Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3133302e3130372e302f32342d3332203d3e203536383736.roa
File: 34352e3133302e3130372e302f32342d3332203d3e203536383736.roa (raw, json)
Hash identifier: SimJLruUJ8n8l2DFxxWvAg3E6axsSSOQywIUDKe6urU=
Subject key identifier: BB:1C:B3:CC:19:B3:7F:5A:F1:ED:B9:AE:B9:43:BA:73:2D:43:40:E9
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 75000C4A2059B1A01DAD8195E48DC1D9159E9E46
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3133302e3130372e302f32342d3332203d3e203536383736.roa
Signing time: Mon 26 Feb 2024 08:53:41 +0000
ROA not before: Mon 26 Feb 2024 08:48:41 +0000
ROA not after: Mon 24 Feb 2025 08:53:41 +0000
asID: 56876
IP address blocks: 45.130.107.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 20:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:00:0c:4a:20:59:b1:a0:1d:ad:81:95:e4:8d:c1:d9:15:9e:9e:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 26 08:48:41 2024 GMT
Not After : Feb 24 08:53:41 2025 GMT
Subject: CN=BB1CB3CC19B37F5AF1EDB9AEB943BA732D4340E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4a:47:d4:09:e0:57:c5:27:a4:77:63:84:0a:
86:2d:8c:4f:24:2d:a6:52:7f:4c:40:10:00:28:a5:
37:99:80:0b:7c:75:f7:19:42:b0:4f:50:c6:65:67:
f9:09:2b:e1:e2:81:96:76:39:e7:05:99:18:08:30:
5c:61:24:d1:be:3a:de:c3:04:ce:ed:50:bf:00:a1:
61:95:8d:d9:0d:e7:f8:f8:29:4f:92:02:80:91:77:
02:d7:d2:52:d2:ad:d6:22:0f:d3:e5:34:c7:5c:ba:
85:e6:58:b2:02:da:7a:23:da:16:51:ad:50:b2:7e:
d3:5f:6e:a6:6b:59:9c:96:77:7e:d6:ef:5a:9d:86:
34:59:7e:df:6f:ba:4c:76:a1:d5:9a:f4:c5:c0:a2:
43:59:69:c7:cd:9f:12:8b:2c:2e:13:8c:93:77:a8:
e2:4f:62:dd:6d:5f:1f:8e:8e:37:7d:46:0f:32:2e:
98:70:b7:ec:64:b6:d8:8a:01:8f:00:1a:e6:a9:cc:
dd:97:84:45:92:46:5a:fb:6b:de:88:82:c5:7b:76:
27:81:04:8a:32:22:ed:f2:37:59:0b:b9:3e:bb:56:
bc:ca:92:96:ea:f5:a2:60:83:f7:89:90:2e:fd:be:
11:17:b8:5c:28:df:0f:0f:42:b6:a4:b4:41:38:b4:
fd:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:1C:B3:CC:19:B3:7F:5A:F1:ED:B9:AE:B9:43:BA:73:2D:43:40:E9
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3133302e3130372e302f32342d3332203d3e203536383736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.107.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:14:62:67:1c:70:45:8c:9d:ca:59:06:96:91:25:f2:44:21:
ae:d2:61:d9:0d:69:4c:e4:88:18:7b:7b:86:f4:69:79:8f:1a:
54:8b:22:bf:b1:14:d6:3e:d6:0b:5f:cb:57:e6:84:cd:31:71:
64:9e:2c:23:bf:61:a5:e6:01:47:33:32:08:26:51:e1:2d:b5:
5a:e6:fe:96:9a:08:70:12:a8:b9:29:28:b0:30:e5:65:a9:de:
10:6c:aa:b5:b2:bb:be:b2:7a:c6:94:8d:7b:55:96:17:c2:3e:
1f:b0:f2:ec:30:0b:90:96:e6:1c:58:2b:e6:b9:95:12:ee:fd:
d8:33:27:c6:85:40:ec:cd:cd:33:9d:fa:32:63:76:9d:b0:c9:
5a:70:2c:9b:ab:bb:97:f1:b3:49:9a:44:2a:74:4d:74:4d:fa:
de:f7:de:f0:b9:04:ac:5d:f3:da:21:6b:6f:94:99:97:81:9c:
e5:cd:c3:7a:b5:6d:f9:b7:13:9a:de:66:0d:66:5b:dd:f3:48:
1e:17:b3:11:e0:4f:ae:93:58:49:4c:8c:ac:ff:e8:4e:d6:93:
3d:99:c9:29:80:9d:fe:5f:7c:38:8e:6b:a8:be:cb:74:6e:6d:
71:ef:7e:e6:92:b2:21:8b:93:a9:1e:cc:15:02:9e:b2:70:c4:
59:db:0d:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 23:30:57 2024 by rpki-client on console-fra.rpki-client.org