Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34322e302f32342d3234203d3e20323037313337.roa
File: 34352e3135352e34322e302f32342d3234203d3e20323037313337.roa (raw, json)
Hash identifier: NTDlp9L7MP9FgWF/vNmtzKup3UZnwdMaWoJJD1EX0XE=
Subject key identifier: 44:59:AB:28:16:45:23:52:EF:EF:8F:0C:C0:9F:68:04:86:93:13:ED
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 03DF4658A6517AD42EC6054BE49D8DAA8A92365C
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34322e302f32342d3234203d3e20323037313337.roa
Signing time: Tue 21 May 2024 20:03:46 +0000
ROA not before: Tue 21 May 2024 19:58:46 +0000
ROA not after: Tue 20 May 2025 20:03:46 +0000
asID: 207137
IP address blocks: 45.155.42.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:df:46:58:a6:51:7a:d4:2e:c6:05:4b:e4:9d:8d:aa:8a:92:36:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: May 21 19:58:46 2024 GMT
Not After : May 20 20:03:46 2025 GMT
Subject: CN=4459AB2816452352EFEF8F0CC09F6804869313ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e5:f7:f3:12:51:03:9f:a6:9b:c3:53:aa:de:
97:2c:89:04:34:aa:5e:c1:e5:e4:19:f8:9a:fd:68:
a3:94:5f:23:e9:fb:9f:72:3b:b8:9d:22:0e:b7:d9:
f3:24:06:46:b2:a4:37:b2:63:c3:b3:e7:d2:e8:ca:
54:89:8f:58:e8:f8:ce:a9:e1:f1:82:17:a2:16:12:
b5:76:21:e7:ab:42:cf:46:5a:e4:a4:7e:a4:a0:8a:
b0:8c:d9:11:ff:89:b2:59:57:35:2d:85:5b:ef:14:
45:4d:e4:0a:c5:8a:c2:71:14:7d:e8:13:90:8b:c1:
20:65:cb:5f:87:df:db:ce:0b:8d:cb:bb:e2:ee:9b:
5b:03:ed:9c:a6:9b:96:76:98:c2:61:b5:1c:e6:ee:
f3:e3:5e:21:0a:e8:a8:d5:8c:91:e6:98:c3:62:24:
72:b9:38:f8:22:d8:f0:84:b9:c5:b9:86:63:a9:c2:
b3:95:af:8f:38:f1:f6:55:6a:3a:5c:7b:e4:d5:e3:
40:2f:15:13:34:e2:a1:43:ef:b2:17:c5:a3:22:ec:
3e:98:e0:2f:2a:88:54:ee:7e:39:69:19:14:8b:17:
a0:40:62:b1:ad:99:0a:93:e0:bb:3d:9c:90:7f:df:
8f:f5:23:85:eb:2e:63:62:b7:1e:61:8e:0e:22:bc:
36:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:59:AB:28:16:45:23:52:EF:EF:8F:0C:C0:9F:68:04:86:93:13:ED
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34322e302f32342d3234203d3e20323037313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.42.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:fe:58:67:63:55:b7:2d:3f:1b:9f:eb:45:df:58:62:24:e4:
da:2a:45:05:e4:ad:de:47:37:91:f1:74:70:4c:a1:6b:aa:fc:
df:e7:09:6c:e6:ec:54:ee:f7:1a:0a:12:35:98:16:38:95:68:
85:9b:fd:13:de:38:ad:80:75:6d:a9:6a:ca:a2:9a:e1:9f:ae:
d8:79:7b:5b:1f:6c:ea:2b:f9:e3:ad:61:f6:de:f6:09:c3:2c:
ed:5e:fe:a4:44:ea:60:41:81:5c:0f:4a:97:9d:46:d8:4a:82:
59:e8:3d:b9:c8:ac:72:07:f0:49:66:e0:0f:5b:1d:a5:db:47:
76:b4:68:ab:d2:a7:02:35:5f:31:b5:e1:85:07:28:cc:43:b4:
4b:ad:c0:35:0f:31:74:6e:58:3a:19:48:fc:20:8e:65:67:f8:
a5:b1:ae:33:b0:fa:57:fb:0a:5c:95:88:94:8a:b5:12:87:ec:
25:62:bc:3a:f7:13:f2:76:96:ae:02:31:31:23:2e:45:a8:68:
84:4f:81:da:cf:88:4f:6e:a2:6f:83:0c:dc:cd:6d:86:e4:13:
95:61:fb:80:9e:4e:11:c7:a8:65:ac:5e:e8:57:d4:6c:73:0d:
01:67:b0:39:38:1e:aa:e4:39:bf:4c:f9:49:68:2a:fe:f1:2a:
02:ba:32:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org