Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138322e33342e302f32342d3234203d3e20323039323432.roa
File: 352e3138322e33342e302f32342d3234203d3e20323039323432.roa (raw, json)
Hash identifier: 2TrUXC0o3EMbcFAVDDFRvAq00T7N/dcC11qQW9bl1WM=
Subject key identifier: B9:2C:01:B3:77:8E:B9:88:C5:A1:7A:A8:1E:4D:0C:CD:D6:FA:09:57
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 1450AADD500ACFBACA7B5A1B095D81AE1A5CBCB2
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138322e33342e302f32342d3234203d3e20323039323432.roa
Signing time: Thu 07 Dec 2023 20:02:58 +0000
ROA not before: Thu 07 Dec 2023 19:57:58 +0000
ROA not after: Thu 05 Dec 2024 20:02:58 +0000
asID: 209242
IP address blocks: 5.182.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 21:09:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:50:aa:dd:50:0a:cf:ba:ca:7b:5a:1b:09:5d:81:ae:1a:5c:bc:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Dec 7 19:57:58 2023 GMT
Not After : Dec 5 20:02:58 2024 GMT
Subject: CN=B92C01B3778EB988C5A17AA81E4D0CCDD6FA0957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:6b:fd:1f:ce:e7:5b:75:3e:df:58:d4:34:4c:
d9:13:8c:10:af:6f:07:3a:a9:10:0a:a5:20:71:22:
2c:a7:07:01:2f:0b:45:23:12:07:71:14:35:20:49:
70:a4:fd:8d:a4:e4:9b:cb:f0:9e:05:70:21:66:10:
ad:0d:68:bb:c9:10:bd:7e:ac:9f:d6:fd:ae:02:64:
e1:0e:67:f1:0e:1f:86:52:f9:c7:52:81:5a:d1:16:
4f:48:34:7e:fb:cb:a4:81:45:3f:04:29:49:49:18:
ea:4c:7c:1b:ee:86:33:68:04:d7:f3:9c:4d:47:d9:
4b:5c:f4:63:10:16:a7:22:05:b0:c6:3d:cb:65:7e:
85:f3:25:b8:14:67:87:18:34:8f:85:64:15:05:02:
b7:87:8f:ee:8f:81:ab:41:f0:f0:16:a4:fe:a1:00:
b8:d6:5d:5a:56:ab:b2:a7:b2:4d:8a:52:d7:05:f9:
eb:42:95:70:2b:08:89:ff:e3:19:24:e4:0a:9e:60:
ca:36:f0:28:8a:fd:ae:d4:db:45:64:49:4a:10:ab:
76:de:97:02:48:a6:28:a4:43:9b:39:57:8c:d0:95:
3d:de:5a:3c:5d:57:f1:37:64:32:4e:b8:44:f5:ce:
6a:f6:5d:3a:93:16:44:23:ba:1a:6c:6b:19:f0:b1:
59:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:2C:01:B3:77:8E:B9:88:C5:A1:7A:A8:1E:4D:0C:CD:D6:FA:09:57
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138322e33342e302f32342d3234203d3e20323039323432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.34.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:90:8b:b1:0e:8a:81:6e:a2:24:87:2e:d7:25:d1:c8:31:02:
0f:9f:25:ed:49:65:95:17:23:23:3d:37:8c:a1:79:90:d4:3a:
57:d1:4d:bf:dd:d4:8f:ee:8c:5f:99:87:f3:42:bc:e1:e4:ca:
70:d2:5a:96:12:8e:c7:80:14:9a:9d:ef:5b:f6:22:4d:84:87:
b5:57:38:da:be:e0:6f:9e:bf:06:b0:64:0e:0d:0c:bd:c3:7f:
ca:6f:62:b6:e9:e8:a0:b8:e9:34:a2:3d:b5:43:4f:b2:7f:07:
eb:d5:0a:b8:84:a9:c8:b6:40:9b:35:92:ef:c5:d6:40:a1:4d:
e9:09:69:9b:ac:5c:c0:02:9b:c7:70:55:eb:26:e1:0a:41:00:
fa:18:5a:8e:e1:8e:fe:e7:12:50:f2:92:95:a9:51:06:64:74:
30:37:d8:a3:ad:00:2b:15:e9:b1:cc:d4:78:dd:3b:07:1a:13:
82:46:49:34:2f:13:0b:26:be:33:f6:ab:ff:97:87:70:44:5b:
16:e6:0f:e9:2e:3e:71:39:76:41:2c:81:e7:d0:f5:70:83:76:
68:89:45:08:75:f9:6b:b5:49:58:df:18:7b:4a:d0:7b:33:f4:
c5:e3:c1:ed:22:9e:b2:94:76:1a:11:41:77:59:c7:bb:d5:b1:
f9:6d:44:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 06:22:05 2024 by rpki-client on console-fra.rpki-client.org