Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/34352e36362e3133372e302f32342d3234203d3e20313336373837.roa
File: 34352e36362e3133372e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: MOr+AViwpaCE7XYHavP3dO4oBzGXAUlR5n5vo3c9NVY=
Subject key identifier: 48:F0:41:B1:2D:F2:C3:8F:1F:3D:52:7C:8B:1C:55:9A:43:9C:28:53
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 0543390E32B53C498E179A74D5AF2A93BBC66EAA
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/34352e36362e3133372e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 13 Feb 2024 12:54:21 +0000
ROA not before: Tue 13 Feb 2024 12:49:21 +0000
ROA not after: Tue 11 Feb 2025 12:54:21 +0000
asID: 136787
IP address blocks: 45.66.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:43:39:0e:32:b5:3c:49:8e:17:9a:74:d5:af:2a:93:bb:c6:6e:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Feb 13 12:49:21 2024 GMT
Not After : Feb 11 12:54:21 2025 GMT
Subject: CN=48F041B12DF2C38F1F3D527C8B1C559A439C2853
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7a:a7:eb:77:55:90:bf:40:fe:76:1c:d4:f5:
3f:83:d5:95:c1:6e:6e:e1:89:a3:98:15:b9:e3:49:
79:e0:79:62:a0:6d:db:62:55:35:18:08:29:2d:bd:
0b:8b:f5:a0:e5:2f:11:d1:70:c6:f2:2c:42:ec:1e:
fd:39:fe:da:da:9e:a2:5b:91:b7:73:01:df:52:38:
a2:9a:e5:be:a1:56:22:59:b4:e4:f8:42:a8:da:86:
c8:6e:1d:ec:cc:99:e4:05:75:1c:97:d4:b5:8d:92:
ae:59:37:30:5d:5b:d0:9b:32:a9:85:59:4c:d9:94:
9b:b3:96:9b:2c:ad:12:07:d1:2a:d4:6f:fe:e5:1c:
eb:b1:3c:43:b6:a9:e7:b2:8a:5d:33:bb:f7:9c:a3:
34:75:43:0b:2a:91:04:8e:0d:38:f9:f7:54:39:de:
e1:dd:e6:3a:e7:d3:64:46:b5:9b:24:23:3f:73:18:
ff:1d:9a:4b:da:5a:6e:8a:12:95:67:cc:1f:a1:d4:
bf:0e:d5:39:9e:9a:f3:cc:b9:bb:b2:e4:c7:d2:67:
be:3f:67:2a:91:04:2e:3a:6a:01:b9:0e:33:5b:2c:
17:ca:d5:6d:ff:46:10:70:d3:36:6a:0a:7f:e5:a3:
d5:37:7e:75:4c:c3:a5:b5:97:e0:8b:06:bb:f7:f7:
de:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:F0:41:B1:2D:F2:C3:8F:1F:3D:52:7C:8B:1C:55:9A:43:9C:28:53
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/34352e36362e3133372e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.137.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:16:d7:5c:15:59:57:a6:00:5b:ba:33:4e:36:8e:46:0d:0a:
a1:07:39:3c:a3:2f:e1:bf:27:6d:9f:d6:51:ff:5a:ef:e2:4b:
10:fb:98:96:0b:e8:98:0f:bd:d1:58:35:51:c0:84:70:fe:ed:
cc:c5:50:af:6e:cf:da:ff:6d:f1:a9:dd:ab:e3:b9:c7:58:9e:
8b:77:4a:97:2c:b5:11:14:9d:d2:56:07:83:ab:df:dc:fb:80:
d6:21:25:7c:ab:2b:42:93:27:aa:b0:21:eb:5d:4b:8d:6d:b5:
8c:1c:9e:55:e3:87:1c:c5:71:0a:cc:d7:c9:aa:4a:bd:f1:70:
f9:2f:38:6c:91:4b:c5:0e:8a:19:a4:43:5c:43:ad:ae:78:ca:
8e:cf:23:2c:34:da:43:fe:aa:0d:b1:98:8e:7b:cd:4d:4d:58:
e7:f6:86:e6:79:84:ac:4f:ce:7a:ca:c4:16:7d:35:f0:e7:48:
3c:d9:bb:09:55:cd:5c:95:58:bd:55:50:56:f4:63:c4:ea:5f:
95:3a:ca:96:6a:c8:6f:d4:b0:9e:0f:33:d6:c6:0b:96:55:36:
6b:40:a5:8f:35:19:c0:d5:6b:75:95:07:0b:92:72:67:3d:64:
57:4e:eb:75:04:a9:45:5d:73:7d:2e:13:6a:f4:1d:d1:67:c4:
8a:09:3b:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 11:54:25 2024 by rpki-client on console-fra.rpki-client.org