Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e38302e3138372e302f32342d3234203d3e20313336373837.roa
File: 34352e38302e3138372e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: FwWaWg+IUxrduYENPnpsnBYPmesmmWCi21Ne3Hngna4=
Subject key identifier: E8:9D:22:84:D7:4A:58:49:7E:71:98:4F:F5:3D:9C:D5:56:3F:69:69
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 6BAF471D8B0993286CF1EBE1850CB8152E7FADAA
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e38302e3138372e302f32342d3234203d3e20313336373837.roa
Signing time: Sat 02 Mar 2024 21:54:04 +0000
ROA not before: Sat 02 Mar 2024 21:49:04 +0000
ROA not after: Sat 01 Mar 2025 21:54:04 +0000
asID: 136787
IP address blocks: 45.80.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:af:47:1d:8b:09:93:28:6c:f1:eb:e1:85:0c:b8:15:2e:7f:ad:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Mar 2 21:49:04 2024 GMT
Not After : Mar 1 21:54:04 2025 GMT
Subject: CN=E89D2284D74A58497E71984FF53D9CD5563F6969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d8:5e:71:15:37:6a:99:74:88:0d:da:59:c6:
59:27:25:94:5f:50:75:32:6c:55:67:22:89:c4:bb:
1b:91:38:5c:79:73:8f:d6:5f:fb:75:65:5e:87:5f:
f2:9d:10:94:34:0b:39:bc:53:b9:0a:73:44:73:3b:
f2:fe:9a:d6:2f:ae:8c:8f:29:6d:08:d0:16:d2:20:
75:5a:51:e7:bb:ac:87:a3:bc:30:12:a5:3d:2a:ef:
b0:d0:12:8e:d8:cd:24:8a:8c:39:fe:1e:7b:3e:5c:
60:14:fa:a4:31:84:28:b9:c3:dd:de:4f:1c:fa:b9:
b1:94:35:47:20:df:80:68:f2:d8:dd:08:73:8b:ae:
e3:74:7a:c3:33:e1:cc:fd:06:81:4d:2b:6c:8f:4f:
4c:bc:09:43:0b:2e:95:ee:de:1e:39:ed:17:87:1f:
61:4c:ec:bb:b4:44:02:d0:84:b3:b7:90:6c:c7:5c:
2a:46:fe:88:7c:73:ff:31:9a:a8:b6:04:b1:8e:27:
84:71:78:f4:7d:4a:77:43:36:f6:29:af:14:4e:1e:
7d:b4:74:31:01:36:0f:04:08:92:49:38:78:60:b3:
93:17:92:a9:7c:bc:09:98:41:83:58:fc:52:73:9e:
10:1b:96:53:11:45:68:f8:ca:00:b5:29:b0:70:d1:
2f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:9D:22:84:D7:4A:58:49:7E:71:98:4F:F5:3D:9C:D5:56:3F:69:69
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e38302e3138372e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.187.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:20:79:7b:97:13:e7:41:52:bc:c5:db:6f:e1:20:5f:92:ea:
e9:55:f7:26:17:ed:55:37:0a:c8:2f:86:8c:45:06:c8:d8:b2:
40:e8:6b:9d:dc:37:ca:2c:69:ee:30:92:fe:eb:6e:17:08:1e:
01:2d:fd:11:ef:ca:7a:95:23:7a:56:0d:2f:d7:b7:54:10:85:
64:bf:7c:c4:f6:e9:c9:a4:05:b9:77:45:55:db:e5:b7:76:ff:
c0:ca:2f:cd:56:42:65:ca:d3:57:2c:c9:27:c8:8d:93:02:a3:
44:ef:ca:48:ec:95:f9:5f:62:a7:df:22:e5:43:05:8e:7a:4b:
f5:a3:2b:01:dc:c4:f1:74:fc:51:82:0d:b3:24:e1:47:02:90:
cd:e6:37:a4:6e:84:ba:8e:69:3c:23:33:34:aa:e5:7f:6d:96:
af:dc:25:18:72:ba:81:a6:a9:06:b8:8e:f4:9a:19:e7:0b:f6:
8f:c2:d6:4a:cc:c7:3f:80:91:1b:91:a3:b0:bf:a7:e8:32:9e:
d3:74:64:dc:8f:20:70:98:3b:12:e7:34:72:b9:ed:a3:c7:52:
32:6c:6c:97:da:86:c3:83:52:fa:2d:ab:48:6b:20:62:53:27:
24:79:cb:06:75:ff:3b:5f:24:00:14:4e:de:97:cd:91:97:b3:
7a:c7:b7:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:54:25 2024 by rpki-client on console-fra.rpki-client.org