Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e39302e3232322e302f32342d3234203d3e20313437303439.roa
File: 34352e39302e3232322e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: gEt9ALmDFGlYWFkEnWaLLK7Nq05qF3BqZHLZs39HlWA=
Subject key identifier: A0:7D:1F:38:99:8E:0F:9A:56:C7:B8:11:EF:DB:19:96:EA:55:C0:1B
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 43EBAED401DBAB07C3538D3BFF7C75298A371B1D
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e39302e3232322e302f32342d3234203d3e20313437303439.roa
Signing time: Thu 20 Jun 2024 06:10:42 +0000
ROA not before: Thu 20 Jun 2024 06:05:42 +0000
ROA not after: Thu 19 Jun 2025 06:10:42 +0000
asID: 147049
IP address blocks: 45.90.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:eb:ae:d4:01:db:ab:07:c3:53:8d:3b:ff:7c:75:29:8a:37:1b:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Jun 20 06:05:42 2024 GMT
Not After : Jun 19 06:10:42 2025 GMT
Subject: CN=A07D1F38998E0F9A56C7B811EFDB1996EA55C01B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:cc:dd:51:b1:06:04:87:5e:ba:0a:fc:1f:9a:
28:b5:96:a3:93:8a:f4:60:6f:c8:24:46:ae:a0:53:
18:88:88:ff:38:ec:24:41:df:47:8d:f9:6f:ff:f3:
e9:53:e3:35:1b:2c:35:a8:94:73:25:0b:15:c4:ac:
f7:4b:8e:ec:d0:be:fc:a9:f8:67:56:98:3f:57:07:
53:fb:fe:0a:4a:5e:27:9f:bb:c5:5a:65:08:09:d0:
ee:76:14:7c:2a:2a:ee:4c:41:b4:5e:9e:13:72:d5:
63:06:69:85:89:f6:35:3b:8e:2f:7b:98:f8:c7:a3:
60:5f:09:36:0b:26:9d:b0:83:56:58:9a:77:fa:bb:
da:1d:8c:67:52:3a:55:e0:81:01:91:ba:fc:3c:e9:
c2:66:c5:6a:31:52:cf:b1:01:61:79:10:5f:f5:9d:
c2:b0:2c:14:2b:5b:5f:f2:c3:3a:2d:2c:a6:e2:0f:
64:63:a4:a7:77:58:ca:26:1d:c5:45:ea:32:b3:77:
0c:5d:4f:f7:2f:97:08:da:79:9f:d5:50:9e:58:ba:
2f:fe:44:6c:09:27:06:cf:3c:67:3d:34:03:2b:58:
c7:89:9c:13:d9:2a:ce:ee:80:b8:0d:86:62:e4:d5:
e3:57:91:44:75:dc:3b:db:4e:82:72:80:55:31:b5:
b6:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:7D:1F:38:99:8E:0F:9A:56:C7:B8:11:EF:DB:19:96:EA:55:C0:1B
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/34352e39302e3232322e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.222.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:1b:2e:f7:36:cf:1b:f0:83:51:82:5b:bd:ce:c7:3e:1e:80:
6c:90:cb:cd:64:e5:29:ae:82:8e:9a:9f:f5:5a:5e:93:90:e3:
52:af:9c:86:89:f1:72:60:93:d8:46:6a:63:19:34:6f:ca:c3:
15:0d:5f:44:ea:b1:96:44:48:43:d8:30:77:e6:0a:b0:1c:87:
52:2d:05:8e:90:69:28:a8:54:f1:38:fa:81:c8:ea:12:e6:7d:
43:84:2c:b2:7e:ed:7e:e0:9e:be:e1:0d:22:dd:53:dc:bf:8e:
10:a1:6b:e7:46:be:59:76:9d:07:01:3c:ac:43:35:89:a1:91:
c7:02:c0:e4:66:f8:72:84:98:2f:c9:7e:db:9b:67:0e:69:e2:
c8:33:bf:02:44:f3:b3:3a:3b:38:81:33:8a:86:2c:f2:f8:6b:
db:09:b8:e0:cc:eb:79:c5:5f:45:64:62:30:c7:0d:0d:3a:e4:
c8:58:72:c3:b1:c7:6d:4c:31:ad:7a:68:4c:59:e7:c5:3a:64:
6d:cd:c7:63:57:93:7e:7a:62:f8:92:b9:ce:0a:38:3c:86:22:
37:f4:c9:0b:c9:ed:57:09:05:d4:1a:2b:19:59:c3:57:c9:af:
34:4c:08:32:dc:a5:3e:72:15:bf:32:b9:93:4a:8f:9c:2d:a5:
7a:42:e4:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:44:10 2024 by rpki-client on console-fra.rpki-client.org