Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3134312e32302e302f32332d3233203d3e203239303636.roa
File: 34352e3134312e32302e302f32332d3233203d3e203239303636.roa (raw, json)
Hash identifier: nexo1rWIqY1IBnh/EO19IEfT91UdtIzdWJrspYtwCJI=
Subject key identifier: 18:96:75:5B:77:48:26:60:F8:4F:B5:9E:7F:88:D5:6C:65:FB:0C:48
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 0BCEC1151212D60DD2F94856B52564E830B4443B
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3134312e32302e302f32332d3233203d3e203239303636.roa
Signing time: Fri 01 Mar 2024 16:37:05 +0000
ROA not before: Fri 01 Mar 2024 16:32:05 +0000
ROA not after: Fri 28 Feb 2025 16:37:05 +0000
asID: 29066
IP address blocks: 45.141.20.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:ce:c1:15:12:12:d6:0d:d2:f9:48:56:b5:25:64:e8:30:b4:44:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Mar 1 16:32:05 2024 GMT
Not After : Feb 28 16:37:05 2025 GMT
Subject: CN=1896755B77482660F84FB59E7F88D56C65FB0C48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:81:0f:be:69:e1:c6:59:6d:89:73:69:1c:86:
e6:ae:66:74:e7:2a:23:57:a8:d7:08:17:ac:b1:58:
63:40:40:41:6c:fa:88:9a:be:67:dd:08:5f:0b:e0:
bb:85:1f:e0:4d:65:fc:74:3e:30:a3:a8:b0:0a:70:
d0:df:6c:e1:df:73:25:9b:3a:ec:c3:83:6d:3f:a5:
9c:ef:5f:84:5f:c1:4b:51:3b:87:ec:e9:60:48:c8:
41:b9:88:ad:f7:4e:16:e4:36:82:ad:15:ea:47:d9:
62:e7:1c:3c:32:67:ce:10:27:79:d7:9c:ed:aa:6b:
76:80:73:53:e1:d8:d4:70:d8:dc:15:a6:70:7c:21:
63:d6:64:d5:4b:4a:74:d9:65:22:93:01:d9:57:0f:
a7:f5:36:82:56:d3:7c:28:b5:85:76:05:4f:91:20:
9d:94:3c:9f:e7:61:2e:50:8f:1b:31:bf:33:52:4c:
ed:68:00:05:af:f4:32:63:2d:f8:d0:3f:75:46:8c:
bd:f4:ef:48:81:d7:c0:14:5b:6e:14:fc:e4:a6:20:
74:8c:44:02:50:d8:cf:82:24:5c:c6:26:31:2a:fc:
e9:7a:e6:05:35:c7:9f:8e:9a:65:3a:d9:b0:4c:b1:
52:09:e8:c2:7f:95:b0:e2:e7:b4:30:73:7e:e6:82:
e9:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:96:75:5B:77:48:26:60:F8:4F:B5:9E:7F:88:D5:6C:65:FB:0C:48
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3134312e32302e302f32332d3233203d3e203239303636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.20.0/23
Signature Algorithm: sha256WithRSAEncryption
30:6c:59:ed:5b:4e:1e:bf:60:96:85:97:b0:22:2e:45:cb:f1:
e7:e9:f1:c7:18:ca:52:2d:99:0d:90:5e:fb:71:b9:98:21:83:
42:6b:6b:63:21:b5:ee:7c:4d:64:0c:35:b1:52:c2:91:c7:09:
c4:29:87:60:f4:ff:b4:38:91:57:0f:7c:4b:9b:4c:c2:d7:fd:
ce:4a:2b:49:ee:39:3e:5b:5b:01:ed:30:64:12:df:53:67:e4:
c7:b2:f8:82:be:05:79:49:e8:60:49:4e:39:85:76:ca:c6:ab:
04:b8:68:c3:aa:84:fd:fb:f6:fa:cb:59:8d:11:72:49:2c:19:
f2:76:b1:56:a8:7b:d0:8e:76:3a:61:51:4b:32:99:90:37:7c:
0a:25:3d:1b:db:65:0c:14:2b:70:7f:ea:75:76:79:42:9e:c4:
b0:d1:96:e9:7e:20:cb:0f:12:f3:5d:4f:6e:34:17:98:71:73:
98:c0:9e:f8:ec:ea:2f:f6:93:eb:29:2f:93:2e:92:e1:0c:69:
c6:7d:16:70:27:4c:cc:07:c3:81:ae:10:99:22:66:1b:26:92:
58:16:f5:67:cd:ca:10:14:72:5a:44:ba:30:08:9a:0d:5a:b6:
cb:81:2a:8a:6c:19:3a:6f:5f:73:30:55:5a:fe:fc:2b:27:e5:
c8:4e:2a:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 11:29:18 2024 by rpki-client on console-ams.rpki-client.org