Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133342e3232362e302f32342d3332203d3e203531313637.roa
File: 34352e3133342e3232362e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: Fkh33oeS9ZkgYw3AIThk8gTb5kN0fwz3cZE7w2dYno8=
Subject key identifier: 95:E7:C0:CC:36:FC:08:73:7A:09:DE:1D:82:44:75:12:65:8D:47:C4
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 0998F1BA8FF804079DFED90C2EAC5536377DC130
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133342e3232362e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:52:52 +0000
ROA not before: Mon 26 Feb 2024 08:47:52 +0000
ROA not after: Mon 24 Feb 2025 08:52:52 +0000
asID: 51167
IP address blocks: 45.134.226.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:98:f1:ba:8f:f8:04:07:9d:fe:d9:0c:2e:ac:55:36:37:7d:c1:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:52 2024 GMT
Not After : Feb 24 08:52:52 2025 GMT
Subject: CN=95E7C0CC36FC08737A09DE1D82447512658D47C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:50:af:9e:f5:76:bc:ad:77:7e:d5:50:be:90:
56:a1:8c:8f:aa:e9:13:a3:bf:10:5d:fb:c5:30:de:
7a:c4:d0:6a:b8:69:78:10:55:20:5e:d1:f3:2f:a0:
7f:e1:ef:50:1f:67:77:3d:98:81:d2:d1:64:06:81:
fb:13:f0:89:20:02:84:fe:e9:db:28:02:29:97:4f:
b3:ff:10:27:cf:34:97:d3:8a:81:3b:ef:1b:74:6b:
cf:3c:51:e0:86:4f:8d:c6:32:c6:e1:7f:09:d1:5e:
69:46:b2:e7:51:65:60:13:ae:41:9e:e8:2c:5e:1a:
ad:fe:ad:2a:6e:c3:39:6c:68:c9:51:3b:8c:42:0f:
d8:7b:2d:a7:a1:7f:d5:c9:9b:b4:df:62:8a:b2:ba:
08:9b:90:d7:a2:df:6a:eb:8d:04:ee:e9:27:a6:55:
d4:b9:c2:c8:9a:58:a8:72:15:0f:ba:48:3b:76:f9:
5c:a9:4a:f3:de:ee:65:5a:1e:e0:be:94:56:94:8e:
05:94:94:c0:c9:67:81:3f:3f:cd:72:64:dc:8f:cb:
26:39:dd:cd:a0:81:ea:86:d5:51:d0:af:1d:f7:49:
3c:4b:5b:d3:01:b3:e2:f6:8e:82:0c:eb:7d:28:21:
42:6d:6e:eb:00:88:57:25:d3:33:52:e7:14:5f:c7:
d7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E7:C0:CC:36:FC:08:73:7A:09:DE:1D:82:44:75:12:65:8D:47:C4
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133342e3232362e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.226.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:ef:73:2c:4a:7d:5d:74:d4:44:7b:e3:48:3a:61:42:47:43:
44:d4:68:4c:e3:4e:6f:c2:bd:0a:31:20:2d:fa:7e:70:04:1f:
7f:c2:24:3b:f3:f4:4d:6e:4b:98:14:0b:7c:bc:97:3f:11:35:
31:f4:a5:a6:c5:cf:3c:a6:a2:51:50:17:df:a1:25:cf:7d:d4:
f4:26:ba:b8:bc:e1:91:1b:b6:a5:21:b3:2b:0d:a1:17:bf:a0:
1e:13:3e:ab:99:0f:b6:9a:4e:90:a3:e9:71:e1:05:24:be:8c:
ae:21:2c:df:86:28:9b:85:fa:ef:c3:c5:b4:47:85:75:6c:2b:
15:1b:f0:ab:50:93:a2:ef:80:b0:ad:98:d6:6c:08:93:9e:ac:
d4:38:70:67:2e:94:46:f6:ea:c7:5d:fe:82:a5:69:ba:b1:05:
c4:ee:42:c5:8d:b9:3c:cd:a8:34:86:d8:93:33:fe:c4:d1:ca:
bb:90:e4:d8:a2:d8:8d:56:13:87:9f:23:18:d9:ca:34:79:17:
0a:56:ab:7d:50:9a:bf:d4:5a:a5:f7:87:7f:54:84:80:d4:53:
da:b1:d8:fe:0f:f3:37:41:3d:a2:c7:4c:0e:87:91:79:08:39:
05:c9:59:ea:e6:16:47:33:6d:6f:ee:1f:88:3c:b9:c3:a8:4f:
7e:3b:a0:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:44 2024 by rpki-client on console-ams.rpki-client.org