Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e39352e3136302e302f32342d3234203d3e20313336373837.roa
File: 34352e39352e3136302e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: OVKQ9R6Xe80gKHZDpwCa0WpukIr94ICq/XHdK5vm1Ug=
Subject key identifier: CE:0B:39:3F:2D:D0:AD:72:8F:09:6F:77:53:67:CD:13:42:DD:FF:25
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 7445E71B81D07614D88C09F5B7B07EECA4109621
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e39352e3136302e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 26 Jan 2024 19:05:06 +0000
ROA not before: Fri 26 Jan 2024 19:00:06 +0000
ROA not after: Fri 24 Jan 2025 19:05:06 +0000
asID: 136787
IP address blocks: 45.95.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:45:e7:1b:81:d0:76:14:d8:8c:09:f5:b7:b0:7e:ec:a4:10:96:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jan 26 19:00:06 2024 GMT
Not After : Jan 24 19:05:06 2025 GMT
Subject: CN=CE0B393F2DD0AD728F096F775367CD1342DDFF25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:11:df:01:2e:2d:4f:d2:87:62:df:25:12:7c:
1e:3e:4c:e6:a1:13:e7:ff:4a:82:0b:ff:e4:6b:a0:
ce:f6:63:8f:85:db:8c:0e:b8:64:2a:1a:b5:ca:e1:
44:a0:9a:9e:03:eb:57:a2:71:50:98:a4:68:d8:28:
2c:a1:79:e7:67:8a:0b:04:03:fa:4f:e9:c8:6d:d9:
aa:33:93:70:6e:28:7f:6d:30:72:df:5b:59:17:4d:
55:03:e1:21:7d:f9:bd:31:6a:6b:14:0a:17:9f:77:
82:b8:e2:25:a9:04:7b:12:9f:7a:2d:43:10:03:6b:
cb:42:28:56:b4:9c:52:70:43:bb:85:b3:a7:3a:0d:
a1:bf:24:17:8f:f4:2c:89:23:12:c3:96:ab:19:18:
69:d7:80:5c:08:14:16:1a:9a:0c:01:8c:cb:51:00:
3d:47:13:d9:96:2d:33:0f:21:8b:3e:b7:fb:df:40:
90:e4:87:f8:25:5d:8e:91:6a:53:0b:f2:a5:00:4e:
78:77:b1:c4:99:c1:8a:3e:ef:9d:c6:a5:ce:a3:73:
6a:78:32:de:f0:68:91:46:73:87:ec:01:79:e7:8c:
ae:cf:45:44:8a:88:bc:56:0e:e0:a1:7f:62:c9:db:
f9:f0:dd:8d:5e:38:d3:45:61:3a:90:c0:91:31:2e:
86:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:0B:39:3F:2D:D0:AD:72:8F:09:6F:77:53:67:CD:13:42:DD:FF:25
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/34352e39352e3136302e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.160.0/24
Signature Algorithm: sha256WithRSAEncryption
67:00:3e:b6:eb:f2:81:c7:12:9c:30:25:b3:fd:e0:72:7d:57:
ed:eb:5c:e0:72:35:11:bc:42:d7:b5:01:52:13:33:b2:79:e9:
98:44:25:38:3f:76:57:46:06:5a:8a:73:66:a9:b9:10:1b:3a:
fd:a9:a9:75:e0:2c:22:fb:8a:9d:74:de:77:d0:4f:dd:8c:46:
b6:e7:43:5e:82:2b:e0:b2:c1:df:09:01:63:e8:32:8b:fc:a3:
4e:b5:a8:da:18:b2:a3:6f:b6:bb:92:a0:e6:47:e1:62:9b:fe:
29:dc:a5:23:40:12:31:fb:36:71:9b:bf:c5:63:18:c5:bc:eb:
94:60:4d:e7:18:c4:f9:cd:46:b5:8d:79:bb:f7:a5:f6:ab:d3:
e3:66:2c:ca:10:9b:00:23:5a:18:26:77:09:54:0c:35:c5:59:
f8:13:67:ad:9b:c0:36:62:cb:93:61:96:63:58:f3:af:a8:96:
26:5b:a5:6c:02:33:ec:c3:d2:67:ef:05:7b:74:ea:a2:05:81:
1b:18:4b:f7:51:8b:aa:58:54:b3:bd:de:cc:92:11:ba:9c:a3:
05:4c:bc:ef:07:ca:b7:77:fb:0c:40:ba:9f:d8:71:78:4b:76:
7e:f3:01:54:41:e3:8f:11:5c:82:e4:4a:4d:75:84:d5:92:e2:
ba:d0:48:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:04 2024 by rpki-client on console-fra.rpki-client.org