Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e39342e3230382e302f32342d3234203d3e20313336373837.roa
File: 34352e39342e3230382e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: pXPLv3nJtRCNVIOhtL78qMBG6GnmCGuPUIGo0fL0QTw=
Subject key identifier: 71:90:17:60:A9:26:B0:01:7B:34:D5:D1:3A:87:D8:9F:38:E5:05:F6
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 41DB09C6A99D32FD7918BFB2917B6AB8947B37A6
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e39342e3230382e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 08 Jul 2024 22:04:10 +0000
ROA not before: Mon 08 Jul 2024 21:59:10 +0000
ROA not after: Mon 07 Jul 2025 22:04:10 +0000
asID: 136787
IP address blocks: 45.94.208.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:db:09:c6:a9:9d:32:fd:79:18:bf:b2:91:7b:6a:b8:94:7b:37:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Jul 8 21:59:10 2024 GMT
Not After : Jul 7 22:04:10 2025 GMT
Subject: CN=71901760A926B0017B34D5D13A87D89F38E505F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ce:ef:be:98:b9:42:94:0a:0a:58:c2:59:09:
e2:64:cb:2d:71:08:24:af:2f:70:cd:42:22:50:29:
fc:a7:a2:9e:92:29:27:2f:bb:41:51:d8:c5:63:60:
6b:b8:4e:da:a4:a6:27:99:6a:25:35:ce:a4:f5:9b:
43:f2:2f:98:b0:9b:51:87:60:24:79:42:cf:3d:70:
ea:aa:33:f8:36:3d:4f:e2:b2:a1:79:32:30:45:da:
58:a0:a1:56:b5:d5:25:58:00:6b:63:eb:e1:4c:b8:
cd:ac:24:f9:b4:41:f3:f7:1b:a6:44:7f:5c:50:8a:
68:36:41:13:e0:af:28:bd:fb:a3:c3:04:bb:e9:b3:
4d:5f:fb:75:42:b1:c4:52:29:36:bc:03:6b:a2:2e:
ec:5e:4d:0d:06:8a:58:2c:f9:75:df:08:c7:e9:9b:
ef:70:57:04:56:c5:b4:90:58:8c:bb:f9:c8:d0:0c:
f0:db:21:aa:39:91:0b:72:f9:b6:c6:7e:a7:31:c6:
a1:98:81:e8:45:70:c5:ec:f4:b9:72:76:63:f5:5a:
8d:51:82:07:a7:a3:3c:1b:a2:17:d5:55:8f:23:ea:
0c:d7:a4:be:39:79:1f:90:01:13:e3:ab:d5:08:00:
ec:02:b8:36:43:b3:81:c8:8e:34:c5:b0:cf:e7:a0:
4c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:90:17:60:A9:26:B0:01:7B:34:D5:D1:3A:87:D8:9F:38:E5:05:F6
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/34352e39342e3230382e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.208.0/24
Signature Algorithm: sha256WithRSAEncryption
27:7a:fc:bd:8a:5c:79:9d:08:70:93:9b:98:fb:54:d1:13:81:
ef:c9:27:28:86:1a:e9:52:cc:6c:51:1c:8f:61:b6:14:48:c5:
a6:a4:1d:23:3c:48:58:78:c3:19:16:52:f0:6b:1a:00:13:a6:
1b:c2:9e:82:1e:89:fc:77:eb:51:d8:1f:a2:23:61:e8:44:23:
8a:9b:ca:27:04:6d:7b:28:f0:eb:f1:b9:c6:a2:6c:bf:4f:1e:
f3:6d:bf:8a:a4:82:4e:fa:25:49:5d:83:77:3a:6e:0a:58:b1:
79:a8:1d:68:eb:a5:47:7d:c9:a6:e9:0a:45:7f:71:64:bf:d2:
d1:58:1f:e5:be:d2:5e:ff:14:e9:8c:a0:2e:e5:75:93:19:5a:
76:54:c4:c5:1c:26:0a:d4:1d:c8:4f:82:69:da:6a:39:c0:e0:
18:3a:30:94:a3:c3:51:ca:db:06:e4:6c:54:e0:bf:00:ec:a7:
06:b6:93:83:37:e4:0b:0a:6c:ee:9c:cb:5d:c8:57:77:1c:29:
f5:bb:c7:13:67:bc:5b:20:bc:c6:f9:75:c7:43:cd:d4:51:d1:
dc:dc:fd:d3:ac:94:4e:08:80:9c:d9:1d:17:a7:27:82:ec:3c:
36:03:8f:12:03:62:93:93:34:1f:88:01:bf:89:e1:01:36:f2:
0d:4c:2d:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org