Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133372e3139322e302f32342d3332203d3e203531313637.roa
File: 34352e3133372e3139322e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: GqF2PpB+Arg4qqvszmSG4XNz+KzWbO5VvB08GWBTLeU=
Subject key identifier: 57:16:4F:DF:1F:57:D2:68:4B:EF:97:ED:52:61:3E:0E:8F:9C:1C:B7
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 2301CDED003DCB89543EABDFA43DD132CC1A138E
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133372e3139322e302f32342d3332203d3e203531313637.roa
Signing time: Fri 21 Jun 2024 08:03:59 +0000
ROA not before: Fri 21 Jun 2024 07:58:59 +0000
ROA not after: Fri 20 Jun 2025 08:03:59 +0000
asID: 51167
IP address blocks: 45.137.192.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:57:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:01:cd:ed:00:3d:cb:89:54:3e:ab:df:a4:3d:d1:32:cc:1a:13:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Jun 21 07:58:59 2024 GMT
Not After : Jun 20 08:03:59 2025 GMT
Subject: CN=57164FDF1F57D2684BEF97ED52613E0E8F9C1CB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bd:28:92:ef:3d:9f:f8:65:b6:f2:8a:1c:de:
e5:6c:d8:e3:cb:04:1a:ea:3c:e5:ca:a3:02:13:15:
6c:71:c5:2e:fe:1d:ca:a8:a3:68:3a:a3:e0:96:29:
60:51:16:4e:f9:c1:b0:05:e7:9d:76:33:c5:2c:52:
18:16:24:b3:7f:d0:07:92:2d:9d:db:0e:eb:35:ab:
10:a3:bc:ff:7a:71:15:0a:f1:13:54:cc:d7:87:80:
42:f8:8b:3d:66:2b:0d:6c:e8:50:d0:20:86:9b:74:
76:85:00:c8:6d:b4:87:28:31:ea:a4:ea:a9:9a:72:
69:ef:6f:fd:42:30:c7:91:f7:72:e8:ca:8d:89:da:
ab:26:37:df:41:66:1e:18:18:20:ed:df:04:53:69:
ed:ee:0b:4f:51:01:34:4f:10:db:01:1c:b7:c6:d4:
81:16:f5:d6:fb:79:6e:30:ce:a1:d7:59:16:8d:db:
2b:97:ff:32:95:ed:c5:b7:8f:10:70:6b:c9:7f:6f:
ed:56:4d:e7:f6:13:0d:d8:87:a5:a9:b5:c4:eb:e8:
22:c6:87:82:67:28:fa:ff:71:51:e4:5c:2a:bb:22:
91:5e:b8:05:90:da:8e:f6:19:27:7f:2a:f3:ea:0f:
c2:96:d7:8b:b3:3f:00:03:bc:5e:a7:a3:30:76:95:
ac:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:16:4F:DF:1F:57:D2:68:4B:EF:97:ED:52:61:3E:0E:8F:9C:1C:B7
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133372e3139322e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.192.0/24
Signature Algorithm: sha256WithRSAEncryption
86:92:ce:ed:40:91:33:54:c5:73:72:4b:37:d1:95:3c:21:2e:
84:37:93:6c:ac:1d:fd:2e:c5:70:28:5f:59:83:21:29:64:85:
b3:64:69:5a:88:94:f4:8b:00:1a:f7:27:aa:27:91:24:79:ac:
41:07:e4:4a:91:59:b9:81:65:27:b2:1e:fc:cf:78:c7:e0:ce:
9a:2d:49:62:92:be:57:30:52:c2:a8:b2:fd:4e:40:04:59:9f:
dd:ec:cc:8d:63:8d:09:d3:3c:20:90:8e:6f:fc:b5:7a:f8:49:
d0:f3:b0:a1:25:2e:a4:32:00:62:45:93:91:1e:14:af:b3:81:
f0:95:d7:0f:48:df:06:b9:7e:57:d0:86:b4:54:85:cb:60:27:
35:8e:16:c0:89:80:cb:96:35:e5:ed:8d:e9:14:bd:2c:6b:e2:
93:cb:50:98:3f:0f:ce:b2:ff:fb:f2:f4:c5:ed:6a:da:c5:11:
23:43:a5:6f:c8:4c:6d:ae:17:5d:33:7d:1e:6d:69:64:d3:4a:
14:3f:95:c9:1a:d0:d7:7c:b8:b6:3b:0b:44:75:55:a5:15:71:
82:39:13:7c:48:28:6a:60:27:56:65:dc:d1:ed:2c:bd:de:66:
5d:ea:90:26:45:2b:01:e0:53:bf:f9:cf:8d:00:b2:f1:11:7f:
94:59:04:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 17:14:44 2024 by rpki-client on console-ams.rpki-client.org