Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133322e3135372e302f32342d3234203d3e203437353833.roa
File: 34352e3133322e3135372e302f32342d3234203d3e203437353833.roa (raw, json)
Hash identifier: 3Lg2k3BoNONtLSQMDMpp9FYOTNWCvBuJ4IZCyYkFn2s=
Subject key identifier: 3D:94:C7:08:BD:97:6E:F3:86:F9:B5:5E:FA:50:43:57:EE:4E:D5:CC
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 1B0B1D28901610479B94B00684785BC91BCE323E
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133322e3135372e302f32342d3234203d3e203437353833.roa
Signing time: Mon 26 Feb 2024 08:52:54 +0000
ROA not before: Mon 26 Feb 2024 08:47:54 +0000
ROA not after: Mon 24 Feb 2025 08:52:54 +0000
asID: 47583
IP address blocks: 45.132.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:0b:1d:28:90:16:10:47:9b:94:b0:06:84:78:5b:c9:1b:ce:32:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:54 2024 GMT
Not After : Feb 24 08:52:54 2025 GMT
Subject: CN=3D94C708BD976EF386F9B55EFA504357EE4ED5CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:6e:c8:25:6b:dd:e8:62:8a:ba:41:fb:86:0e:
44:b3:f4:0c:75:13:57:83:47:f3:0c:cb:15:35:54:
01:8e:01:fb:69:48:d9:fc:9b:69:2f:ac:2d:0a:97:
68:3a:31:3b:08:d9:6d:8d:78:30:df:92:61:d3:bf:
73:69:2a:93:69:ef:81:c1:cc:79:57:35:0a:27:fd:
4d:19:62:f3:b0:8f:0d:4c:e9:09:f6:50:bd:ea:76:
25:d9:d6:b7:81:44:b7:36:61:c3:f4:6e:39:0f:25:
7c:9a:80:a6:d8:82:46:db:e8:f7:7a:4d:e7:5c:1f:
f4:45:5d:b8:53:3f:37:1d:0c:c0:54:6f:92:97:b2:
6e:b4:65:37:42:bb:41:fc:ff:71:18:b8:b4:f2:e6:
a8:f8:9a:5f:93:3f:99:e8:7f:25:55:1e:05:6a:93:
ef:a9:0c:4e:6d:d4:65:b6:f6:15:36:a4:da:6b:bf:
01:62:41:ef:84:73:93:b1:56:9f:70:01:ee:56:dd:
02:cb:00:82:c3:d3:9e:e2:53:4f:2f:0a:52:d3:bb:
af:1a:69:76:af:d9:87:b6:7f:63:da:55:3c:2b:ba:
ee:9a:c6:30:ec:14:14:21:ec:e1:e5:bc:94:24:42:
ed:47:89:56:0f:67:aa:6b:58:58:d2:4c:ae:3f:81:
fe:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:94:C7:08:BD:97:6E:F3:86:F9:B5:5E:FA:50:43:57:EE:4E:D5:CC
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133322e3135372e302f32342d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.157.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:40:31:34:61:d0:d4:5a:a6:08:ca:3a:89:b3:1e:d7:c7:07:
cd:01:02:67:92:4e:17:6b:a7:37:0a:49:96:e1:71:4b:6f:91:
29:a5:34:35:0e:3b:8f:7c:85:e1:00:61:dc:67:71:42:b6:4c:
2e:e7:1d:7a:ac:e5:3d:00:95:55:19:30:6b:98:46:83:99:5e:
18:01:ac:fa:26:27:9f:86:4d:54:9d:ca:6b:a4:97:7e:50:bd:
8f:1c:41:8d:ac:09:39:00:52:f9:dd:fa:ef:39:87:28:b2:2a:
c0:d7:33:7c:fe:61:07:1c:5f:a5:a0:28:c3:0c:45:8a:60:fb:
76:56:50:23:b9:44:8f:6e:88:32:21:c7:b9:0f:fc:be:eb:aa:
9b:4a:ab:8f:c8:cd:fb:4f:c5:f2:dc:5a:46:6b:da:fa:ca:9d:
21:37:9a:ec:10:06:23:88:37:92:6c:c2:4a:c0:f4:c1:4c:be:
d2:24:3b:45:f1:f1:40:99:02:d4:8a:08:00:b4:cc:c3:4d:4d:
fc:2e:d3:0c:33:f0:83:39:fe:a0:eb:6d:b4:ca:77:15:9f:ec:
bc:9e:90:73:99:6e:4b:b6:77:da:17:4b:ad:b0:0e:1b:e3:e5:
06:36:cf:31:15:f1:4a:62:4f:45:94:9e:15:f3:1c:b1:23:9e:
aa:10:23:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:02 2024 by rpki-client on console-fra.rpki-client.org