Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133372e3139342e302f32342d3332203d3e203531313637.roa
File: 34352e3133372e3139342e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: X0IDyTETgkMmyDjKbEfiqeren6SHiys/NJBrGfEovnI=
Subject key identifier: FC:34:87:6B:B0:68:38:88:FD:FA:AC:19:44:39:63:8A:DF:3B:5C:AC
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 6F7F37AB7D3923EEC0C819D61982417BA78DE92E
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133372e3139342e302f32342d3332203d3e203531313637.roa
Signing time: Fri 21 Jul 2023 07:19:32 +0000
ROA not before: Fri 21 Jul 2023 07:14:32 +0000
ROA not after: Fri 19 Jul 2024 07:19:32 +0000
asID: 51167
IP address blocks: 45.137.194.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 13 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:7f:37:ab:7d:39:23:ee:c0:c8:19:d6:19:82:41:7b:a7:8d:e9:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Jul 21 07:14:32 2023 GMT
Not After : Jul 19 07:19:32 2024 GMT
Subject: CN=FC34876BB0683888FDFAAC194439638ADF3B5CAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c6:a3:5f:6e:2c:6a:76:4a:40:90:44:c4:e1:
d8:bd:87:9f:1c:a5:ba:6c:81:e7:ea:19:a6:0d:20:
cf:2a:08:f6:e4:76:a6:c3:a9:e5:91:52:b6:c4:b5:
8d:b6:90:a3:6d:01:63:57:c9:02:7a:7e:62:6d:b3:
93:50:7e:67:c3:44:8d:27:c0:2b:1c:05:04:65:30:
9b:68:0f:da:b9:06:e1:0e:97:e8:0a:38:16:94:6c:
94:89:ae:a1:80:c4:33:26:61:c8:29:ac:8a:c9:e4:
f4:6d:eb:41:64:14:2d:c3:6f:83:48:6b:03:d3:b6:
19:3b:f2:a2:4d:8f:36:09:e9:16:e9:b3:6b:19:07:
19:f9:2b:43:ae:a7:92:7a:94:33:05:73:ea:87:3f:
a4:bd:74:32:22:90:7e:0d:53:cc:9f:d4:40:42:a0:
8f:e9:48:6c:b6:7c:48:7b:f3:91:31:e0:c3:9c:6d:
99:cd:1a:c0:c7:ae:16:c6:ab:7a:d3:47:9d:b6:78:
1c:ac:ab:c9:c5:50:d6:76:1d:6c:27:71:9b:de:b7:
9f:53:e8:3a:64:a4:db:6e:f5:82:41:30:0a:09:33:
ad:47:c3:77:84:f3:26:e6:53:70:b0:5d:cd:f1:18:
be:6d:d2:2f:7e:e3:54:c7:4e:1c:64:e3:49:63:f3:
82:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:34:87:6B:B0:68:38:88:FD:FA:AC:19:44:39:63:8A:DF:3B:5C:AC
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133372e3139342e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.194.0/24
Signature Algorithm: sha256WithRSAEncryption
18:58:6e:68:64:e4:00:4c:87:ee:9d:cb:bf:fe:c9:64:95:20:
15:29:53:a3:20:8d:bf:33:52:83:68:61:70:ce:b8:0d:f6:04:
a8:d5:b1:32:f2:82:72:3d:28:02:b7:80:17:20:68:1c:be:44:
89:57:fc:25:48:49:19:32:77:54:41:b3:1f:7c:37:5d:d3:59:
b8:ef:ba:ee:b8:e2:b7:ca:d8:7b:3a:df:8b:c7:42:19:e2:a3:
6d:56:1e:55:b0:06:d8:97:47:4f:20:eb:60:ae:d1:1f:0f:7d:
04:a7:15:7c:f7:fc:65:ca:64:cc:ca:04:63:73:5a:0d:f5:be:
0a:6e:c4:39:59:22:70:16:7a:28:8b:b0:73:ed:33:63:5a:94:
25:44:51:29:0a:89:0a:ab:cc:66:22:dd:23:56:bb:4b:da:7d:
7e:39:56:4e:6d:89:bc:49:6d:8a:ac:a5:f9:a1:e2:07:28:65:
7d:6b:6f:a1:b3:68:a4:e4:49:8e:d1:09:23:aa:75:eb:41:ee:
7f:7b:fc:13:3c:40:44:be:68:2e:13:5a:ec:4a:1b:ac:73:ef:
79:98:b3:fe:9b:d8:57:52:a2:e5:0b:4e:52:23:81:dd:1e:69:
b7:2c:00:7e:c6:1b:b6:5f:7d:a3:62:01:20:62:e9:68:47:19:
c5:4e:13:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 14:13:08 2024 by rpki-client on console-ams.rpki-client.org