Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130372e302f32342d3234203d3e20343031313034.roa
File: 34352e3134362e3130372e302f32342d3234203d3e20343031313034.roa (raw, json)
Hash identifier: ikFSEMJW177tApFpY9oZykPmjY71GQan7rdPAAaCSro=
Subject key identifier: 55:DC:9D:C1:F5:5A:6B:F2:03:7C:88:0D:35:B1:25:B3:FA:0B:4A:1F
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 785353BB0488A0D774D189B7674345D0857B09DF
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130372e302f32342d3234203d3e20343031313034.roa
Signing time: Wed 17 Jul 2024 22:03:12 +0000
ROA not before: Wed 17 Jul 2024 21:58:12 +0000
ROA not after: Wed 16 Jul 2025 22:03:12 +0000
asID: 401104
IP address blocks: 45.146.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 13:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:53:53:bb:04:88:a0:d7:74:d1:89:b7:67:43:45:d0:85:7b:09:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Jul 17 21:58:12 2024 GMT
Not After : Jul 16 22:03:12 2025 GMT
Subject: CN=55DC9DC1F55A6BF2037C880D35B125B3FA0B4A1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e5:05:0d:3c:64:af:79:e8:c8:f6:86:19:76:
89:08:ca:d5:5f:86:d1:3e:8f:88:2b:f3:13:f5:94:
1c:4b:4d:5c:89:88:22:95:4c:74:b9:cf:ea:ea:34:
47:dc:a0:fa:87:ae:94:5a:66:9a:b5:69:e3:65:78:
e5:1c:98:2a:87:b8:42:92:a7:65:7d:62:41:73:ff:
8c:38:eb:12:25:be:e6:dd:45:d0:25:e3:6b:0f:4d:
57:77:de:c0:f8:ff:04:d5:85:2d:97:f0:b8:a9:dd:
95:6a:6f:7c:dd:c6:a1:d9:8f:48:f7:00:14:8f:39:
68:df:2f:80:d4:72:cf:ff:70:c2:65:8f:31:75:c9:
36:8f:30:b2:eb:7e:36:9a:10:8a:08:a0:ad:a4:08:
1c:68:7d:8f:fd:b5:48:bc:ea:6f:78:e6:77:91:ed:
26:bb:90:78:71:93:41:37:9b:f2:fc:6b:88:3f:d2:
fa:9d:fe:24:b0:69:4b:d4:fb:44:73:a2:3f:0e:67:
b4:92:22:f7:3f:91:87:6d:c9:71:69:15:a6:fe:ad:
88:bd:cc:37:9f:63:e8:fb:f4:3f:d2:26:7b:a4:d8:
83:36:64:bb:b7:54:2f:a6:56:38:3e:99:c6:56:fd:
e4:30:d4:db:a1:3f:f1:28:a5:74:ea:52:4e:b9:84:
5b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:DC:9D:C1:F5:5A:6B:F2:03:7C:88:0D:35:B1:25:B3:FA:0B:4A:1F
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/34352e3134362e3130372e302f32342d3234203d3e20343031313034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.107.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:19:4f:7d:61:5b:5a:8a:0f:6b:c7:9f:bc:3e:47:c6:e5:5e:
ae:03:a1:11:54:83:81:97:60:00:3e:06:47:d0:76:59:67:36:
5b:fc:91:46:57:29:d5:48:0b:47:15:e0:1c:d6:5c:b7:40:17:
68:a6:3b:d0:90:af:fa:5e:a0:32:c3:c7:fd:b7:fe:03:fd:ae:
1f:99:3f:89:ca:f8:f6:15:25:86:ed:d7:45:63:8f:08:1b:7f:
12:0b:cf:44:93:d1:ad:5d:5d:8d:f5:fa:72:59:39:26:92:3b:
23:d0:72:22:2a:9a:44:5b:8c:d0:be:0d:ce:92:51:64:61:7f:
ea:88:f6:2f:06:cc:da:e9:ea:21:d5:d4:d1:7e:69:a7:dd:17:
01:1d:a8:0b:51:79:72:e4:29:52:30:1e:3e:03:b0:4e:71:a9:
36:e2:eb:fe:9f:ab:30:df:9d:2c:63:85:35:9e:71:75:0b:ef:
9d:b4:c0:04:2a:a0:de:2a:cf:4f:aa:7c:ab:a6:73:57:31:18:
63:66:6a:7b:86:d6:20:11:5f:a8:91:46:51:b1:64:0e:62:48:
72:50:08:7b:01:eb:73:6e:23:20:53:3a:91:9d:c8:8e:f1:d2:
b1:08:42:0d:b7:9d:50:b1:29:ec:27:03:12:87:6f:98:ac:a5:
7d:35:dd:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 21:44:44 2024 by rpki-client on console-ams.rpki-client.org