Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133372e3139342e302f32342d3332203d3e203430303231.roa
File: 34352e3133372e3139342e302f32342d3332203d3e203430303231.roa (raw, json)
Hash identifier: yl5IwPUqLrgmCcxZTrQDD3TSXkbN6hS5YVZZ9cIaWeI=
Subject key identifier: 7A:2F:70:AE:FF:D6:52:8F:50:4C:60:AD:92:87:A7:86:04:F5:ED:F7
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 75462E077106C4FE2A794908F7AD9A39FCD83E65
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133372e3139342e302f32342d3332203d3e203430303231.roa
Signing time: Mon 26 Feb 2024 08:52:48 +0000
ROA not before: Mon 26 Feb 2024 08:47:48 +0000
ROA not after: Mon 24 Feb 2025 08:52:48 +0000
asID: 40021
IP address blocks: 45.137.194.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:46:2e:07:71:06:c4:fe:2a:79:49:08:f7:ad:9a:39:fc:d8:3e:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:48 2024 GMT
Not After : Feb 24 08:52:48 2025 GMT
Subject: CN=7A2F70AEFFD6528F504C60AD9287A78604F5EDF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:19:88:9d:60:54:81:ea:ee:53:60:e0:95:d6:
73:63:2f:88:da:fb:b9:0c:27:c5:c0:3c:f3:ef:b4:
93:c9:c1:96:ba:84:4b:9b:b4:b1:b4:3c:54:6c:7b:
4e:06:19:ce:14:31:02:c6:f3:88:8f:ab:15:6d:32:
8a:f1:59:a0:db:65:b8:fc:77:dc:0f:9c:bb:3c:00:
e3:b1:65:65:ea:c2:bc:b1:e7:dc:0e:b8:45:a1:04:
90:45:e5:d7:38:4c:17:2e:3a:48:37:e9:78:a5:9e:
43:19:d2:53:b5:7b:03:49:f4:27:3c:f6:f9:df:bd:
ea:58:ef:f1:59:1a:55:f1:3e:ea:78:67:d7:a3:9b:
6a:45:87:c7:8e:41:7c:ed:01:59:53:cb:1e:b4:25:
28:ca:d9:00:9f:cb:e6:83:b3:ff:c2:af:64:8c:00:
85:01:8f:11:e5:e0:c6:29:30:ef:6d:bc:07:6d:81:
f3:28:81:c4:35:ce:80:78:f7:c0:d7:9c:06:75:da:
8e:7c:a3:92:04:40:fa:36:c0:9e:7b:9f:8b:7f:ac:
82:4c:f3:f8:12:5f:39:f6:b8:cd:27:04:17:2e:5c:
9b:ab:6d:bf:e8:db:05:af:c4:f8:0a:2b:c1:53:b2:
93:19:11:12:70:dd:70:68:a5:63:ad:2a:67:71:04:
b0:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:2F:70:AE:FF:D6:52:8F:50:4C:60:AD:92:87:A7:86:04:F5:ED:F7
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133372e3139342e302f32342d3332203d3e203430303231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.194.0/24
Signature Algorithm: sha256WithRSAEncryption
86:3d:0b:ef:23:96:d9:89:04:a0:9b:f7:8c:31:cf:30:2f:24:
29:a5:eb:8e:0c:e4:48:ff:f6:78:1c:ac:a5:95:18:19:86:02:
b7:a1:29:5a:3a:7f:8c:1d:1f:6a:2c:40:f9:e5:68:df:69:c4:
75:cb:0e:5d:90:68:62:2b:55:8b:8f:2a:36:fd:cd:31:c6:d4:
55:ec:3a:7c:44:83:2f:8e:d0:44:5f:33:b4:7f:b0:b0:d5:6f:
8a:f2:fb:50:9f:a3:0b:74:95:49:c4:e9:6a:31:ec:3c:52:c5:
33:b2:e8:08:8d:88:5f:15:34:af:5d:55:03:b4:88:45:51:8a:
50:5d:84:41:47:b6:e8:cb:e1:aa:a3:09:d7:25:51:ff:02:e2:
c2:c0:3c:47:6a:77:f9:5d:29:6b:91:c3:05:0f:cb:a5:b5:3a:
03:4c:34:55:d7:89:7a:00:95:75:db:3f:35:c4:ee:26:88:06:
89:e2:ce:59:1d:81:61:44:75:82:9b:e5:82:a8:18:96:6c:18:
e2:68:88:8c:a5:db:42:62:16:9b:b8:f5:03:cc:25:ca:5a:9f:
2b:37:d4:4d:ee:b6:d7:71:d0:77:16:ff:6b:ec:2d:e1:83:80:
7e:0b:bf:7b:8d:5f:1f:cb:d5:bd:de:48:4b:45:5c:1e:2a:ad:
9e:0c:3a:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:44:10 2024 by rpki-client on console-fra.rpki-client.org