Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34302e302f32342d3234203d3e20313336373837.roa
File: 34352e3135352e34302e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: zESEXT4Jh4N9wTYwkP6DUt/cqSQ/K2+YoYFZtPjN29E=
Subject key identifier: 26:AA:0A:EF:24:9E:76:C1:6A:7F:B9:C8:71:96:63:21:E5:3F:38:CB
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 01B5EE086EF161DF289A19232CFB22A847B1A181
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34302e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 20 May 2024 17:03:45 +0000
ROA not before: Mon 20 May 2024 16:58:45 +0000
ROA not after: Mon 19 May 2025 17:03:45 +0000
asID: 136787
IP address blocks: 45.155.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:b5:ee:08:6e:f1:61:df:28:9a:19:23:2c:fb:22:a8:47:b1:a1:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: May 20 16:58:45 2024 GMT
Not After : May 19 17:03:45 2025 GMT
Subject: CN=26AA0AEF249E76C16A7FB9C871966321E53F38CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:49:d6:4c:68:4a:01:64:60:c6:87:75:8f:3a:
1f:f3:69:3f:8d:ce:87:0a:74:fe:6d:98:06:e8:5a:
eb:ae:4e:2b:0b:8b:59:09:58:0f:9d:51:ca:7c:82:
20:6e:69:e9:4a:b6:86:8e:38:2d:64:04:df:9e:21:
b2:fe:bc:c1:d5:59:95:47:99:39:38:1c:e1:50:99:
32:00:d3:d0:7c:6f:e5:4a:51:22:bf:13:86:a7:fe:
6e:80:86:0b:b3:e3:04:de:6f:50:37:69:6a:8b:b5:
78:94:21:de:ac:81:fe:78:8a:95:f6:93:36:1f:82:
20:b4:5b:74:80:90:3a:6e:41:54:b8:42:3b:49:89:
9e:ba:b0:fa:ed:5e:68:d6:cc:de:8f:53:00:80:15:
e9:53:93:47:dc:60:1c:d0:d1:92:71:c9:4b:b7:cd:
e9:55:e3:7d:a0:46:85:52:2a:23:a2:63:cb:8e:12:
bc:a0:38:16:46:ea:0a:90:da:4b:d9:21:7f:85:64:
3d:01:15:74:9d:48:a8:c5:e7:f9:b5:f6:f7:70:de:
bd:52:4c:c5:a9:a5:a4:c3:77:51:07:5e:96:48:f3:
88:07:8e:d7:3c:b9:8c:f0:a1:a7:db:20:fc:1f:ae:
19:3b:ca:a5:73:9e:88:8c:d7:d3:c3:af:52:81:74:
28:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:AA:0A:EF:24:9E:76:C1:6A:7F:B9:C8:71:96:63:21:E5:3F:38:CB
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34302e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.40.0/24
Signature Algorithm: sha256WithRSAEncryption
10:b0:7d:d3:64:14:bb:66:0e:ce:23:43:a9:81:f8:e9:db:ad:
ee:01:04:31:7e:d1:43:dd:59:0f:2a:96:6d:e1:02:32:3a:1d:
c5:db:8c:61:57:42:7c:6e:96:e8:84:1f:96:02:63:21:3d:a2:
83:1c:e9:ae:04:d9:f5:ea:6b:9a:95:42:f9:8e:63:14:73:74:
d2:c5:35:c5:4e:07:b1:d9:32:83:41:89:16:eb:89:db:84:d0:
4d:12:05:cd:cb:f0:16:09:1e:3d:be:6d:b6:92:80:b5:f0:85:
10:6e:39:f1:65:f4:38:61:f2:5b:92:90:14:ab:f7:a1:a8:b4:
f9:88:d7:59:a2:61:bd:a8:95:82:c8:ba:ad:0b:02:1e:5d:c6:
27:8c:29:73:c1:a4:54:13:de:b5:a1:c0:74:2e:af:f8:48:79:
8b:aa:26:fd:0a:83:d4:e2:03:82:c0:42:35:98:c4:fd:72:e8:
67:95:61:74:1d:6b:ec:92:01:a3:30:43:a6:84:a4:16:5f:72:
1d:5e:83:bf:81:e3:04:0d:7a:16:36:5e:21:04:9f:6e:ff:e8:
07:6c:0b:e9:a7:41:e0:38:32:b1:1a:ca:0c:d0:ea:5c:f6:4e:
20:7a:26:b6:c2:1f:8f:fb:50:ff:72:b9:fc:a2:c4:f3:b4:32:
3d:5f:3a:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:44:11 2024 by rpki-client on console-fra.rpki-client.org