Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133372e3139322e302f32342d3332203d3e203531313637.roa
File: 34352e3133372e3139322e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: me4N3aWO2y30Uyt3N5x8gDW7sjZ4HxNFCbwFY1JFSCY=
Subject key identifier: 00:DA:1C:36:E4:30:5C:43:90:71:B9:9E:E2:7B:CF:EC:83:83:E3:3B
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 14CC46B3073BD23302BCEB9F1F96274A17484B21
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133372e3139322e302f32342d3332203d3e203531313637.roa
Signing time: Fri 21 Jul 2023 07:18:52 +0000
ROA not before: Fri 21 Jul 2023 07:13:52 +0000
ROA not after: Fri 19 Jul 2024 07:18:52 +0000
asID: 51167
IP address blocks: 45.137.192.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 14 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:cc:46:b3:07:3b:d2:33:02:bc:eb:9f:1f:96:27:4a:17:48:4b:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Jul 21 07:13:52 2023 GMT
Not After : Jul 19 07:18:52 2024 GMT
Subject: CN=00DA1C36E4305C439071B99EE27BCFEC8383E33B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6e:21:01:31:91:5c:51:fc:93:67:ad:b2:29:
ab:53:d0:d6:a5:09:1f:2a:90:c4:e1:d0:e3:90:cc:
e8:2f:87:7e:4f:a1:ea:6f:b5:47:90:03:81:53:a6:
1f:03:3d:7d:e6:d5:06:80:e4:2e:fc:a7:bf:b3:3f:
c8:8a:11:a6:e8:1d:88:4d:42:36:5f:0f:bf:e9:75:
bf:a4:ec:4a:92:b9:41:19:e7:94:37:a0:ad:b4:91:
70:8d:dd:3a:67:45:44:8c:ea:f3:7f:39:0c:f7:ab:
b2:22:fb:70:88:70:2c:69:4a:e5:2c:3c:ef:1a:e3:
d8:e3:51:a4:e1:7e:e9:f9:94:d0:87:f6:0b:25:d8:
e8:3f:f1:56:68:e3:89:cd:2b:19:33:d5:b1:5a:3a:
c8:77:1d:f0:9c:c2:c1:10:60:c6:5c:aa:31:98:fc:
07:69:00:2a:58:70:73:ef:be:9d:61:fa:f1:52:d4:
73:c2:41:31:eb:56:96:31:74:81:11:fc:8c:d8:af:
1a:16:39:56:29:36:c1:79:90:5f:4a:cb:1d:54:08:
3a:c3:3f:70:ed:5c:ef:d3:c6:63:51:d2:9d:1d:e8:
92:58:fb:ac:a2:60:94:ff:76:7f:e7:5b:7f:aa:9b:
cb:e3:e4:14:c8:b4:4d:75:fe:d1:a3:8e:de:ea:34:
51:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:DA:1C:36:E4:30:5C:43:90:71:B9:9E:E2:7B:CF:EC:83:83:E3:3B
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133372e3139322e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.192.0/24
Signature Algorithm: sha256WithRSAEncryption
93:4d:83:68:0d:9a:12:ed:34:9b:cb:d1:93:33:ee:77:21:f2:
ff:7e:07:06:6b:ee:4d:07:09:33:ae:aa:98:40:64:4c:2c:73:
a7:65:08:51:cc:8a:4b:52:26:43:fd:2b:25:67:00:3d:62:f7:
2f:ae:ef:22:f2:50:f9:09:da:e5:ce:db:e7:c2:54:ab:62:f1:
e7:00:c6:37:e7:e5:1c:3e:17:12:04:32:ba:cc:33:a6:ee:8d:
30:ab:87:ca:31:b9:8c:9e:97:b1:ef:51:9c:22:34:bd:bd:c8:
6b:fe:92:36:b2:e2:c9:49:e6:1b:e5:d6:d0:68:64:64:59:19:
68:89:15:81:20:00:69:9e:62:77:c2:e3:06:a7:6b:17:66:f8:
8f:88:91:d1:1c:17:ab:89:4b:2d:c6:c2:84:6a:59:0d:ef:8c:
5d:2b:f3:f7:32:ee:5c:94:8b:5a:47:d9:ab:6a:8c:e7:06:05:
25:22:d2:5e:1a:88:8d:17:11:8c:b3:2f:ec:6e:72:f4:44:ce:
a9:76:d6:25:f3:29:2f:85:e0:71:6c:78:51:35:4e:8c:ea:fb:
6f:80:bf:24:c1:6d:6c:69:a6:a6:13:bb:a2:b2:b5:86:50:af:
e0:97:52:ca:fd:80:80:82:9b:f4:65:39:e2:2f:d7:5d:0a:ea:
e5:5c:6a:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 09:30:59 2024 by rpki-client on console-fra.rpki-client.org