Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e38302e3138352e302f32342d3234203d3e20313336373837.roa
File: 34352e38302e3138352e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: jZmcVdENhdnke2FQZZmXNHux/hPIwDJ4OgGi/9k/gDA=
Subject key identifier: 35:C7:1E:12:9F:65:13:7A:0A:53:36:E7:9A:3E:7B:E8:2C:66:38:C9
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 602B43393B2E3016490CB7AA98DCCDDD327451F8
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e38302e3138352e302f32342d3234203d3e20313336373837.roa
Signing time: Sat 02 Mar 2024 21:54:02 +0000
ROA not before: Sat 02 Mar 2024 21:49:02 +0000
ROA not after: Sat 01 Mar 2025 21:54:02 +0000
asID: 136787
IP address blocks: 45.80.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:2b:43:39:3b:2e:30:16:49:0c:b7:aa:98:dc:cd:dd:32:74:51:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Mar 2 21:49:02 2024 GMT
Not After : Mar 1 21:54:02 2025 GMT
Subject: CN=35C71E129F65137A0A5336E79A3E7BE82C6638C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b8:94:27:86:f7:26:3c:97:27:bf:e2:4d:3a:
dd:c9:71:5c:26:fe:91:0b:24:32:bf:42:fd:27:27:
1c:fa:9d:68:73:2b:1c:56:35:b1:a7:c7:23:5a:28:
7a:a8:81:3f:b0:bf:cd:71:55:58:6b:a7:67:d8:14:
13:f1:5b:db:1e:86:80:f6:97:dc:8f:93:a3:8a:68:
f5:ce:54:65:fc:7c:af:d5:99:95:2c:9f:a2:a2:e8:
6b:0a:03:38:69:60:af:a4:ab:9c:ad:ca:52:cb:51:
f6:84:16:ea:9e:71:72:d0:56:5e:8a:15:21:77:30:
55:52:7c:98:74:c3:6a:cd:ba:e1:44:2f:11:0f:4d:
64:5b:bd:1c:20:92:72:69:49:9b:7c:f2:d1:dc:60:
ba:49:a3:b0:f8:c4:0b:87:1e:4e:83:24:22:69:20:
c5:54:dc:d6:bc:f1:c4:96:a5:37:16:bb:e2:ea:61:
9b:70:0c:c2:5b:f9:b2:79:ef:c4:0e:67:06:89:02:
3d:94:21:9d:6f:17:24:95:f4:39:31:54:7a:21:cd:
0f:e7:2b:b2:6a:c2:69:15:a4:31:6e:ac:60:00:2d:
19:76:95:80:24:65:31:f8:9e:dc:2c:61:ce:f4:ed:
5b:17:a9:36:43:54:4e:60:e5:8b:64:03:48:0f:85:
d0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:C7:1E:12:9F:65:13:7A:0A:53:36:E7:9A:3E:7B:E8:2C:66:38:C9
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e38302e3138352e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.185.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:cf:7d:0f:ae:f1:53:98:0a:14:64:14:1a:1d:bd:a8:b9:cf:
1a:28:df:a2:0f:f2:4d:13:b3:f3:7f:4c:73:61:40:b0:bb:c8:
c1:de:43:5c:8e:d8:ee:84:01:43:40:af:3c:0c:1e:74:3e:f7:
4c:3d:b9:98:27:a5:d1:76:ec:6d:53:cb:17:cd:9c:c4:03:2e:
16:67:0e:8d:05:7f:a8:ba:1d:44:2f:b9:a4:e8:4d:98:c8:28:
ea:a2:33:a8:62:36:7c:37:2b:06:98:e0:8b:d5:b8:15:42:cc:
4c:db:05:2b:76:f8:3b:f5:4f:c2:ce:8c:75:a5:dc:c5:ee:d6:
57:d6:a0:67:33:3b:6c:f8:b8:89:69:a7:db:6a:c3:d1:f2:80:
0a:23:7b:06:a3:aa:e5:c0:00:1d:37:21:db:7c:24:6c:2b:48:
7c:99:4a:76:ab:25:31:c1:7b:3b:35:c4:4d:1c:46:ab:b2:e7:
92:2b:98:fb:ed:1e:ee:ae:01:56:35:cd:c8:5e:9e:7b:c0:cf:
ed:e5:5b:e2:9e:68:d2:8a:66:77:6a:0f:3f:a3:70:de:fb:76:
ad:52:c3:bf:21:ec:8b:62:d0:87:f1:01:a8:2d:a5:02:e3:c9:
e4:de:a8:9e:59:fa:24:0e:30:b4:07:ba:ed:75:13:ae:45:63:
88:05:27:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:05 2024 by rpki-client on console-fra.rpki-client.org