Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e38382e3139302e302f32342d3234203d3e20313437303439.roa
File: 34352e38382e3139302e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: nIZy1fx71CGJ012Hyy3pWTlcSiAYD3/jFZLJtRbOhmM=
Subject key identifier: 84:D8:0E:98:C3:8A:78:11:6B:A8:DA:FA:AC:72:B6:A8:05:7A:09:75
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 3A29267BB189C0C52CD5FA9F39E3EB849EEC5A94
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e38382e3139302e302f32342d3234203d3e20313437303439.roa
Signing time: Mon 26 Feb 2024 08:52:50 +0000
ROA not before: Mon 26 Feb 2024 08:47:50 +0000
ROA not after: Mon 24 Feb 2025 08:52:50 +0000
asID: 147049
IP address blocks: 45.88.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 13 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:29:26:7b:b1:89:c0:c5:2c:d5:fa:9f:39:e3:eb:84:9e:ec:5a:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:50 2024 GMT
Not After : Feb 24 08:52:50 2025 GMT
Subject: CN=84D80E98C38A78116BA8DAFAAC72B6A8057A0975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:74:66:c4:6c:54:5a:a0:c5:8d:93:88:9d:af:
7b:61:41:39:dd:4d:41:83:a4:2f:dc:4f:2a:8f:a8:
a6:87:9f:4a:c7:07:e2:a3:5f:25:e3:05:51:f0:2c:
3b:d4:61:d4:d4:f6:f6:df:5f:4a:12:0f:f0:1d:b8:
6d:cb:5e:80:66:b5:10:71:a0:3f:b7:de:2e:9b:ae:
9a:e5:de:e5:2f:84:be:c3:7f:ad:7b:a8:20:f3:45:
ec:1a:88:44:df:23:11:2d:fd:4d:a4:f7:51:87:c8:
f6:ee:8a:69:91:f1:fa:47:4d:73:a5:8a:36:61:96:
29:99:ef:db:b3:be:02:c1:d3:bb:ec:e8:30:bc:1d:
79:4d:97:da:54:23:0b:9f:3f:25:17:cc:a2:cd:10:
27:20:4f:b0:f6:e9:25:9a:da:1c:ef:ca:0f:d2:d5:
42:e7:d9:63:9c:17:8b:04:9a:cf:46:d6:1e:a7:8b:
87:bb:26:9d:88:ea:4b:2f:20:95:45:b8:27:e8:c2:
36:c4:fa:b8:68:cf:a3:9c:9c:f8:51:54:c0:05:0b:
d2:b0:5e:1c:40:70:88:eb:6c:59:68:41:e3:11:e0:
8c:4c:cc:82:14:ea:49:55:97:44:0f:65:46:1d:2e:
78:2a:2b:a3:8f:25:29:40:f3:3d:7c:70:04:45:b2:
b6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D8:0E:98:C3:8A:78:11:6B:A8:DA:FA:AC:72:B6:A8:05:7A:09:75
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e38382e3139302e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.190.0/24
Signature Algorithm: sha256WithRSAEncryption
79:19:9c:b4:39:99:47:d4:0d:e2:df:da:c3:65:87:98:98:5a:
a3:9f:32:64:67:e7:dc:a2:66:15:06:6e:ca:50:ff:ac:04:27:
c5:24:cf:d8:e4:53:39:78:24:cf:1d:cd:7c:70:95:0b:a8:d2:
57:69:d8:97:f5:94:71:fe:b4:c3:30:72:fc:8c:31:70:1a:ef:
b2:2d:6d:6e:e3:31:0d:39:f3:c3:08:9c:3c:68:f2:43:3a:6c:
14:65:c7:ce:4c:7c:09:b7:63:67:76:84:e1:70:82:09:1b:4b:
3b:cd:34:7d:82:10:a5:9b:76:14:1b:ac:5d:98:7c:d2:0f:59:
93:28:4c:06:c1:bf:29:bd:e5:f0:62:a5:5f:bb:8d:8d:e6:30:
71:90:bf:f0:a3:64:c4:7e:6a:68:85:fc:34:e7:2e:60:ee:56:
ee:55:2d:ff:58:5f:58:10:4c:0e:48:85:07:ae:de:3d:ed:dc:
b8:42:ed:f0:0a:d7:bb:51:41:1b:03:7a:9f:f2:e0:a7:88:0c:
8b:7a:07:19:08:a7:02:9e:8c:7a:a5:5d:01:27:da:9a:79:42:
15:da:a2:e0:fb:23:2d:2e:e0:15:e1:2b:4d:56:bc:10:e1:78:
80:40:05:56:a2:a3:1c:dd:85:ca:c7:83:9e:f0:3e:52:ae:53:
62:b6:07:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 14:13:08 2024 by rpki-client on console-ams.rpki-client.org