Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e39302e3232302e302f32342d3234203d3e203437353833.roa
File: 34352e39302e3232302e302f32342d3234203d3e203437353833.roa (raw, json)
Hash identifier: A4cXJES90GAgnX6zvu/69kSmXPdcLJwwOtXsRwycdaE=
Subject key identifier: C0:0B:13:5A:A6:70:14:A2:40:9E:7F:2D:49:C0:E7:AA:AB:5E:59:E7
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 631846B6DD0E6B1600F8DA5C15C57D1F9ACEA7B4
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e39302e3232302e302f32342d3234203d3e203437353833.roa
Signing time: Fri 27 Dec 2024 11:47:46 +0000
ROA not before: Fri 27 Dec 2024 11:42:46 +0000
ROA not after: Fri 26 Dec 2025 11:47:46 +0000
asID: 47583
IP address blocks: 45.90.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 14:45:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:18:46:b6:dd:0e:6b:16:00:f8:da:5c:15:c5:7d:1f:9a:ce:a7:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:46 2024 GMT
Not After : Dec 26 11:47:46 2025 GMT
Subject: CN=C00B135AA67014A2409E7F2D49C0E7AAAB5E59E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d3:8e:86:5a:35:5d:9f:ac:2f:8d:50:57:90:
69:ab:81:36:49:8f:2b:6c:5f:e1:4c:c4:04:b8:b7:
8d:86:f0:fb:24:50:52:3d:e7:c4:c2:f7:7c:ee:1b:
b3:63:30:28:2e:59:84:1b:1e:26:15:c8:56:52:89:
3a:76:60:81:fa:9c:9c:d3:ac:f6:16:1e:81:62:27:
ac:d3:f8:91:75:15:98:47:4f:a6:83:18:bc:e2:7f:
50:5b:79:04:b8:82:ab:4e:12:e7:5d:83:e2:75:84:
0c:18:16:2b:e5:77:61:40:75:d3:df:e2:cc:c1:e7:
b2:c4:d4:f4:7a:ba:05:8b:99:8a:2b:ab:3b:4f:51:
27:c2:0e:bc:c8:8a:33:92:33:33:d6:b1:6a:81:68:
41:ce:99:f4:2c:50:ad:e5:67:92:2f:1a:b0:eb:0e:
6e:41:60:7e:8a:bf:df:28:7a:51:28:ca:fe:5f:45:
e4:7a:d5:ef:55:03:6c:14:29:d7:65:cd:97:19:1e:
fa:ae:33:10:62:74:d1:c1:ca:a7:7a:43:50:66:25:
ca:1f:a1:be:53:55:58:77:5f:50:08:11:d9:ce:6e:
84:7f:11:7f:41:78:25:57:54:1b:56:ba:28:39:e3:
45:b2:a9:62:66:99:ef:d8:93:81:0c:4b:4a:c1:d8:
78:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:0B:13:5A:A6:70:14:A2:40:9E:7F:2D:49:C0:E7:AA:AB:5E:59:E7
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34352e39302e3232302e302f32342d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.220.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:18:d7:2a:bb:34:f9:6a:ab:2a:c1:d9:ee:10:b0:58:b7:14:
3b:a1:f0:65:8f:95:88:2d:74:35:1b:72:62:35:b3:25:90:cb:
8b:52:9a:39:cc:6f:28:3f:23:72:da:80:64:8d:88:49:2a:e5:
05:d7:c3:8e:c3:a2:d2:81:75:38:79:25:73:0c:23:7c:b7:6a:
21:d2:68:c8:8d:7b:43:e0:1e:76:0b:8b:0d:d4:e4:ce:ff:44:
65:e5:0f:89:8e:c1:70:0c:a9:70:e8:1d:60:3a:cd:53:b6:a8:
75:1d:9d:76:b9:d2:3e:eb:3c:9f:ca:b0:97:67:a1:1f:18:2a:
76:3b:97:8b:c3:e4:fa:46:64:6c:25:52:a4:49:3f:bb:42:76:
e4:a8:25:92:cf:e4:eb:01:db:50:88:6f:87:69:fc:11:06:6f:
00:da:8b:21:5b:30:31:74:ed:93:6b:7d:af:a1:14:d4:8a:24:
3d:25:a0:b8:27:46:40:66:f5:8a:29:3d:27:d7:02:31:b2:9b:
a7:28:98:c1:15:4e:7a:49:cb:0f:77:94:7d:71:4f:f4:cc:25:
a1:03:22:63:00:17:3f:68:7b:5f:9d:ec:c3:9a:60:1a:bf:d4:
86:7e:df:95:ce:ea:d2:c7:42:d4:7d:3a:b3:d3:9a:16:67:91:
96:12:b6:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:06:31 2025 by rpki-client