Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130372e302f32342d3234203d3e20333938333535.roa
File: 34352e3134362e3130372e302f32342d3234203d3e20333938333535.roa (raw, json)
Hash identifier: NOyRp8fq4co14uKOHyJPUA+qho10Lm75eT+cl5INMEA=
Subject key identifier: A9:19:B8:AC:D5:E0:DC:C1:69:8C:5F:A3:2D:20:A2:68:15:71:8C:F2
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 192943AD006D454DA43FC3938773CC4DFF9991A0
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130372e302f32342d3234203d3e20333938333535.roa
Signing time: Fri 27 Oct 2023 13:23:28 +0000
ROA not before: Fri 27 Oct 2023 13:18:28 +0000
ROA not after: Fri 25 Oct 2024 13:23:28 +0000
asID: 398355
IP address blocks: 45.146.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:29:43:ad:00:6d:45:4d:a4:3f:c3:93:87:73:cc:4d:ff:99:91:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Oct 27 13:18:28 2023 GMT
Not After : Oct 25 13:23:28 2024 GMT
Subject: CN=A919B8ACD5E0DCC1698C5FA32D20A26815718CF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5c:b3:2c:aa:3c:6c:9b:3d:a5:bc:ef:b2:44:
6d:a4:8a:f0:85:a0:03:7e:5e:4d:f3:f0:96:5f:d9:
6e:fc:fa:de:9e:ee:3c:b8:b3:cb:d5:b3:8d:dc:f8:
63:5e:01:64:d0:54:07:85:74:9e:c2:bb:da:09:40:
6c:24:e7:e1:c1:ba:26:87:03:02:5b:2a:c3:01:e2:
3e:d1:13:c2:ec:d3:9a:ec:70:15:00:1c:d3:37:67:
b5:1f:0c:4c:89:ec:1b:d0:a7:8c:54:5d:b0:0f:d5:
d9:1c:45:bc:bf:4b:2c:1a:72:e2:8a:14:1d:6e:bc:
34:f7:9d:f7:d5:11:e6:ce:d8:38:ca:44:34:31:ba:
4f:54:47:d5:fe:80:34:5c:37:47:5d:d6:1a:38:c0:
11:03:8a:e5:95:80:38:17:15:65:90:ff:90:4b:8e:
b8:5b:77:91:f3:01:70:99:ce:1b:62:85:77:dd:b5:
37:69:74:04:dd:c0:d3:25:70:c7:8e:a8:c4:a1:33:
72:14:4c:eb:38:df:e5:31:5b:b1:23:01:a6:00:9a:
a6:76:66:88:b5:76:de:24:02:ff:70:80:33:e6:2c:
69:fd:71:bf:26:96:d3:b6:e7:4e:f0:5a:44:e4:a9:
ae:ff:a4:7c:7d:30:31:ac:35:86:69:2e:b4:68:12:
e3:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:19:B8:AC:D5:E0:DC:C1:69:8C:5F:A3:2D:20:A2:68:15:71:8C:F2
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130372e302f32342d3234203d3e20333938333535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.107.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:44:f6:77:40:da:a3:4a:e3:4a:e2:cd:2b:cd:b5:58:c0:4d:
d7:31:4a:db:0c:c6:cc:86:ca:a3:93:02:01:01:29:c4:8b:6a:
7f:ac:a7:ad:41:d9:2f:aa:00:c3:05:e7:41:a0:6e:5e:67:c1:
0e:15:22:e8:97:b5:04:9e:d4:94:f0:7b:0e:45:72:fa:18:00:
d4:d6:ce:12:86:51:96:ce:1e:a9:83:ce:87:85:61:ae:54:97:
a1:42:43:fe:52:45:7f:3a:23:fd:05:3d:3d:88:97:2c:88:d1:
94:6c:07:2e:7a:43:46:e5:32:ed:3c:9c:57:5f:4c:c5:2f:eb:
db:4f:dc:51:e2:37:9f:10:cb:e0:d5:12:1b:07:96:72:61:74:
cf:6a:9f:f7:52:03:a2:be:44:85:3d:d6:ff:28:34:39:51:8a:
f3:95:56:32:e1:02:b3:74:55:18:87:a8:0d:dc:8e:00:10:3f:
e2:1f:62:59:00:fd:27:7a:c8:b6:b3:8f:5d:af:85:42:7a:06:
8c:75:2e:d3:09:3f:79:c9:d6:a5:3f:38:88:96:2c:6c:04:5c:
72:0b:b9:ae:36:95:24:17:d0:d7:83:f8:ae:76:2f:cb:b9:3c:
ed:4b:ca:76:38:b8:81:a2:f4:3f:e1:5a:a5:79:12:3c:26:6e:
d7:55:94:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 06:18:44 2024 by rpki-client on console-fra.rpki-client.org