Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34322e302f32342d3234203d3e20323037313337.roa
File: 34352e3135352e34322e302f32342d3234203d3e20323037313337.roa (raw, json)
Hash identifier: D5MylLfbHa2U2uLbW5adZmJdPPxvBlMRq0KL/8COw6E=
Subject key identifier: 90:49:19:CD:ED:8B:C7:2D:C4:FF:BE:B4:11:4D:93:70:85:49:32:60
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 688E0258238ACB5C56EE6E08E2C2E7F141E0168D
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34322e302f32342d3234203d3e20323037313337.roa
Signing time: Tue 20 Jun 2023 20:01:48 +0000
ROA not before: Tue 20 Jun 2023 19:56:48 +0000
ROA not after: Tue 18 Jun 2024 20:01:48 +0000
asID: 207137
IP address blocks: 45.155.42.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 20:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:8e:02:58:23:8a:cb:5c:56:ee:6e:08:e2:c2:e7:f1:41:e0:16:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Jun 20 19:56:48 2023 GMT
Not After : Jun 18 20:01:48 2024 GMT
Subject: CN=904919CDED8BC72DC4FFBEB4114D937085493260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:91:09:5c:7a:6d:b2:fd:82:90:1a:75:b7:f8:
5e:43:f5:8d:ac:58:c4:f2:5c:a2:1d:0f:69:d0:30:
98:04:84:dd:5f:01:fc:83:c1:9a:0c:2d:d8:55:f8:
5d:6e:7b:a1:eb:83:dc:eb:4e:d8:12:7f:72:a8:d5:
30:93:76:1d:6f:57:07:7c:b7:d1:86:33:1c:ba:73:
02:56:32:b0:e2:3d:7b:85:54:1a:c4:c8:df:f7:b7:
f7:11:54:2a:04:2c:c3:65:14:70:15:24:2f:24:d6:
fc:5c:57:9d:63:19:5f:8c:96:69:ac:71:fe:a3:8b:
8b:4f:c2:5b:92:b2:be:c7:f7:92:58:3a:4b:d0:b4:
a9:86:55:37:09:00:29:23:08:b3:cb:18:8e:00:bb:
95:54:00:4f:d5:5b:1c:89:e5:65:c0:83:8e:d1:e9:
d8:12:ed:8d:e0:fd:12:ae:bf:0f:35:63:38:c6:1f:
cc:7e:a5:40:ca:65:47:10:02:f8:df:d1:f2:68:6d:
2b:d5:f5:f1:2d:1e:71:7f:dc:92:3f:32:96:8d:27:
28:90:5d:b0:74:24:e2:53:9d:d7:aa:e9:eb:1a:9d:
cb:d3:9c:8e:3b:36:77:7a:88:27:4f:71:94:af:c9:
77:9b:2d:34:06:64:66:b2:6e:24:1e:14:65:1a:e3:
78:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:49:19:CD:ED:8B:C7:2D:C4:FF:BE:B4:11:4D:93:70:85:49:32:60
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34322e302f32342d3234203d3e20323037313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.42.0/24
Signature Algorithm: sha256WithRSAEncryption
14:ea:79:d0:b8:04:14:6f:ab:7c:c4:0b:cf:69:bc:9c:71:dd:
9f:9a:9d:a0:3b:2c:87:46:c9:d6:11:cc:d5:6f:6f:df:e4:0b:
67:9d:21:f0:7a:b8:13:0e:2f:4f:66:20:c7:64:24:8a:d3:00:
1c:98:07:fa:c5:91:83:88:01:78:ff:52:93:75:16:c1:e0:ff:
54:29:a1:10:ff:03:5a:dc:1a:5e:88:d3:98:c3:22:3e:5e:7c:
7a:d3:a1:bb:4d:c4:e9:9a:72:15:f4:25:c7:5d:2d:af:4f:7a:
c1:3c:6b:34:28:76:b1:86:a5:06:fc:dc:87:fb:78:31:8f:ec:
29:51:2a:75:55:e9:54:af:f2:8d:19:d1:80:62:30:a1:0f:5c:
ae:09:85:4b:26:26:e4:8a:e8:3c:52:80:a8:6e:a8:95:06:a9:
a7:b6:a1:ba:0b:d2:a5:45:35:02:9e:5d:4c:c0:d8:1a:6f:35:
a5:41:71:c4:ec:b1:33:0b:9f:d7:98:2d:ef:1f:86:30:ef:5e:
c3:11:b3:ed:99:7b:55:85:c9:62:30:db:f6:1d:81:b0:1a:62:
8f:12:d1:64:35:81:dd:32:5f:81:37:d1:90:17:11:57:a7:76:
3e:cb:2b:ef:23:e1:6b:7b:54:14:e9:16:a8:57:98:62:19:86:
0c:05:2a:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 23:30:58 2024 by rpki-client on console-fra.rpki-client.org