Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34362e3235332e3134312e302f32342d3234203d3e20323031333431.roa
File: 34362e3235332e3134312e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: p0NuLJYpAL/u2E/gmlMfgO8zrudo/pholreGz1AAxao=
Subject key identifier: CC:57:D0:67:E9:78:CC:6E:1C:64:39:1D:C4:99:3E:58:AD:6E:63:72
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 6C3A67CB4F31845CD2D0F49E0DFCEB20DB7288FC
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34362e3235332e3134312e302f32342d3234203d3e20323031333431.roa
Signing time: Thu 21 Dec 2023 16:14:43 +0000
ROA not before: Thu 21 Dec 2023 16:09:43 +0000
ROA not after: Thu 19 Dec 2024 16:14:43 +0000
asID: 201341
IP address blocks: 46.253.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 20:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:3a:67:cb:4f:31:84:5c:d2:d0:f4:9e:0d:fc:eb:20:db:72:88:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 21 16:09:43 2023 GMT
Not After : Dec 19 16:14:43 2024 GMT
Subject: CN=CC57D067E978CC6E1C64391DC4993E58AD6E6372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9a:90:ae:6b:11:b7:75:da:cc:45:f9:92:79:
5e:74:16:be:54:31:64:5f:76:77:d2:f4:85:85:69:
70:8e:08:46:e3:c5:49:7c:a4:36:fb:4d:d7:42:7c:
62:7c:46:98:59:1d:7d:71:97:d8:97:b6:09:2a:e2:
3a:e4:e6:7f:24:66:18:de:69:b1:3c:a5:9d:3d:51:
af:8c:22:84:ca:19:df:b6:26:74:42:66:47:dd:7d:
38:10:cf:c0:57:37:9f:0c:9f:88:4b:b0:aa:de:61:
03:9c:b7:28:99:72:b9:15:7a:fa:19:56:8d:19:d1:
6b:16:b2:61:25:e2:65:5f:c5:2f:24:f2:3e:00:fd:
33:5b:e7:24:3b:f5:8b:16:d9:a3:e2:0b:bd:b2:99:
b7:6f:ce:63:33:37:32:e7:ce:ec:97:c2:86:80:9a:
ce:3c:64:db:9c:52:c1:7e:c2:a1:a1:c8:20:9c:1d:
46:10:c2:30:0c:fc:7c:41:4d:2d:f2:0f:e5:b7:e4:
19:0b:fd:39:ca:34:01:9d:b3:81:b0:24:73:9b:71:
7f:b0:1e:8e:4c:cf:34:53:ee:91:0e:2c:f0:64:32:
0f:95:15:09:b4:fa:d2:68:3c:12:14:01:02:3a:84:
89:52:e4:23:1a:b6:63:20:03:87:20:4f:39:af:e9:
82:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:57:D0:67:E9:78:CC:6E:1C:64:39:1D:C4:99:3E:58:AD:6E:63:72
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/34362e3235332e3134312e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.141.0/24
Signature Algorithm: sha256WithRSAEncryption
11:f0:73:5c:50:5c:fb:bd:15:d7:c6:bb:3a:2c:58:84:79:b6:
17:54:96:da:d4:34:ca:12:8e:2e:81:54:8a:49:ca:f5:46:3a:
64:3c:cc:dc:ab:c0:31:47:86:f8:5c:dd:34:c2:b4:71:ca:47:
02:08:42:5b:b3:bc:eb:50:c1:1e:74:15:73:1a:22:a9:21:34:
ed:45:0b:b6:33:4a:21:d0:24:99:9d:36:7d:13:98:03:fa:f8:
f3:d9:1a:c9:b1:92:71:d4:2c:9e:f9:ee:b1:20:2f:36:87:cc:
97:9d:b9:58:36:0f:fa:fb:f4:fd:2d:17:6a:1d:17:d9:bc:25:
70:02:82:95:d1:e2:0b:88:b6:9c:17:81:16:05:85:c4:66:83:
84:ae:9f:2f:f7:fc:6b:42:d8:a4:b3:a9:54:85:4e:4b:91:f0:
20:aa:fe:aa:e1:a5:fd:ac:d4:64:9d:b2:5d:f5:2b:03:6c:80:
e0:4b:3c:ea:35:4a:13:e9:72:b9:56:12:e2:29:ba:66:9d:fd:
3d:0a:c4:1b:ad:88:e5:37:aa:ed:c5:a8:4b:29:c7:cf:a0:fe:
a3:af:a9:c5:c3:3d:5f:a5:6b:90:95:a3:fb:86:9e:a3:8a:43:
e6:9a:94:a3:9e:0e:c0:75:07:45:e8:8c:82:6a:72:59:0e:17:
da:d1:38:1a
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat May 18 23:46:02 2024 by rpki-client on console-ams.rpki-client.org