Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133372e3139342e302f32342d3332203d3e203531313637.roa
File: 34352e3133372e3139342e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: +fOhZtyR0+f+b+DbArIGl0I+o40pS3xWhznuwJkqANo=
Subject key identifier: E5:0F:04:D7:F4:5E:C0:96:CD:C6:16:25:CD:BA:9C:C2:CE:9F:78:DC
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 314FA9B46EA7AE17BB656EC3ED8C89479045021D
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133372e3139342e302f32342d3332203d3e203531313637.roa
Signing time: Fri 21 Jun 2024 08:03:59 +0000
ROA not before: Fri 21 Jun 2024 07:58:59 +0000
ROA not after: Fri 20 Jun 2025 08:03:59 +0000
asID: 51167
IP address blocks: 45.137.194.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:57:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:4f:a9:b4:6e:a7:ae:17:bb:65:6e:c3:ed:8c:89:47:90:45:02:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Jun 21 07:58:59 2024 GMT
Not After : Jun 20 08:03:59 2025 GMT
Subject: CN=E50F04D7F45EC096CDC61625CDBA9CC2CE9F78DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4b:e8:e9:d3:a3:88:1b:5c:25:2c:b5:20:ad:
de:42:72:32:68:cc:f3:ac:19:8e:1c:04:c3:67:22:
c0:d7:b5:44:a4:d0:79:5c:db:12:c1:74:50:a5:33:
07:22:d6:8c:19:c9:ba:15:11:81:28:6a:6c:8a:2a:
9a:16:0b:5b:a5:f8:0b:19:59:b3:39:1c:00:5c:88:
c7:e8:a8:69:1c:51:ba:23:3e:d2:33:52:87:5c:5b:
c7:21:ec:d4:5e:2f:54:d0:15:29:09:95:64:02:d8:
08:94:65:93:ef:ee:ce:e6:aa:f4:d1:68:24:dc:c2:
78:e4:c8:04:ca:7d:8b:23:45:76:5c:01:b5:4f:1e:
ba:08:23:85:09:cb:b4:2d:f7:82:5c:75:2a:ed:54:
13:c6:6f:73:dd:b6:de:ac:50:7f:82:d2:ee:95:81:
c3:3c:cd:e7:ad:a6:f2:0b:96:f8:81:26:11:72:7f:
b5:40:ae:c5:45:3f:1a:e4:bd:23:b7:88:a1:b8:80:
f4:c0:48:cc:44:35:3d:04:ba:c7:27:2e:1f:53:fb:
c6:e5:b5:c4:58:3f:4a:36:b5:70:ad:82:e3:b1:cf:
7a:92:c8:81:15:fb:67:f6:32:97:bd:70:18:b4:4b:
55:95:d2:26:07:d7:09:18:ab:f4:e5:2f:02:87:8f:
72:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:0F:04:D7:F4:5E:C0:96:CD:C6:16:25:CD:BA:9C:C2:CE:9F:78:DC
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3133372e3139342e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.194.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:87:9f:38:6a:ae:30:b7:d9:63:ac:19:ba:2e:db:4d:ee:88:
70:2e:33:f1:96:65:11:a2:e7:9c:c0:69:10:65:7f:1f:07:6d:
25:03:aa:e5:28:df:1b:a7:c3:ab:a1:ad:e3:75:18:24:b5:67:
24:5d:06:2c:99:a6:89:11:59:23:7e:2e:46:78:93:7d:37:d7:
53:0b:a4:e0:a2:53:d1:2a:4b:a8:eb:fa:97:1f:4e:3c:ae:e5:
f2:2b:fc:d7:e6:69:c3:d4:65:a1:a7:5b:f2:d2:7a:e8:18:31:
c2:17:10:8d:1b:bd:7a:0c:10:7c:84:70:7d:97:37:25:d9:9b:
6d:85:b0:5d:4c:64:f1:2e:9d:07:04:5d:65:48:10:18:72:6e:
ad:bd:44:bb:f2:7c:74:f8:2e:3b:67:0f:72:b8:d4:0d:b6:1c:
04:a1:71:1a:cd:18:ed:5a:44:8c:43:d3:89:59:3b:e8:7d:f3:
26:36:e9:45:97:fb:a7:fe:94:2e:ac:97:4a:5a:7e:78:2b:ac:
00:3d:79:95:96:e3:23:d0:17:31:7c:56:5d:bc:8f:a0:67:7c:
83:b8:58:50:2b:39:71:8e:c7:01:cc:4f:0c:cd:60:fe:c9:11:
5d:04:78:df:a0:20:56:88:9d:5c:1d:1e:98:27:08:98:a7:38:
fb:46:27:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 17:14:44 2024 by rpki-client on console-ams.rpki-client.org