Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e39302e3131322e302f32322d3234203d3e20323033303631.roa
File: 34352e39302e3131322e302f32322d3234203d3e20323033303631.roa (raw, json)
Hash identifier: c+nzNzni3U3pcwFKn+IrvRNSfD45cej+XP2rZ+7zlQo=
Subject key identifier: EF:5A:E5:23:55:48:82:1F:07:C9:E6:A1:7F:8A:0A:25:B8:F5:65:F3
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 1BF008B2B670073D6B3D941DDECE959AD13B78BD
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e39302e3131322e302f32322d3234203d3e20323033303631.roa
Signing time: Mon 26 Feb 2024 08:52:45 +0000
ROA not before: Mon 26 Feb 2024 08:47:45 +0000
ROA not after: Mon 24 Feb 2025 08:52:45 +0000
asID: 203061
IP address blocks: 45.90.112.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:f0:08:b2:b6:70:07:3d:6b:3d:94:1d:de:ce:95:9a:d1:3b:78:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Feb 26 08:47:45 2024 GMT
Not After : Feb 24 08:52:45 2025 GMT
Subject: CN=EF5AE5235548821F07C9E6A17F8A0A25B8F565F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:6f:b5:eb:d6:ca:ca:d2:15:27:b1:06:aa:e6:
96:98:b9:ee:65:9c:b0:44:cc:7f:90:a4:0d:ed:0b:
f9:71:6f:22:cb:9e:7f:29:f6:d9:f3:1e:03:d8:c6:
7b:07:9b:aa:93:3f:86:d2:de:9e:53:a6:b0:e3:8e:
ee:1d:27:cd:87:3f:15:ba:58:a7:37:b5:95:b2:c0:
6f:de:48:14:96:57:89:3e:3b:06:56:db:04:37:ee:
36:ec:a4:f8:2d:bb:80:5d:54:ca:40:cb:6f:c5:2f:
03:0a:ee:91:30:09:01:99:4a:68:60:9a:5f:f0:7e:
f6:81:67:32:88:eb:1c:94:cc:04:be:14:e7:10:66:
5c:f5:6a:7c:98:15:a3:35:06:ea:bf:af:11:cf:61:
c5:4a:3b:cf:fa:c9:4e:1b:1c:c4:51:c2:57:fe:66:
0c:4a:2e:ae:71:6d:d8:76:fc:b7:11:c2:e0:27:0d:
98:7a:3d:3e:5a:63:13:ca:65:a0:d6:4b:9c:4f:c5:
d6:fa:42:aa:c3:63:55:f7:77:19:4e:ed:6a:86:b4:
a6:c7:16:24:c0:47:ea:4d:9d:40:45:d5:ba:db:d4:
f0:be:0c:8f:98:1e:cb:09:b5:d3:2c:41:08:05:1e:
b2:98:96:d7:be:94:8d:1d:6d:4c:7f:42:1f:1c:29:
70:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:5A:E5:23:55:48:82:1F:07:C9:E6:A1:7F:8A:0A:25:B8:F5:65:F3
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/34352e39302e3131322e302f32322d3234203d3e20323033303631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.112.0/22
Signature Algorithm: sha256WithRSAEncryption
21:6c:37:37:5e:f6:4f:43:22:27:2a:2b:50:db:dc:2d:fa:86:
e3:31:4d:da:a4:61:c1:42:2d:6a:77:aa:30:d0:5d:eb:3f:0b:
8a:19:07:a2:68:76:90:c5:fd:60:dd:50:55:b8:3a:93:ef:5c:
8b:8a:c2:3b:ab:1d:20:5e:c2:b2:81:7f:7f:3c:25:b0:8b:75:
3b:66:aa:39:c2:54:e5:0d:ef:b4:e7:4b:d2:0e:26:a3:dd:33:
bd:fe:0e:ac:3b:7e:2e:77:de:77:de:fa:50:27:72:bd:e7:e2:
9f:cb:d7:42:a9:da:f4:97:03:ac:c0:7a:8c:34:5c:8f:5b:80:
b3:54:66:35:d5:9b:4b:bc:35:a5:ee:a3:ba:6d:65:d0:9e:22:
bd:34:2d:77:d8:34:94:a2:e5:0a:69:b3:a8:49:ef:20:95:22:
8d:26:c9:f3:9c:49:4e:4c:c4:09:99:79:b1:ef:e1:43:e1:2d:
a3:2a:0c:85:e6:f8:0c:82:a7:4c:2a:dd:8a:07:e4:34:9e:79:
98:c6:10:56:15:fb:c7:12:02:22:06:f7:36:0d:79:9c:10:06:
b5:c2:68:01:b9:e3:c3:56:40:6e:65:71:39:2b:ef:3d:c9:ee:
78:7a:e3:d8:64:54:67:b6:9f:53:ad:87:0d:60:ca:70:c9:ba:
bb:78:36:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 09:34:37 2024 by rpki-client on console-fra.rpki-client.org