Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e31332e3233352e302f32342d3234203d3e20313437303439.roa
File: 34352e31332e3233352e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: wNSZU5zvzra4BMS9ozXGvwR8pOplj8zTljYRxgOQIEc=
Subject key identifier: 09:B9:FA:21:00:C4:F3:08:BA:C7:45:EA:1F:2E:CA:85:24:7B:28:AF
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 54CC93CEF8F1AB26C14B086AB53BFF9AE3E1C366
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e31332e3233352e302f32342d3234203d3e20313437303439.roa
Signing time: Tue 13 Feb 2024 12:55:01 +0000
ROA not before: Tue 13 Feb 2024 12:50:01 +0000
ROA not after: Tue 11 Feb 2025 12:55:01 +0000
asID: 147049
IP address blocks: 45.13.235.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 May 2024 13:15:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:cc:93:ce:f8:f1:ab:26:c1:4b:08:6a:b5:3b:ff:9a:e3:e1:c3:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 13 12:50:01 2024 GMT
Not After : Feb 11 12:55:01 2025 GMT
Subject: CN=09B9FA2100C4F308BAC745EA1F2ECA85247B28AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:26:2d:20:48:e9:da:68:7c:b9:e2:50:49:62:
e8:79:71:22:5b:3a:c8:48:00:c1:fb:76:78:fe:32:
22:ab:12:8e:79:19:32:3d:17:04:24:cc:52:1d:5c:
5c:8e:ca:a0:9d:35:1a:b8:e1:ed:86:e0:95:cc:68:
76:40:1e:26:12:e6:04:b3:b8:01:8f:33:37:e4:94:
e0:7f:6b:92:55:a1:b1:48:3a:4d:0b:38:31:62:25:
d5:da:01:e1:43:ea:16:9c:84:a1:2a:f6:6a:b5:33:
25:ee:c8:a2:26:aa:20:ac:a8:34:ca:4f:45:5c:49:
24:ef:0d:95:3a:38:d7:83:62:aa:aa:bb:fe:57:43:
ca:f7:57:8a:77:1d:52:68:06:55:06:57:d9:1d:c8:
c7:ff:22:04:14:11:fc:99:5f:55:4f:0a:ad:bb:8b:
dd:31:6d:28:1d:ed:5b:73:19:60:b6:b2:62:69:dd:
fc:ef:ec:f7:8c:df:3d:d6:ef:0d:07:de:6b:37:9f:
bb:ca:43:e9:89:cc:23:6d:42:5a:56:f6:93:e1:33:
fd:03:60:78:ae:94:95:cf:52:ba:b7:0e:4d:2e:77:
90:8a:82:f4:1c:87:57:e3:4c:e9:a8:e3:73:f0:3f:
5f:3a:c2:45:3d:55:7c:97:8a:08:a4:ab:18:0a:9c:
e6:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:B9:FA:21:00:C4:F3:08:BA:C7:45:EA:1F:2E:CA:85:24:7B:28:AF
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e31332e3233352e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.235.0/24
Signature Algorithm: sha256WithRSAEncryption
97:3d:43:8e:0b:73:51:10:f3:ba:b1:26:08:fa:21:15:3d:0a:
2d:33:55:80:4c:a1:bc:5b:cf:77:ae:ea:93:81:62:3e:5a:86:
d1:06:f4:51:cd:a3:9b:1c:69:a0:03:7e:4b:c5:ca:be:b0:95:
42:b2:9c:83:3a:57:78:76:4a:fe:41:7c:cf:8f:9c:3b:6f:2f:
04:43:f1:9d:19:5c:c7:19:d0:ab:48:18:87:43:c4:2e:11:85:
8f:ba:74:18:3f:7a:ed:95:10:ca:ec:a8:c0:76:56:ba:f1:a3:
eb:d4:4c:a7:41:be:86:3d:bf:46:1c:ad:bc:0b:62:ab:2e:3e:
33:b2:ef:ba:7b:84:9f:2c:4e:26:37:89:5f:2b:4a:35:03:d4:
c8:9c:00:8f:74:2a:65:4d:bf:75:67:ea:f0:26:4c:2e:76:31:
92:0b:ad:23:05:ab:8a:23:17:14:bf:f2:cc:00:33:81:00:a4:
c5:be:74:93:4c:10:3c:5e:eb:e1:1f:31:62:20:69:17:c7:8c:
95:e7:37:99:e2:99:a7:41:3e:d3:0e:8f:cc:13:89:63:f0:13:
e4:6a:bd:cb:09:15:4c:aa:dd:aa:7c:4e:08:47:95:79:7f:2a:
84:d8:87:26:ef:a5:3f:5e:8b:3e:ba:4f:60:bc:62:d6:f6:a3:
15:11:b3:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 16:32:39 2024 by rpki-client on console-fra.rpki-client.org