Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3134372e3137342e302f32342d3234203d3e20313336373837.roa
File: 34352e3134372e3137342e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: kzXOvYMfwPtULt8UoIdEcBoGwK0i7nFRDjI1Mjq6xu8=
Subject key identifier: 53:B8:69:20:B0:BA:2B:81:59:8F:1B:9D:41:15:71:42:97:D0:7C:57
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 6D5DD3D587274F3DA1F6131A04AAF637FEB82DB7
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3134372e3137342e302f32342d3234203d3e20313336373837.roa
Signing time: Wed 07 Feb 2024 12:33:37 +0000
ROA not before: Wed 07 Feb 2024 12:28:37 +0000
ROA not after: Wed 05 Feb 2025 12:33:37 +0000
asID: 136787
IP address blocks: 45.147.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:5d:d3:d5:87:27:4f:3d:a1:f6:13:1a:04:aa:f6:37:fe:b8:2d:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 7 12:28:37 2024 GMT
Not After : Feb 5 12:33:37 2025 GMT
Subject: CN=53B86920B0BA2B81598F1B9D4115714297D07C57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:38:97:a7:5f:11:ed:dd:9f:47:b8:e7:56:8b:
fa:1b:f8:8e:03:17:c0:9d:ae:64:e5:30:7b:80:26:
52:05:23:04:2d:cd:4e:7c:5c:c2:c5:4f:e0:e0:27:
a1:dc:64:30:78:3f:f5:44:70:7b:b9:e1:aa:ab:68:
d5:08:c1:88:ef:32:48:94:6c:ca:ab:b6:bd:7b:d7:
f3:bd:17:44:00:e3:02:d6:cf:ad:9a:71:3f:3f:00:
c9:ab:87:37:8f:b9:49:b5:89:c4:53:cb:19:38:87:
61:51:03:44:07:47:c0:5d:08:af:13:4e:74:df:a8:
a3:95:59:6c:04:6c:ba:81:6b:cf:a3:8c:71:30:7c:
a1:66:0c:28:b1:97:56:7f:ea:8d:e0:58:25:88:d0:
7b:ab:42:c3:c9:f2:f8:95:56:3c:56:71:35:a9:61:
f1:dc:00:2d:a7:ba:46:1d:18:4d:1e:7e:f9:6c:92:
61:df:ff:67:79:13:87:4f:c1:9f:7d:aa:1b:a8:44:
7f:bb:76:d3:e7:39:18:1e:37:fc:01:b0:78:91:bd:
cf:d3:d2:03:3a:0e:53:bf:49:16:eb:23:93:9b:6c:
b5:64:19:13:5b:d5:93:5e:d3:2c:3b:d5:55:4b:7e:
41:f0:e6:bb:f7:d0:74:76:80:22:9b:47:68:8c:31:
b7:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B8:69:20:B0:BA:2B:81:59:8F:1B:9D:41:15:71:42:97:D0:7C:57
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e3134372e3137342e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.174.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:5b:f5:3f:83:70:58:11:50:53:a9:93:a7:84:0d:3e:db:b0:
51:f3:2d:4f:be:ed:1e:8f:a9:83:5c:9e:d8:0f:fa:cd:e8:33:
14:fd:fc:e8:8f:7a:b2:55:16:fc:a2:74:4d:23:f4:6c:42:44:
4b:d5:69:aa:f0:f6:6f:80:51:fe:d4:9b:c4:a7:a5:d6:bd:d0:
45:4c:51:a5:f3:d9:01:97:d8:0f:70:9c:cd:ac:82:36:55:ae:
7c:6c:dc:17:f6:3c:03:70:51:8a:f9:3b:2b:5d:26:85:67:ab:
78:d4:2d:eb:6e:52:93:c1:84:48:98:77:7b:f5:28:3b:e8:9c:
0e:72:f2:15:5b:f7:3a:ff:97:9a:98:2e:95:2c:ee:d8:5c:cc:
0f:a2:95:15:98:48:72:7d:7d:67:44:51:1f:ca:06:e8:a0:13:
54:d2:1c:97:25:de:37:66:24:64:ac:83:a1:4e:d6:2e:30:8b:
61:71:b4:3c:67:c9:d3:be:2f:27:a0:e4:28:d2:ac:fc:9f:2b:
58:9f:3d:4e:a6:1c:44:ec:79:80:9b:0b:2f:b2:f0:68:91:43:
f5:c5:36:3f:96:f5:5d:49:ee:44:74:1e:b4:c0:40:3c:5d:7d:
89:dc:35:b7:01:3e:2c:2c:02:8c:e4:0e:3f:34:a6:74:b4:bd:
8d:63:11:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:32:57 2024 by rpki-client on console-ams.rpki-client.org