Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3133342e3139302e302f32342d3234203d3e20313336373837.roa
File: 34352e3133342e3139302e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: ip0PsuwiegBO2ZVr/P0+TBsJ4jt2g6wF/0jhowcpnM8=
Subject key identifier: 61:B4:67:5B:E3:92:4B:C9:C8:20:6E:95:2F:A2:FF:F0:12:F2:77:C1
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 40FA44A1DF8DF209BC1362D53F16850DB8627076
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3133342e3139302e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 26 Jan 2024 19:02:09 +0000
ROA not before: Fri 26 Jan 2024 18:57:09 +0000
ROA not after: Fri 24 Jan 2025 19:02:09 +0000
asID: 136787
IP address blocks: 45.134.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:fa:44:a1:df:8d:f2:09:bc:13:62:d5:3f:16:85:0d:b8:62:70:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jan 26 18:57:09 2024 GMT
Not After : Jan 24 19:02:09 2025 GMT
Subject: CN=61B4675BE3924BC9C8206E952FA2FFF012F277C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:f8:ef:a6:67:24:ed:98:a5:2c:70:b2:f3:c0:
a3:e6:dc:99:a9:c9:dd:45:ea:de:c6:2b:0b:56:35:
b1:45:23:93:9c:9d:23:95:5b:da:c0:b3:ec:e1:57:
0f:9c:9f:3e:7c:b1:4a:a2:7b:ed:6c:64:fb:02:66:
0a:bd:01:9b:71:bd:10:cd:66:19:60:f8:dc:37:9e:
3e:79:78:fb:d1:a8:a3:bb:11:12:b2:97:80:b8:7c:
e6:22:45:0a:37:8a:76:da:e9:46:b8:52:25:ed:fc:
f5:00:29:8a:b4:1d:d5:eb:db:b1:46:4e:4d:6a:cb:
ab:cd:8d:ba:44:6a:19:fa:17:0d:f0:76:49:ea:f2:
7b:34:03:db:65:db:3e:00:1b:eb:14:6b:82:ec:96:
c4:20:2c:4a:31:04:01:39:07:bb:44:09:86:92:94:
a3:9a:3a:ea:17:af:a6:34:d7:62:e9:37:7c:b5:00:
c1:6e:e5:f2:8c:dd:77:68:13:25:3d:4a:e0:27:b6:
b9:cd:ad:e1:67:b6:2e:ed:5a:0b:e6:46:09:6c:d5:
df:02:b4:4a:6e:28:dc:5c:fa:76:52:35:28:6b:03:
9e:56:e0:32:96:d7:db:09:45:87:84:72:2b:09:25:
43:23:8d:34:6e:70:54:1f:88:43:cc:f0:eb:7e:88:
cc:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B4:67:5B:E3:92:4B:C9:C8:20:6E:95:2F:A2:FF:F0:12:F2:77:C1
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e3133342e3139302e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.190.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:bf:66:05:9b:bf:b4:56:5a:30:db:de:fc:51:bc:90:81:48:
0a:a8:ca:03:16:03:7e:55:58:4e:21:96:35:22:75:5c:56:e9:
27:dc:87:87:e3:2b:29:d8:fb:06:0a:f4:fd:6d:9b:ef:08:26:
ec:d7:b5:4c:6d:c6:59:e9:52:78:51:83:a3:60:b9:05:46:12:
d1:b9:7d:a2:32:36:00:09:dd:a7:47:b9:d0:0e:9e:75:25:4e:
c4:b1:58:e5:9c:7f:be:be:09:9a:6b:75:99:d8:b5:52:c0:e3:
ce:9d:54:88:6c:33:be:2d:82:85:62:e7:08:dd:08:3d:23:59:
88:11:27:8a:bb:3e:d6:d7:f3:c4:4e:2e:1d:91:37:19:b7:33:
f5:fc:18:0e:91:07:db:4d:ee:7c:f7:d7:47:8a:6c:38:42:ea:
ed:43:32:81:b4:65:5f:e5:96:ca:85:79:1b:d7:22:c3:b6:7e:
53:73:ab:a7:7b:66:79:07:22:48:95:ea:ce:31:9d:e1:9d:33:
25:a6:ea:d3:8d:a7:65:1a:d2:90:94:90:92:41:30:51:eb:c6:
ea:68:46:f4:e3:95:16:23:e4:92:0e:fb:e5:57:3c:23:4c:5b:
8f:62:74:2f:a1:7a:d4:60:8f:c3:fe:04:af:32:09:2c:c1:a1:
8a:1b:6f:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:32:59 2024 by rpki-client on console-ams.rpki-client.org