Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133342e3232352e302f32342d3234203d3e20323038303436.roa
File: 34352e3133342e3232352e302f32342d3234203d3e20323038303436.roa (raw, json)
Hash identifier: DZ3lCpLYCBSz6CvhuQe1gsv8U34Exqier/XtcWZEgxc=
Subject key identifier: 71:B4:49:C4:0F:A1:A8:AA:4B:CD:37:09:CC:7B:59:31:CE:39:74:B1
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 26B3021DD88F570F29AE7E753B5CC30E94E4D0A3
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133342e3232352e302f32342d3234203d3e20323038303436.roa
Signing time: Mon 26 Feb 2024 08:52:52 +0000
ROA not before: Mon 26 Feb 2024 08:47:52 +0000
ROA not after: Mon 24 Feb 2025 08:52:52 +0000
asID: 208046
IP address blocks: 45.134.225.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 13 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:b3:02:1d:d8:8f:57:0f:29:ae:7e:75:3b:5c:c3:0e:94:e4:d0:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:52 2024 GMT
Not After : Feb 24 08:52:52 2025 GMT
Subject: CN=71B449C40FA1A8AA4BCD3709CC7B5931CE3974B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2a:a4:9e:ea:6f:65:37:94:fa:ac:3d:e4:66:
b5:8e:19:0d:e8:9b:ad:ab:c9:5d:8a:3a:24:8e:fb:
96:67:9b:e2:a8:22:da:31:78:fc:71:3b:7a:2f:5a:
72:e3:e6:3c:2d:4b:b4:4f:f1:bd:70:4e:49:54:72:
2a:0c:59:b6:61:2e:05:dc:93:07:33:c6:57:cf:cc:
13:7e:4b:7f:89:ee:9b:06:0d:c9:2c:90:4f:07:14:
ef:fc:69:aa:88:a0:9c:bc:0e:19:5a:a0:b5:db:cb:
ea:84:2c:ad:f8:7b:76:41:c9:72:b7:1e:33:55:ec:
91:99:38:7b:05:5f:7a:9b:d1:d3:c1:92:e5:c8:47:
dd:1b:46:41:bc:82:dd:ec:41:96:86:35:00:5d:90:
dc:19:20:29:7b:f4:4d:6e:54:7e:ef:17:d7:02:71:
d0:3b:30:ae:72:d1:c2:8e:a6:8a:7d:18:a6:1a:e4:
4e:4e:93:d0:8e:d1:19:4e:a7:13:fc:63:89:97:50:
24:d2:86:83:7c:4e:45:d9:c0:26:2d:0c:eb:bd:9e:
b6:af:88:8a:c0:ff:bf:8d:62:07:0f:41:09:17:f3:
3e:3a:fe:92:78:55:60:b4:26:cb:b3:8b:33:02:57:
68:f8:23:fc:27:ac:d7:bc:e7:92:15:92:05:26:d8:
b7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B4:49:C4:0F:A1:A8:AA:4B:CD:37:09:CC:7B:59:31:CE:39:74:B1
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133342e3232352e302f32342d3234203d3e20323038303436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.225.0/24
Signature Algorithm: sha256WithRSAEncryption
54:a0:82:70:45:6f:3c:88:ee:bb:39:9b:ac:68:18:c9:4f:46:
63:ca:29:7f:f5:a8:0a:9d:6b:f0:ba:25:23:b6:c4:44:a1:f0:
9e:91:bb:ab:ad:02:d5:a4:8f:48:92:90:ee:22:4b:5d:8b:48:
37:b6:95:e6:e0:ca:d4:58:89:a9:7a:fe:ee:1b:d7:0f:35:61:
8b:31:3e:21:83:7c:d7:1d:35:7b:cb:4e:75:35:0d:f1:42:57:
87:74:c0:4c:d1:b6:0e:66:45:73:a7:bd:64:de:de:b6:2b:c0:
19:71:59:89:63:d8:3b:8d:3d:08:dc:8f:0f:98:e1:4a:34:2d:
0b:1c:bf:0d:5c:0b:db:ef:be:ff:03:34:c7:26:2e:20:05:8d:
aa:e7:64:b5:ac:20:35:1d:db:14:9e:0f:f0:b4:19:45:49:f1:
61:7a:fd:e1:b8:e2:4f:a6:24:fd:4e:8d:fe:d0:9e:09:e4:f5:
31:6b:b4:54:da:59:a6:d6:21:e7:f1:0f:0b:d8:6b:fa:ab:f1:
03:e0:49:a7:3e:57:ea:9f:99:53:30:1a:52:9b:d7:7a:e1:57:
c5:49:fe:84:d7:de:2b:f5:a7:d1:3f:34:00:6a:3d:23:ad:29:
a5:7c:27:fe:7b:71:44:95:5b:a6:17:64:91:1a:df:92:ae:76:
3b:4c:c5:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 14:08:17 2024 by rpki-client on console-fra.rpki-client.org