algorithm: sha256WithRSAEncryption
81:22:cd:33:2e:2c:65:df:d7:f6:c8:20:e9:b0:3a:e9:1b:38:
4b:4b:08:a5:d2:1b:d8:67:37:99:88:fc:ed:4e:b1:7c:32:b8:
ac:96:ba:c3:e8:b3:98:e4:fa:24:49:e5:7f:1c:ee:55:16:00:
18:cb:3b:83:d5:dc:fe:c5:f2:38:73:b1:ed:eb:c4:85:9c:4b:
18:13:f6:e2:21:fc:09:c1:a0:37:d9:f9:2a:d5:63:c1:7e:67:
ef:b4:30:4e:e1:90:0b:1e:21:1b:08:cd:f8:51:8d:f3:37:af:
5c:bc:84:0c:67:17:9b:4d:df:ae:71:97:a1:4f:a5:d9:b8:c7:
2c:36:31:89:3f:03:ad:35:5b:ec:15:89:61:44:ef:48:34:fb:
7c:81:07:b5:9d:c1:91:9d:0d:25:39:e8:e6:06:84:f2:01:90:
b7:90:f1:d7:67:86:26:91:db:c8:ad:1b:6d:1c:3f:81:56:25:
e7:e1:85:2d:06:a0:98:73:25:75:b5:41:12:24:53:f1:8f:7b:
8f:60:06:c9:15:2c:dc:44:51:e8:62:58:cc:55:6f:fe:06:09:
e7:d2:c9:84:2a:75:cf:bb:ad:e9:a7:cb:13:9a:9a:22:a1:8a:
8c:40:57:e6:a4:f4:7f:48:ed:ea:14:a4:d9:e1:bd:c8:cb:fc:
73:5c:05:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 12:47:28 2024 by rpki-client on console-fra.rpki-client.org