Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e38312e362e302f32342d3234203d3e20313336373837.roa
File: 34352e38312e362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 7hdl9glA1Vg5ui5AfFNVWTr5wdoujmznQFR7gjadakU=
Subject key identifier: EA:9C:DB:FA:FC:18:50:37:DB:7F:83:65:E4:D5:C2:42:8F:02:6B:4A
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 6BD7CF84D4A0E32E4113AC2AB0AEA20D79CDC050
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e38312e362e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:30 +0000
ROA not before: Fri 27 Dec 2024 11:42:30 +0000
ROA not after: Fri 26 Dec 2025 11:47:30 +0000
asID: 136787
IP address blocks: 45.81.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 10 Apr 2025 02:18:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:d7:cf:84:d4:a0:e3:2e:41:13:ac:2a:b0:ae:a2:0d:79:cd:c0:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:30 2024 GMT
Not After : Dec 26 11:47:30 2025 GMT
Subject: CN=EA9CDBFAFC185037DB7F8365E4D5C2428F026B4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e7:2c:b0:a4:8a:83:ad:03:15:8e:b3:80:11:
4f:2b:bc:6a:dc:14:de:dd:57:63:d9:05:60:a6:d7:
30:60:30:2e:e4:85:be:2a:49:25:28:ed:09:e8:bf:
f0:1c:72:7a:ce:d6:c8:f3:a7:78:45:3f:a4:7c:aa:
50:e2:58:d5:d5:59:98:34:ba:c4:5d:63:de:ed:5c:
a9:ee:b7:bb:50:f5:80:90:d4:53:86:73:ae:90:3d:
2d:97:51:b1:0b:07:84:3d:45:e5:5e:37:dd:39:18:
2a:a4:96:0f:32:c9:2c:28:fe:30:27:7f:c9:f1:11:
27:1c:2b:a6:93:63:d4:d4:b3:da:cd:3e:b8:ac:ca:
05:03:09:41:a4:b3:b7:e6:f5:84:32:d6:12:4d:ca:
d0:11:14:1e:ff:8d:c2:ec:4a:4d:ca:58:d8:b8:34:
f5:04:84:be:7a:2a:ca:2a:ad:b1:a2:0f:60:12:ff:
ce:c4:ef:a0:c0:27:a2:23:22:e7:8d:fc:54:e6:1a:
7f:1f:d8:af:55:cf:f7:fc:2c:95:54:19:43:da:83:
09:e2:cb:e8:63:5a:40:d1:cc:c5:ec:ac:8f:50:d6:
de:1e:a6:bc:06:12:ab:d6:64:97:07:61:21:3a:b4:
f3:21:12:4e:b9:ce:2d:93:74:66:9f:16:eb:85:44:
da:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:9C:DB:FA:FC:18:50:37:DB:7F:83:65:E4:D5:C2:42:8F:02:6B:4A
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e38312e362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.6.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:25:d4:9f:9e:1b:1a:0c:e8:47:16:c4:f7:8b:d6:e9:55:09:
46:20:98:29:96:46:d3:f3:cb:50:d1:84:5d:f3:d6:01:55:50:
97:05:72:04:a9:d6:67:a9:cc:be:ab:d3:77:69:82:03:6d:30:
92:09:ee:b4:63:6d:b2:52:77:4b:9f:21:9b:7f:58:9f:f4:a3:
03:c4:9c:59:a2:a7:6f:71:1c:12:54:72:b7:3b:0d:ca:c3:d2:
80:e3:dc:a3:2c:c2:7d:40:90:bd:86:08:a8:70:e4:fd:5c:dc:
e1:f9:87:b8:03:6b:4e:35:d8:18:33:18:dd:ea:92:31:9a:ef:
5e:7f:81:f8:68:50:c7:7a:08:f7:19:f5:ee:3c:9c:ec:b9:1d:
7c:a3:86:39:5b:0f:82:8c:71:8e:2d:28:4f:cd:6e:59:33:79:
10:7f:b5:ee:78:a0:59:e0:ca:59:3e:e0:67:b1:e5:65:92:74:
9f:6d:cd:84:61:04:ef:73:6a:4e:39:50:bb:f2:e0:81:d8:21:
33:ba:22:57:d7:2f:6a:65:36:71:6b:a5:9e:d6:69:d0:99:fa:
b5:82:52:8e:b0:6e:01:de:7c:ae:5f:12:5f:b0:97:14:d8:06:
62:62:4c:6b:dd:00:64:54:9f:4f:45:8e:ab:99:4e:a5:74:e6:
a6:26:46:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:51:08 2025 by rpki-client