Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34312e302f32342d3234203d3e20323037313337.roa
File: 34352e3135352e34312e302f32342d3234203d3e20323037313337.roa (raw, json)
Hash identifier: VxOzww2i6nkRzgZu9I9iykEYzDtSygodhen7jmNv758=
Subject key identifier: 17:13:42:54:B8:1C:76:39:EA:2D:46:21:D9:60:2B:A6:B0:FD:16:80
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 39E8DA105D33A5C9D0D2985488C6F2515C9DB26D
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34312e302f32342d3234203d3e20323037313337.roa
Signing time: Wed 02 Oct 2024 09:06:23 +0000
ROA not before: Wed 02 Oct 2024 09:01:23 +0000
ROA not after: Wed 01 Oct 2025 09:06:23 +0000
asID: 207137
IP address blocks: 45.155.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:e8:da:10:5d:33:a5:c9:d0:d2:98:54:88:c6:f2:51:5c:9d:b2:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Oct 2 09:01:23 2024 GMT
Not After : Oct 1 09:06:23 2025 GMT
Subject: CN=17134254B81C7639EA2D4621D9602BA6B0FD1680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:9a:12:59:2f:7a:da:c0:70:7f:e8:68:f7:36:
b5:ff:db:3d:36:bc:26:f6:1d:47:d7:65:16:57:81:
a1:02:47:ba:14:32:05:b1:cc:3a:db:8e:2f:5a:4c:
79:af:70:24:04:64:d0:3c:56:16:fc:6d:1d:d0:c6:
21:52:6f:03:ca:a8:90:e0:32:16:a0:76:78:7d:fd:
ee:7d:a0:6f:f9:74:59:85:95:bb:e6:1d:96:8a:66:
df:f7:0b:6f:cb:b9:f7:99:5e:bd:18:ac:5c:c9:1f:
cb:4c:21:47:4e:c9:7d:c7:0d:47:0f:84:d3:e0:66:
34:91:be:a8:44:34:e8:a4:39:69:51:84:c8:25:3e:
1b:12:e3:45:52:20:51:19:e0:29:7f:7e:a5:8a:66:
5e:5a:f5:51:6a:d4:d6:d6:d4:e7:1c:eb:e5:d3:c9:
6e:08:2a:a1:f7:13:0d:ca:4e:d2:d2:5d:20:c3:3c:
38:4d:8a:b8:4a:47:bd:ac:e8:47:3d:a9:d3:a6:23:
30:7f:21:dd:f3:ad:52:f4:7c:c4:f4:f8:a0:1b:cf:
ab:25:d7:c8:33:37:f0:2c:8b:12:db:19:07:37:db:
bb:4e:49:0b:30:37:74:83:9a:52:09:3b:21:73:ee:
5c:09:22:c0:5d:b8:2c:39:58:d8:98:05:0c:09:36:
1a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:13:42:54:B8:1C:76:39:EA:2D:46:21:D9:60:2B:A6:B0:FD:16:80
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34312e302f32342d3234203d3e20323037313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.41.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:57:eb:44:93:5f:4b:ef:b2:57:fa:e0:7a:77:ba:1a:25:60:
63:cf:ea:2d:00:0f:b5:51:4d:bb:86:74:93:df:d7:86:d9:84:
c5:bd:5a:fc:c3:ac:2c:aa:3e:8b:24:bd:85:45:8d:69:40:6f:
26:b0:3f:73:0d:d3:17:b6:98:c9:f1:67:5a:4f:33:81:c2:75:
96:76:bd:1d:5e:a8:56:1b:a0:5b:15:19:0a:b5:84:ed:85:5b:
5a:f1:6f:d2:8f:44:dd:a9:e2:06:6f:69:6b:a3:39:de:c9:54:
a4:f7:cf:14:d1:1a:32:47:c9:25:55:dd:3d:b7:01:5f:46:1b:
df:15:02:37:bf:0e:d8:0b:74:6f:10:23:f5:b4:55:28:8f:1e:
66:bf:42:1e:e9:22:c0:8f:39:91:3c:65:85:43:fd:aa:9a:6a:
27:7d:57:ef:9e:37:4d:a9:9b:73:da:2e:06:f1:01:5c:ea:b6:
5d:74:0e:ca:ed:76:f5:d8:d1:ab:9f:1e:9e:45:60:87:9f:dd:
a9:3a:07:e6:ed:41:50:7e:1d:e6:a4:f8:85:44:62:3d:de:c6:
7e:38:7d:47:9c:ec:14:e2:83:ce:f5:e0:6b:98:70:80:74:e1:
79:fe:65:b5:2f:67:6d:d1:5a:f4:11:05:8a:39:09:69:b5:34:
5a:51:c3:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org