Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34302e302f32342d3234203d3e20313336373837.roa
File: 34352e3135352e34302e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: BDcoe9lBi124idLowKsB2e0q7x9t7PtdZwYEgjAfutk=
Subject key identifier: 87:AA:61:3C:07:6C:70:F1:29:15:21:6D:C7:D5:24:B9:C0:93:A2:D0
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 22917B4D8437FD4BBE8C1378389E197C4478F399
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34302e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 19 Jun 2023 16:34:00 +0000
ROA not before: Mon 19 Jun 2023 16:29:00 +0000
ROA not after: Mon 17 Jun 2024 16:34:00 +0000
asID: 136787
IP address blocks: 45.155.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 16:15:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:91:7b:4d:84:37:fd:4b:be:8c:13:78:38:9e:19:7c:44:78:f3:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Jun 19 16:29:00 2023 GMT
Not After : Jun 17 16:34:00 2024 GMT
Subject: CN=87AA613C076C70F12915216DC7D524B9C093A2D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:46:1b:43:36:b9:49:1e:f2:7f:77:96:72:0b:
00:91:43:62:33:56:88:3f:0d:1b:1b:54:d5:ae:25:
e7:cf:48:2b:e1:91:54:d7:8b:52:0c:00:98:44:ea:
37:c7:c3:4d:82:94:93:42:51:7d:19:f4:ef:9b:27:
60:f0:5f:79:55:35:73:8e:06:04:bc:97:99:7b:7c:
2e:bb:d8:bd:97:11:37:a8:17:16:81:57:9f:53:ba:
81:86:ea:4d:de:90:b7:57:38:87:f5:49:e1:63:e5:
5f:e1:e8:55:eb:24:48:90:50:a6:2c:96:b7:da:3e:
0d:84:3c:e9:e9:2d:0e:a8:3f:ba:22:7a:2b:0b:8b:
af:32:e0:41:3c:11:23:94:6a:4d:60:a1:53:c7:47:
5a:a4:9b:62:c3:e8:d1:d7:33:0a:b5:88:bd:b1:d6:
12:5d:2d:b0:8e:76:c3:36:5c:50:0f:e2:66:57:48:
e7:81:6b:16:41:41:cb:d0:50:b3:5c:69:77:65:7c:
51:e6:2f:8c:b0:14:b2:cd:82:ad:88:17:f1:33:4d:
11:3f:c8:81:8d:eb:1b:f7:e8:bd:b7:7b:dc:ce:47:
3b:81:21:d7:33:8e:bf:13:f2:16:54:b4:62:4f:b7:
75:7c:6c:38:67:1e:c6:c7:3b:ba:16:00:a1:fe:2f:
69:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:AA:61:3C:07:6C:70:F1:29:15:21:6D:C7:D5:24:B9:C0:93:A2:D0
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34302e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.40.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:8d:75:3b:03:95:4b:30:ef:c2:9f:03:e6:05:64:c1:dc:2d:
5c:36:ce:aa:5b:09:63:51:53:40:b7:57:c2:17:cf:31:cd:ed:
21:73:42:e5:c3:0b:0d:32:ca:89:9d:23:97:05:a9:b9:e6:9d:
ec:5b:26:63:da:60:23:85:84:5e:89:ca:42:37:2e:77:e5:de:
f3:9e:6b:71:f3:c9:08:3f:8c:69:44:ef:dc:82:18:9a:e6:a9:
19:d7:d8:cd:0e:88:3d:9f:86:73:15:ca:22:56:53:bc:32:40:
41:31:08:ad:6a:5b:f7:16:f6:2e:3c:e7:ba:de:c9:c0:17:6f:
09:fe:65:d1:73:af:cf:e3:1a:14:e0:5b:ce:7b:9d:d3:94:15:
bd:27:1f:db:2d:71:98:5c:d3:68:96:1a:e7:61:c7:2a:fa:c6:
ef:94:e7:9d:77:42:e6:e8:70:48:1a:d5:8a:c2:b0:e6:64:3b:
94:16:29:7b:31:36:92:ea:00:c3:7d:56:ad:7b:59:f6:c3:b6:
20:25:21:32:5d:2d:f7:bf:ff:4d:d1:d4:ea:87:e2:8a:e7:68:
83:6a:e7:b1:c0:74:24:e4:55:09:7f:2a:65:f7:4b:73:97:c2:
47:09:3e:db:cf:61:71:2c:a0:15:93:41:c3:95:ca:ce:55:e5:
f9:52:da:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 01:08:36 2024 by rpki-client on console-fra.rpki-client.org