Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3132392e33352e302f32342d3234203d3e20313336373837.roa
File: 34352e3132392e33352e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: r3TBHRi070zZP70E/1TPql7Gm2aUF9j9X22HGc7Ldu8=
Subject key identifier: 38:BD:DC:80:3B:75:D2:E8:34:9C:50:A7:ED:E3:28:D3:5F:B0:62:57
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 1F2FABC97BA4ECCC9529359510035DB4ACADAC27
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3132392e33352e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 01 Apr 2024 14:03:18 +0000
ROA not before: Mon 01 Apr 2024 13:58:18 +0000
ROA not after: Mon 31 Mar 2025 14:03:18 +0000
asID: 136787
IP address blocks: 45.129.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:57:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:2f:ab:c9:7b:a4:ec:cc:95:29:35:95:10:03:5d:b4:ac:ad:ac:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Apr 1 13:58:18 2024 GMT
Not After : Mar 31 14:03:18 2025 GMT
Subject: CN=38BDDC803B75D2E8349C50A7EDE328D35FB06257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d3:c5:1a:b6:c0:e0:e7:14:55:13:51:4e:bf:
5a:cc:44:da:44:34:27:50:3e:73:2b:f6:f4:b7:b4:
a5:53:21:f7:d1:eb:19:99:ef:17:8a:81:d5:b5:66:
9d:f3:9f:a9:f5:e8:d2:0d:d8:b8:66:fa:80:d4:48:
eb:ec:84:5e:6a:6b:6a:c7:be:11:27:a8:c6:f9:b5:
82:f2:34:8b:38:e8:2e:53:64:a5:61:17:68:ea:f9:
86:0d:3a:e2:e6:19:a1:0e:49:25:66:c2:aa:90:e3:
d6:e4:73:8c:8a:bf:25:c8:81:6a:67:ab:11:61:5a:
85:c6:2b:19:cb:f8:ca:15:fa:f9:74:2c:93:c4:28:
09:58:7c:6b:d4:af:3a:3d:b4:7b:4b:5e:a2:e8:88:
98:fa:01:00:ac:d7:28:1b:2a:3f:fb:00:a9:f7:61:
12:a2:09:34:3a:95:91:50:92:3e:92:bd:c0:1a:87:
87:27:09:de:ef:3b:eb:c3:1d:f9:d0:06:f1:47:7a:
64:72:84:79:70:69:6d:e4:37:9b:a9:ae:20:f4:13:
82:25:58:9c:d2:66:af:ab:a6:d2:f8:42:87:da:2c:
25:01:3c:7b:a4:1e:91:32:73:80:58:ce:d8:6d:cd:
78:f0:e5:94:a6:53:ac:6b:54:10:42:5b:a7:77:9c:
ce:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:BD:DC:80:3B:75:D2:E8:34:9C:50:A7:ED:E3:28:D3:5F:B0:62:57
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3132392e33352e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.35.0/24
Signature Algorithm: sha256WithRSAEncryption
55:42:93:9e:15:1c:21:38:09:53:6b:f4:09:5e:9d:fa:fd:67:
6a:43:24:78:fb:00:8f:f7:b1:cd:b3:8c:a3:7a:9a:b1:77:09:
91:90:4a:40:1c:2a:ab:34:a4:a9:da:a9:f5:88:09:6b:ee:d2:
1d:2b:ad:5f:1e:4c:46:09:7d:58:05:a5:0a:7f:d0:78:22:8e:
5c:7f:7c:f0:df:85:50:90:6f:a6:27:51:7b:2b:32:56:64:13:
97:42:34:79:f5:ea:e9:f8:75:25:2c:11:a1:c9:64:60:f2:29:
71:4d:d8:42:33:38:ab:c7:69:2b:32:a2:36:5a:d4:ed:0f:9f:
ed:d6:08:80:d7:79:9b:8e:92:e3:13:3e:72:da:fa:e0:c7:77:
f6:8c:11:22:95:fa:18:a1:04:93:58:c4:f2:27:6c:bc:32:8e:
8f:cb:2b:d3:61:89:68:29:e6:77:19:ef:93:b0:07:21:67:25:
70:e7:de:5f:1e:e5:cc:eb:bb:5f:06:5c:be:e0:6d:36:5f:56:
72:87:22:e8:ff:0f:00:ad:0a:59:a0:d9:08:17:12:b9:f0:dc:
ef:45:a2:cd:e8:55:cd:5d:56:19:75:1d:70:02:14:16:fb:af:
bb:41:b8:ef:f7:fb:09:15:b5:75:52:f2:7b:c1:0e:48:2f:56:
70:2d:52:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 17:14:44 2024 by rpki-client on console-ams.rpki-client.org