Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34312e302f32342d3234203d3e20313336373837.roa
File: 34352e3135352e34312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: sL7e37l5gFcw1d6co37TNxzoVepXbhay7UvFqboMsC8=
Subject key identifier: F7:8A:6F:C0:1A:58:29:E4:6F:73:15:52:D9:D6:8D:AB:73:CE:06:80
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 755051B2DBF7ABC34F2B15F3D87CABFB9D55349A
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34312e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 19 Jun 2023 16:34:07 +0000
ROA not before: Mon 19 Jun 2023 16:29:07 +0000
ROA not after: Mon 17 Jun 2024 16:34:07 +0000
asID: 136787
IP address blocks: 45.155.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 16:15:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:50:51:b2:db:f7:ab:c3:4f:2b:15:f3:d8:7c:ab:fb:9d:55:34:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Jun 19 16:29:07 2023 GMT
Not After : Jun 17 16:34:07 2024 GMT
Subject: CN=F78A6FC01A5829E46F731552D9D68DAB73CE0680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:92:b9:40:ea:a4:0d:79:46:7d:8c:c8:85:14:
b7:23:ed:7e:d3:26:3f:a6:c1:ee:80:08:f5:80:d1:
fc:7a:ae:96:fd:7d:ac:46:33:51:25:e0:57:1e:57:
39:f7:ed:43:c5:64:4b:63:14:95:32:55:11:9a:fc:
15:ef:f3:83:fa:cf:8f:a5:f0:d5:6c:35:37:14:a4:
21:f0:bf:67:70:3f:1b:ff:a3:20:de:9b:9c:68:70:
ca:f8:62:d5:12:2b:ff:cf:ef:7a:54:7a:4c:cb:8a:
dc:9e:b5:a0:f8:d7:e2:46:a8:f8:b9:27:ae:e0:de:
db:b0:d3:3e:43:9a:fb:8a:75:38:8b:2a:73:f9:dc:
c8:9c:ea:a3:24:25:a6:da:34:e9:cc:3e:dc:e2:09:
29:6d:5b:7c:13:dd:5f:e1:7b:e6:4e:03:15:00:ed:
31:93:1a:eb:09:bf:bc:67:00:f3:41:f5:c8:ce:63:
12:58:52:8f:58:49:fa:9e:58:83:9c:b0:f3:d3:4c:
1c:5c:21:8c:d6:69:d5:f2:c9:d6:4c:59:eb:2a:53:
53:e8:15:ff:37:c4:aa:d6:04:84:a0:d1:c6:e7:11:
92:88:fc:48:54:f5:05:b7:4f:89:be:ab:0d:14:05:
17:32:8a:ae:cd:3f:31:44:52:b2:cb:66:b6:1c:04:
a3:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:8A:6F:C0:1A:58:29:E4:6F:73:15:52:D9:D6:8D:AB:73:CE:06:80
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.41.0/24
Signature Algorithm: sha256WithRSAEncryption
64:c3:0b:ed:31:b5:f5:c3:5b:f0:5b:2d:fb:b9:40:f8:07:e1:
db:f3:bd:4c:2a:ba:23:ae:ff:7c:1c:41:e9:6c:ae:73:c5:e6:
40:a6:cb:b2:d1:a9:54:31:37:09:fb:11:86:00:07:3c:39:23:
03:8b:87:7e:1b:bb:16:5f:68:33:d5:d0:b8:a8:9d:41:ba:88:
2d:f4:bb:80:06:42:77:ce:93:ff:b7:ee:c5:69:20:ab:25:76:
36:3f:48:f0:bf:82:e7:95:bf:9a:7d:e1:53:8d:ef:1c:27:9a:
de:b9:70:a3:db:0d:cd:3e:3c:0d:85:69:ed:fe:7d:6d:81:7b:
56:07:17:7a:17:a9:b1:03:81:c3:71:ad:86:be:f0:39:14:49:
7d:0c:e1:46:4f:52:e0:78:20:0b:22:ae:92:5c:7f:39:13:50:
93:a8:5c:14:d7:3d:96:71:c9:35:3f:0d:b7:96:2c:01:f6:d3:
b9:a3:0e:b4:48:d5:ee:10:c6:61:7b:c9:cc:4e:f8:0f:c8:77:
54:e5:b9:8d:87:48:51:f2:80:b1:e2:cf:84:98:6f:99:0a:ca:
af:84:bb:f2:9d:68:5d:10:d2:5e:09:71:03:f6:8a:67:54:ff:
db:bd:f0:5d:e2:c6:85:30:24:2a:6b:35:0c:f1:dc:fa:ca:ff:
63:85:f6:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 01:22:09 2024 by rpki-client on console-ams.rpki-client.org