Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e31332e3233322e302f32342d3234203d3e20313336373837.roa
File: 34352e31332e3233322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: ZXtIygwSiL9Dh9O5lQnBnX3aeOZcfXEvWzW67hRZD1Q=
Subject key identifier: 71:32:E7:39:F9:00:F7:F6:FE:EB:A8:26:10:D2:67:BE:06:08:4B:F5
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 60D6BCF5B3D59F65AEC89C4AA69B068123D34C00
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e31332e3233322e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 13 Feb 2024 12:54:57 +0000
ROA not before: Tue 13 Feb 2024 12:49:57 +0000
ROA not after: Tue 11 Feb 2025 12:54:57 +0000
asID: 136787
IP address blocks: 45.13.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:d6:bc:f5:b3:d5:9f:65:ae:c8:9c:4a:a6:9b:06:81:23:d3:4c:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 13 12:49:57 2024 GMT
Not After : Feb 11 12:54:57 2025 GMT
Subject: CN=7132E739F900F7F6FEEBA82610D267BE06084BF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e9:d1:a8:c7:38:83:b3:ae:b6:3c:87:6a:d4:
63:fb:87:7c:46:29:19:35:57:45:2e:36:8a:d9:b5:
89:77:83:f4:e5:e4:64:61:ee:01:62:f0:f8:01:f3:
9e:46:fe:6c:c9:82:96:d3:9e:6c:14:53:ba:0f:1c:
ab:45:4c:36:2f:33:cc:80:64:c1:99:70:1d:eb:98:
e3:a9:c1:79:06:e8:8c:e2:bb:62:d1:b8:7e:43:b8:
56:da:6f:30:c1:1d:98:ba:13:86:74:64:9f:81:2d:
75:38:78:ce:e2:bb:1a:98:69:66:6d:d3:9e:8a:5d:
ce:86:50:e5:ad:a0:1f:4f:b6:56:78:23:0a:07:28:
85:14:58:5c:7a:55:02:e6:ca:06:da:a2:1c:27:4b:
1f:10:0d:3a:dd:05:1b:33:1b:61:7c:e1:9c:59:62:
9e:60:e3:3d:41:c5:e4:53:e5:65:cd:96:0a:fd:12:
c6:e8:0e:22:9b:aa:f8:81:cf:28:ab:61:d4:4e:f3:
76:0f:2b:0b:99:c6:f9:a1:1b:6c:c8:e6:af:e0:a1:
b2:96:c2:f0:0e:99:f5:e4:4f:45:73:83:05:18:a5:
ea:7d:a7:60:b0:06:80:9a:23:9a:15:d3:0a:9c:12:
a4:72:06:93:80:45:d4:8f:ce:86:56:d3:25:3b:1e:
31:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:32:E7:39:F9:00:F7:F6:FE:EB:A8:26:10:D2:67:BE:06:08:4B:F5
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e31332e3233322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.232.0/24
Signature Algorithm: sha256WithRSAEncryption
98:65:1e:59:e6:90:d8:2b:17:96:03:8c:33:f1:b1:34:d1:b0:
ae:4f:5e:2e:38:49:e9:e2:c1:0d:5f:f5:a1:e9:d2:7a:bd:b7:
19:f3:65:ed:b4:a1:f2:3c:c5:69:91:0c:60:4a:96:c0:93:80:
24:0c:2f:f2:12:11:96:17:a6:02:9d:83:01:98:ed:39:8d:f8:
83:d1:38:ea:98:af:9d:7e:7e:68:58:39:56:e0:15:29:f7:01:
a5:0d:31:24:1b:e2:b9:ab:f7:c5:17:1d:d1:ca:52:5b:b5:0d:
7e:2a:39:2a:0d:63:55:a2:ee:a4:41:fa:c9:86:d1:cf:8f:2f:
d4:aa:1c:26:3e:fc:32:68:c2:95:d8:fb:e6:03:8b:69:29:ff:
60:af:6d:5b:bf:cc:09:d0:74:fc:82:1c:0b:1c:6f:ee:58:d6:
e1:3a:71:b2:c1:06:db:2c:df:ba:7b:ab:5e:9c:1b:d7:9d:69:
c0:76:85:bd:56:17:de:67:6d:22:9e:56:d6:f5:15:0e:0b:d4:
a6:f6:0a:c9:e6:fc:aa:89:57:4c:4d:b3:1b:67:7b:bf:22:41:
c9:bd:9b:8b:68:e5:3c:b4:e8:85:1a:0d:b0:e9:93:3e:11:23:
1c:f5:7f:ae:6a:6e:43:25:d7:f5:c7:98:bd:e2:e0:2c:ee:c3:
33:cc:35:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org