Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34332e302f32342d3234203d3e20313336373837.roa
File: 34352e3135352e34332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 8Y0lgmOzF2DXLuiNRB4OFFrsdbO3rXLQVvhyMY3J6Qw=
Subject key identifier: 73:83:D5:88:B0:B7:DD:D2:C9:3C:A6:9B:EE:93:36:A2:69:81:3C:0F
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 15067EDAFBF1C0B2BC95D2D196C2A76495A51A86
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34332e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 19 Jun 2023 16:34:20 +0000
ROA not before: Mon 19 Jun 2023 16:29:20 +0000
ROA not after: Mon 17 Jun 2024 16:34:20 +0000
asID: 136787
IP address blocks: 45.155.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 16:15:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:06:7e:da:fb:f1:c0:b2:bc:95:d2:d1:96:c2:a7:64:95:a5:1a:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Jun 19 16:29:20 2023 GMT
Not After : Jun 17 16:34:20 2024 GMT
Subject: CN=7383D588B0B7DDD2C93CA69BEE9336A269813C0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f9:81:9d:f4:1b:01:e6:10:de:49:bd:a2:aa:
67:43:96:76:db:ec:39:7c:3b:d8:f0:da:c6:0f:9a:
ab:1f:85:cf:9d:dc:87:17:2d:67:31:f6:91:18:97:
1c:4a:c7:51:08:6c:7a:3d:9c:3e:79:17:09:d2:75:
a9:4a:ab:74:03:78:a7:25:1d:3b:36:17:8f:c3:51:
87:2f:3d:7d:96:cc:a9:0c:fd:7f:70:bf:0c:ae:06:
c0:38:d8:c8:d3:aa:b7:26:9f:a4:d7:71:f0:25:a4:
56:34:f1:fb:7e:bf:0d:2a:bc:c7:21:30:1a:30:e9:
87:5b:19:e2:3c:56:41:90:f3:52:a7:ec:be:bb:82:
4d:17:73:44:d7:ef:9c:79:f2:2b:3d:3f:cb:4a:de:
1e:ed:e7:f5:a0:f7:d0:30:2a:0d:83:b1:7c:09:c7:
4e:dd:45:40:92:8d:8d:d7:83:16:39:6a:63:f3:41:
18:af:67:42:cc:21:de:8f:4c:8a:e6:18:64:cf:31:
f0:98:82:33:87:58:5e:d6:b0:e3:26:3b:99:f2:89:
53:0f:6d:01:60:64:28:41:3a:70:8a:07:15:de:e6:
30:84:f8:8d:c4:b4:f1:c6:bc:7f:a3:18:ea:b1:66:
6c:3a:a4:00:0b:cd:be:5a:fe:d1:55:83:9b:c3:14:
2a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:83:D5:88:B0:B7:DD:D2:C9:3C:A6:9B:EE:93:36:A2:69:81:3C:0F
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e3135352e34332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.43.0/24
Signature Algorithm: sha256WithRSAEncryption
01:48:81:b9:8c:10:49:73:1f:44:1a:ed:2c:e3:fc:f2:56:93:
c4:59:70:86:a9:30:bc:f3:29:ef:3d:6d:05:77:6b:7a:0d:09:
72:e1:ce:1a:98:9a:cf:4c:0e:5f:7c:88:08:81:f0:d0:36:35:
93:f5:3d:2e:d1:94:fb:ac:23:02:f5:cb:73:42:72:51:78:79:
bd:46:37:11:35:ab:ba:59:76:61:6b:f2:d7:a3:0d:bf:5b:f4:
fe:41:f9:c6:56:5e:e5:16:0c:09:1e:60:9d:9a:b5:0e:58:6b:
28:43:3b:e7:e5:83:11:e9:66:1c:33:19:e0:f6:b0:d4:a0:4a:
49:20:14:f9:64:6d:39:23:f0:a7:98:a2:21:a7:b7:a3:54:96:
3b:96:17:08:24:ce:b6:bb:76:87:e7:86:89:8b:3c:e2:b8:ad:
05:d6:ea:bc:15:af:32:42:a5:7e:b4:02:46:d3:10:0a:f3:18:
c5:7d:dd:38:55:d6:9f:8c:8d:d5:b2:02:c3:08:e4:e4:6a:40:
b0:0c:d6:fe:48:6e:13:c5:05:7b:e1:2b:72:4b:2a:57:a3:0e:
ef:4b:b9:1b:6f:46:67:91:ca:2e:ad:44:30:18:ac:78:73:da:
74:fe:47:49:c1:5d:23:bb:04:f6:45:e1:b5:2f:ea:f3:3c:f0:
3d:97:32:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 01:22:09 2024 by rpki-client on console-ams.rpki-client.org