Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135312e3132322e302f32342d3332203d3e203531313637.roa
File: 34352e3135312e3132322e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: IxfWDulTfKjyK8mpvLk+xeFI4f2Q7nMLk+0PIkoajEc=
Subject key identifier: ED:0F:E1:00:FF:BC:8C:F8:B2:79:6D:A4:D9:92:92:63:49:19:86:D2
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 591AAF7B9CD205960C5F13C19B67C7AB76705369
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135312e3132322e302f32342d3332203d3e203531313637.roa
Signing time: Mon 26 Feb 2024 08:53:38 +0000
ROA not before: Mon 26 Feb 2024 08:48:38 +0000
ROA not after: Mon 24 Feb 2025 08:53:38 +0000
asID: 51167
IP address blocks: 45.151.122.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 20:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:1a:af:7b:9c:d2:05:96:0c:5f:13:c1:9b:67:c7:ab:76:70:53:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 26 08:48:38 2024 GMT
Not After : Feb 24 08:53:38 2025 GMT
Subject: CN=ED0FE100FFBC8CF8B2796DA4D9929263491986D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c1:d7:ab:4c:83:b7:ce:28:b5:a9:28:1d:af:
e1:b3:2f:40:ef:7f:85:f0:b4:6b:a2:a8:b4:66:4e:
fb:2c:38:d9:f1:7d:b5:85:fc:13:49:52:d7:12:d2:
e5:c2:c4:61:dc:8c:f2:18:d5:fe:23:fd:48:2f:6c:
b0:0d:c6:04:22:bc:97:4f:6e:0a:e7:94:09:ab:7e:
22:f5:23:51:a6:ff:9d:42:0a:c8:51:25:36:5c:a9:
aa:e7:c7:41:7e:9b:f3:38:b5:66:93:ab:9e:60:59:
c0:96:b8:34:2c:5a:a3:c1:76:a6:0e:6f:4e:17:11:
69:d8:dd:70:2e:68:f0:5d:b3:4e:ac:01:67:a8:2c:
3c:12:ac:45:bc:d2:05:7b:e3:a1:65:c6:2d:97:85:
fd:79:86:dd:81:e2:aa:ed:06:9a:d3:35:93:cf:5c:
9b:2d:c8:ec:13:18:65:b6:7c:d8:61:42:7b:ec:c6:
c1:fd:ee:5f:dc:70:1e:b0:0f:a8:ba:9c:f5:6e:47:
ee:6a:1d:02:66:a5:40:4f:e5:a2:16:75:e9:45:3c:
fe:d4:0e:1c:ce:ec:b5:3f:1c:c7:9a:58:20:1c:c3:
46:db:c3:6f:d1:d9:cd:47:98:19:ad:6e:ec:91:85:
af:0c:3c:2b:35:06:16:1a:9e:09:07:4e:29:d0:66:
1c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:0F:E1:00:FF:BC:8C:F8:B2:79:6D:A4:D9:92:92:63:49:19:86:D2
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135312e3132322e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.122.0/24
Signature Algorithm: sha256WithRSAEncryption
19:b4:bf:c4:58:32:a1:fb:ac:06:1f:4f:ad:f9:71:f8:b5:d7:
b8:b4:2a:d2:e4:c4:80:0f:c0:bd:ae:31:e4:32:9a:ff:14:1e:
bc:53:ac:23:80:11:ed:dc:ff:55:b6:e1:6a:f0:63:a2:76:a4:
cb:d3:12:fd:a9:ed:65:f0:fa:b6:90:67:bc:ea:dc:5e:85:66:
b3:df:e1:68:46:c4:11:0d:34:48:fd:db:71:35:3b:59:f8:cf:
7d:85:eb:31:e0:ef:e7:4e:c5:78:52:c2:76:49:69:f0:9d:92:
99:0b:82:f6:57:8b:86:f4:07:d2:32:6b:06:17:05:eb:04:0c:
b4:b2:23:42:97:d4:04:e2:a0:11:1f:b8:c9:ea:47:ad:01:f9:
8a:dd:f7:88:ff:58:59:3f:15:a7:fb:f7:84:a0:0a:95:49:32:
46:4f:71:40:a0:6e:59:d5:8a:d0:7c:36:29:fa:ca:25:a5:09:
5f:6a:d8:32:87:ef:25:61:b5:b0:13:66:40:82:2e:6d:08:b3:
58:62:b6:8a:aa:86:b5:6e:02:c4:87:2e:e3:1d:ed:02:a3:f4:
c4:fa:43:25:33:27:9a:fd:c2:ce:b3:77:8c:82:fe:73:f2:98:
8b:c8:95:28:83:dd:97:9f:bc:a2:15:97:38:c0:1c:b8:95:bd:
97:f5:e8:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 23:46:06 2024 by rpki-client on console-ams.rpki-client.org