Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e38352e3235312e302f32342d3234203d3e20313336373837.roa
File: 34352e38352e3235312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: UHklv1W6/aTLvFZ+7XobM9WCmn7/Us1hbSZbUnW9WOk=
Subject key identifier: D3:C7:4C:BD:A7:EB:C9:4D:82:E1:A0:92:73:6D:AE:D2:18:40:EA:4A
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 2EA1BC64691B6C9D0B5A4C2470F349A66DAE3549
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e38352e3235312e302f32342d3234203d3e20313336373837.roa
Signing time: Wed 27 Sep 2023 13:40:10 +0000
ROA not before: Wed 27 Sep 2023 13:35:10 +0000
ROA not after: Wed 25 Sep 2024 13:40:10 +0000
asID: 136787
IP address blocks: 45.85.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:a1:bc:64:69:1b:6c:9d:0b:5a:4c:24:70:f3:49:a6:6d:ae:35:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 27 13:35:10 2023 GMT
Not After : Sep 25 13:40:10 2024 GMT
Subject: CN=D3C74CBDA7EBC94D82E1A092736DAED21840EA4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:81:e3:55:d4:9b:1a:23:dc:87:4a:85:9a:be:
14:6d:fc:c4:7d:a1:c4:61:06:c7:59:45:ed:7d:ff:
c3:31:79:78:ae:28:66:31:b7:7e:30:ee:71:62:21:
69:dd:ef:ec:53:ca:11:2f:84:3d:45:d4:97:f8:96:
d2:4a:d5:2f:a4:4f:5c:6f:5b:34:f4:14:0d:c1:fd:
15:db:ed:c9:11:cf:5f:9f:71:7b:cd:27:c4:c5:e1:
48:89:f0:fb:20:b7:5e:ee:35:51:49:5d:19:2f:49:
39:f1:1b:17:e9:c5:71:57:ec:89:56:ab:13:b0:cf:
1d:e9:73:c0:2d:11:44:70:da:39:0c:a4:19:ca:7c:
e1:aa:b0:88:f6:ca:ac:0b:cc:9f:f5:ba:13:e0:2d:
76:16:0e:36:a7:7f:bc:91:df:e5:25:a2:50:7f:52:
e6:ab:cd:9f:12:2b:82:37:db:a8:fb:1c:34:f9:55:
95:29:51:e8:8a:b5:3c:17:2d:98:16:cd:b1:c4:e4:
be:7f:7c:3b:88:2e:b3:04:11:0a:14:db:2d:59:08:
f6:95:07:90:23:a8:9f:01:f6:d7:79:58:9c:a4:fa:
8f:6b:c0:c1:13:77:bf:55:10:99:cb:ec:1d:76:fb:
99:ed:f2:20:4d:00:34:1d:a2:80:6a:49:20:c2:4c:
c4:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:C7:4C:BD:A7:EB:C9:4D:82:E1:A0:92:73:6D:AE:D2:18:40:EA:4A
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e38352e3235312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.251.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:74:41:20:3e:2c:07:99:24:27:66:8e:2a:0b:a7:6f:b5:dd:
56:0a:ee:97:ff:8a:7b:e2:d8:48:19:26:fa:82:e7:08:86:90:
05:db:ce:fe:20:55:a6:2c:54:f7:f6:65:94:a1:10:e5:79:95:
66:08:61:55:21:0a:af:86:5a:30:ff:30:b8:24:5f:2f:1e:1f:
ae:42:24:89:c0:3b:0d:10:ca:08:0e:1f:58:b0:da:e8:23:97:
d1:9a:30:8f:70:57:95:e8:b1:fe:cf:4c:22:8b:23:09:40:c9:
24:36:a0:cc:3e:8d:1f:ad:b8:98:a3:98:47:80:2f:2a:71:28:
9e:40:7d:89:97:fc:b2:eb:80:1e:c3:b1:00:8f:28:14:97:e2:
df:32:87:18:a5:f0:2e:4b:6f:c2:da:d0:a0:5f:c2:fa:97:b8:
b4:8c:1e:75:6f:ec:b4:75:c0:57:92:07:87:7d:70:81:55:0c:
61:dc:81:c0:32:15:c5:b7:e1:36:a2:e3:9e:4f:87:ce:f9:44:
f6:d6:b9:ea:e7:13:7b:d1:1a:90:3d:09:d9:a2:cf:7c:de:03:
23:15:a2:a0:3b:84:95:98:1d:a9:e1:3b:c5:bd:b2:50:84:fb:
70:09:bb:39:19:b7:32:5e:ae:a1:89:f6:b8:ff:8f:66:7e:e3:
ea:a5:bb:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 21:49:15 2024 by rpki-client on console-ams.rpki-client.org