Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130372e302f32342d3234203d3e203232373733.roa
File: 34352e3134362e3130372e302f32342d3234203d3e203232373733.roa (raw, json)
Hash identifier: E95w2PylWi9wKpsTnP/Pq+8c+q3dlQcaTKl+KlPSKws=
Subject key identifier: 52:6D:4D:D4:55:C0:09:D4:E2:91:A8:B6:20:6F:CA:9C:9C:D3:74:3E
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 14B207412ED6CB7BAF5DDD58232D0883F68844E0
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130372e302f32342d3234203d3e203232373733.roa
Signing time: Thu 04 Apr 2024 11:05:14 +0000
ROA not before: Thu 04 Apr 2024 11:00:14 +0000
ROA not after: Thu 03 Apr 2025 11:05:14 +0000
asID: 22773
IP address blocks: 45.146.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:b2:07:41:2e:d6:cb:7b:af:5d:dd:58:23:2d:08:83:f6:88:44:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Apr 4 11:00:14 2024 GMT
Not After : Apr 3 11:05:14 2025 GMT
Subject: CN=526D4DD455C009D4E291A8B6206FCA9C9CD3743E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:90:0a:5c:25:ff:d1:ea:4c:3e:4c:73:3a:17:
61:9e:35:50:48:49:d2:64:01:6d:58:51:34:db:4c:
18:20:e7:23:54:c2:d6:b2:68:cf:80:99:6e:a0:3a:
85:3d:53:0d:e7:95:6d:59:f0:dd:97:00:f0:0c:60:
c7:f0:8e:ea:28:22:7a:32:56:f3:04:3f:35:17:3e:
c2:6a:8f:4c:f2:ed:52:f9:82:ab:3c:60:e4:d5:39:
a3:24:a7:8a:cc:ef:1e:a0:43:ac:b3:e9:63:9b:e0:
98:74:e0:d8:7a:ec:a6:26:ae:9b:4f:8a:84:ec:21:
8d:0d:60:8a:3e:b1:3b:e9:76:cf:81:df:1e:75:28:
31:d8:53:34:1c:a0:7c:17:20:b2:bc:c5:6a:94:4e:
f6:5e:8c:e6:3a:94:6e:76:28:d2:b3:0c:58:85:2a:
89:5b:7c:3a:54:33:c3:ce:85:e0:fa:cf:db:4e:96:
04:05:07:34:58:10:91:cf:1b:8b:9c:b4:5e:a7:63:
ef:fd:58:24:60:81:3f:04:74:49:da:e0:26:ed:50:
0d:b1:2b:9c:63:eb:2a:d1:87:ad:ad:b6:04:eb:11:
9a:5c:0a:6f:ce:a0:fe:6a:aa:ad:13:0f:eb:27:70:
04:40:17:41:8b:db:2b:b1:90:af:22:e5:d3:38:11:
27:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:6D:4D:D4:55:C0:09:D4:E2:91:A8:B6:20:6F:CA:9C:9C:D3:74:3E
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130372e302f32342d3234203d3e203232373733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.107.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:13:8a:c3:bc:e3:e4:c4:75:a4:22:51:5e:a6:c7:cc:f8:fe:
a1:18:f8:b9:31:d7:46:68:d1:1f:5d:85:d1:2b:ff:1d:7b:47:
46:32:58:e4:92:6b:65:03:ac:a7:f7:36:9e:61:7e:40:6f:b2:
ae:ba:d1:41:0f:f4:68:ff:57:be:68:e2:c9:61:c9:50:f7:72:
23:c2:57:07:09:4d:e3:bd:72:1f:fe:24:46:25:af:f9:15:9a:
96:cb:14:1a:92:77:72:f4:6a:6d:17:b1:c5:e0:3c:95:0e:4c:
f4:e0:27:e9:8d:62:68:ab:de:43:04:2b:e0:59:fc:1d:65:7d:
e9:b5:8e:03:40:c7:11:be:4a:3b:a8:53:ec:f1:06:01:18:9c:
95:da:24:db:d7:4c:06:30:d2:9f:7d:e1:34:02:c6:3f:91:ac:
09:97:ef:b8:a2:0e:51:6b:d7:b6:fe:39:8d:69:97:38:06:50:
8c:e6:a0:11:7d:71:24:0e:9d:e3:2c:d5:74:de:a2:70:33:8d:
8c:15:73:51:88:cf:e6:fa:ee:5f:02:b7:98:9a:c8:dc:8e:de:
96:3e:b4:bb:60:9c:e1:9d:1d:82:5f:7b:41:8f:fb:f3:02:8d:
56:61:ed:02:74:13:3a:bd:28:1d:68:5f:88:fa:9a:a7:30:80:
24:38:39:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 06:18:44 2024 by rpki-client on console-fra.rpki-client.org