Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130362e302f32342d3234203d3e203230343733.roa
File: 34352e3134362e3130362e302f32342d3234203d3e203230343733.roa (raw, json)
Hash identifier: G78YmllKyw52z8K9JyEJkeus3wMTTEayXclVoIlGwdY=
Subject key identifier: FC:84:25:C3:D5:18:6E:63:0C:27:F8:48:43:EA:B8:F4:0C:07:3C:69
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 77CD75434F1EC5EA4C20B8D333CA0B8D8FECAFBF
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130362e302f32342d3234203d3e203230343733.roa
Signing time: Thu 11 Jul 2024 12:30:29 +0000
ROA not before: Thu 11 Jul 2024 12:25:29 +0000
ROA not after: Thu 10 Jul 2025 12:30:29 +0000
asID: 20473
IP address blocks: 45.146.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:cd:75:43:4f:1e:c5:ea:4c:20:b8:d3:33:ca:0b:8d:8f:ec:af:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Jul 11 12:25:29 2024 GMT
Not After : Jul 10 12:30:29 2025 GMT
Subject: CN=FC8425C3D5186E630C27F84843EAB8F40C073C69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ea:9d:94:57:f1:13:57:35:b3:74:6e:f5:aa:
d7:76:ed:d6:61:b4:84:92:dc:57:17:13:4a:01:84:
02:32:b4:f8:48:29:76:43:51:5e:33:e0:92:4f:4c:
4d:75:95:f4:79:e5:2b:31:4b:fb:f9:81:6a:20:b0:
e8:d6:c4:8f:fb:dc:e1:a1:21:d9:4f:bd:57:c9:7e:
5f:d3:84:a3:f8:e8:c7:c6:7b:de:f1:65:30:b3:db:
55:11:a8:8f:84:91:a2:3e:7c:99:e1:8c:91:8b:c7:
d0:29:bb:8b:fd:bf:c3:a8:15:a7:af:f4:75:9b:50:
eb:0b:3d:02:f0:b6:1a:19:10:ab:90:a9:8d:93:5b:
5b:83:44:74:f6:40:46:b9:f2:aa:64:29:9f:3f:6b:
ec:60:17:2b:9f:4d:f5:df:e7:0e:a2:bf:11:83:70:
7c:7a:df:dd:29:e5:d5:62:46:49:28:85:c4:6b:a3:
76:a2:22:6f:c1:55:ec:fb:04:1e:fc:59:9d:68:47:
b7:be:b0:2d:55:23:d9:92:6e:ff:6a:24:a5:8b:93:
1f:20:50:84:8d:ba:b0:8a:bc:74:91:4f:00:f6:0a:
62:fe:7b:59:4a:fc:aa:41:94:66:41:31:38:74:05:
d9:45:79:4a:44:8a:a9:f7:d9:67:35:44:9f:24:03:
2a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:84:25:C3:D5:18:6E:63:0C:27:F8:48:43:EA:B8:F4:0C:07:3C:69
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130362e302f32342d3234203d3e203230343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.106.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:c8:73:b2:39:75:14:e1:03:21:23:fa:f2:55:7c:59:c0:5e:
64:26:07:37:a5:f8:3a:f8:80:36:6e:a5:2e:b4:a8:91:f9:f3:
f8:84:15:e8:f7:be:70:f1:b1:05:b0:6f:0c:bb:a4:2f:bc:e2:
1e:55:3b:05:be:ab:a7:6f:ca:79:b6:a1:8a:ad:9e:e1:64:47:
34:18:22:34:f5:cd:63:be:2d:0a:b1:52:e8:da:3e:2f:13:74:
7c:d5:c7:23:3f:e0:cb:86:1d:0c:bd:50:fe:43:36:1f:51:ee:
04:cb:d1:4f:91:07:12:57:4d:35:ba:b2:32:d4:1c:9a:f7:6f:
a9:9e:e0:f5:4f:f0:46:68:66:ff:7d:27:e8:ab:11:06:9e:e0:
b5:0f:ca:0d:d7:91:07:e2:a5:d9:1e:84:0f:e0:c1:fa:64:00:
0e:7d:c7:9f:7d:2e:1a:eb:1d:c3:5e:01:12:5e:71:aa:cc:d5:
83:34:0d:bd:d0:23:b4:13:cd:ac:99:67:51:33:d4:c3:1d:85:
61:88:37:41:9b:37:07:f0:29:04:60:e1:2f:6e:9a:a1:c8:ae:
68:3b:30:3b:31:6e:2c:f7:bb:f4:cd:b6:0a:84:38:be:6e:4a:
aa:db:ca:51:64:82:99:90:55:da:b5:67:cb:59:b5:75:2a:8f:
b1:5d:85:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 16:18:02 2024 by rpki-client on console-fra.rpki-client.org