Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3132392e33342e302f32342d3234203d3e20323034313730.roa
File: 34352e3132392e33342e302f32342d3234203d3e20323034313730.roa (raw, json)
Hash identifier: ffH0ka6uFN51g9cl3IRMCYclU92R7mAR8yTj6jRFOSc=
Subject key identifier: 49:F2:81:68:0E:20:73:16:84:A6:B6:BF:44:9C:A9:88:31:19:80:E9
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 2B6D81D54115D971BCA02F45F14862EE8FA2E808
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3132392e33342e302f32342d3234203d3e20323034313730.roa
Signing time: Tue 25 Jun 2024 21:46:58 +0000
ROA not before: Tue 25 Jun 2024 21:41:58 +0000
ROA not after: Tue 24 Jun 2025 21:46:58 +0000
asID: 204170
IP address blocks: 45.129.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:57:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:6d:81:d5:41:15:d9:71:bc:a0:2f:45:f1:48:62:ee:8f:a2:e8:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Jun 25 21:41:58 2024 GMT
Not After : Jun 24 21:46:58 2025 GMT
Subject: CN=49F281680E20731684A6B6BF449CA988311980E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:71:20:1c:af:4c:99:34:be:b1:af:e9:39:bf:
8c:96:e2:16:c4:fb:5a:16:c3:a5:03:63:ac:07:81:
48:5a:bd:4b:a1:f4:43:b5:6a:e0:35:87:8c:2c:80:
36:e9:13:6f:0e:4c:34:cf:82:b3:5d:d9:65:86:15:
36:92:92:83:16:bf:4e:50:f3:da:e5:bd:09:75:11:
da:39:e7:6c:e0:ef:71:61:18:04:73:52:95:fe:8a:
64:04:71:c0:b7:b4:17:98:22:f7:c3:74:e4:39:51:
0a:2c:39:98:30:01:03:ca:0e:6a:08:36:5f:2f:4c:
70:39:bd:2c:1f:70:3d:60:45:18:09:0d:4b:50:c6:
c7:0c:70:5f:43:06:b8:2d:2f:8e:ec:d8:69:c9:14:
d5:3f:07:d8:24:f2:f9:85:2b:d6:41:f1:56:a8:a7:
5d:45:00:d3:e2:7c:c7:d6:62:f6:4e:48:08:b6:e6:
f3:84:a0:bc:8c:c6:58:8f:35:7a:34:9f:30:61:a0:
cd:2c:e1:26:cb:6f:3d:8c:b0:5e:35:89:50:7d:5d:
5d:83:dc:be:f2:2b:5d:d1:43:9f:56:7a:43:56:fd:
38:bc:44:76:66:36:c6:fd:a6:39:ed:89:52:15:cf:
bb:a0:b5:7a:5c:b8:b6:af:c0:57:81:2b:8c:db:2f:
60:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F2:81:68:0E:20:73:16:84:A6:B6:BF:44:9C:A9:88:31:19:80:E9
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3132392e33342e302f32342d3234203d3e20323034313730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.34.0/24
Signature Algorithm: sha256WithRSAEncryption
38:c6:40:c1:e7:fc:ec:1f:87:58:02:45:2f:94:5e:3c:49:cb:
14:0e:58:5f:eb:da:e5:e3:5f:01:91:af:42:02:4f:56:23:ab:
b0:fe:b9:22:18:48:95:e8:d7:3c:d2:a1:c2:6c:b8:f7:86:da:
80:32:8b:b5:66:78:7f:9b:47:08:be:ee:05:f4:f5:95:cc:41:
a7:38:2f:17:14:36:09:75:48:12:0a:c1:7c:d1:83:25:e9:65:
cf:00:78:3c:85:91:5a:cf:a1:4e:b9:b3:83:e6:51:53:20:6c:
a5:53:7d:9f:55:85:81:48:57:0c:c0:ca:73:ab:77:1f:dd:7e:
14:2a:f3:00:3f:8e:93:94:3c:b2:ba:26:c2:9b:12:9d:ef:8f:
0f:01:70:1f:69:5b:ed:0f:76:67:82:f4:ff:ec:6c:3b:a8:6f:
bf:a7:1f:3c:c5:6b:99:81:db:72:58:93:63:58:22:12:85:08:
f3:c0:01:78:7f:99:c8:4a:7c:34:41:34:3d:4e:62:c0:d7:30:
9d:ad:a9:ae:25:cb:06:ac:ed:62:01:d2:4c:b5:5e:7a:0a:e6:
52:6e:5b:f2:d4:d5:49:cc:b6:8f:80:13:2a:f6:d9:ad:f4:a1:
ab:73:cc:6c:e2:7b:f5:08:f7:ea:42:c1:05:30:c9:01:a5:ef:
9d:52:30:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 17:14:44 2024 by rpki-client on console-ams.rpki-client.org