Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/37372e38332e3130342e302f32342d3234203d3e20323032363733.roa
File: 37372e38332e3130342e302f32342d3234203d3e20323032363733.roa (raw, json)
Hash identifier: cWfeojnE/OxItWiMYaT/BGuACsSslDIOH6Xw3iYVq0M=
Subject key identifier: 31:B0:93:1B:3E:61:B4:EE:37:06:B0:F2:5F:30:F9:2F:8A:F8:92:43
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 1E138A31026C5D9569014999FD996CE983C1200E
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/37372e38332e3130342e302f32342d3234203d3e20323032363733.roa
Signing time: Sat 02 Mar 2024 12:34:24 +0000
ROA not before: Sat 02 Mar 2024 12:29:24 +0000
ROA not after: Sat 01 Mar 2025 12:34:24 +0000
asID: 202673
IP address blocks: 77.83.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 13:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:13:8a:31:02:6c:5d:95:69:01:49:99:fd:99:6c:e9:83:c1:20:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Mar 2 12:29:24 2024 GMT
Not After : Mar 1 12:34:24 2025 GMT
Subject: CN=31B0931B3E61B4EE3706B0F25F30F92F8AF89243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c2:cf:1f:30:d9:20:b3:db:4a:ef:10:70:8b:
d0:d8:9c:48:35:61:04:27:47:71:2c:7f:da:19:9a:
2e:07:b7:c6:f2:d9:d3:fd:e1:79:85:f2:f5:a1:64:
82:3f:16:8b:f1:46:36:3f:cc:6d:79:60:48:de:ca:
3a:26:19:5b:16:5c:bf:51:ba:8e:fb:63:3a:2d:0a:
b6:f7:8c:26:84:f2:2e:d3:4f:3a:29:a9:e7:b7:8e:
ee:fd:af:85:71:d2:ae:16:c5:7f:df:08:64:48:4f:
31:9f:72:8b:49:a8:99:26:12:cf:c0:32:d0:d7:05:
ac:4e:2b:f8:c0:d8:df:12:c8:6a:c8:e9:9b:ed:44:
7d:be:f1:6c:c5:f6:0f:29:bb:20:8f:22:c4:17:26:
40:37:93:f8:ae:66:c5:ef:92:a4:da:f6:70:92:72:
a8:f3:fa:88:da:1b:ca:3c:9b:bd:dd:d9:97:89:11:
06:b1:2b:96:ed:cc:bc:0f:04:89:0b:08:7d:b2:df:
83:aa:17:73:d2:bb:8b:49:4c:9c:a9:d8:df:4c:20:
37:72:e7:6d:17:7d:a7:ad:9d:da:c3:2a:e0:14:e5:
b9:0b:6e:25:14:16:60:50:54:36:1e:96:b5:9e:d9:
61:77:a5:89:67:0c:9b:7d:04:ca:da:30:8a:02:23:
48:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:B0:93:1B:3E:61:B4:EE:37:06:B0:F2:5F:30:F9:2F:8A:F8:92:43
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/37372e38332e3130342e302f32342d3234203d3e20323032363733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.104.0/24
Signature Algorithm: sha256WithRSAEncryption
06:79:98:52:81:58:44:3c:c0:ac:9b:34:10:db:8f:0a:11:7b:
27:f5:2f:c4:52:2c:e1:fc:01:8f:5d:6d:75:aa:10:be:2b:e4:
67:82:99:8d:fb:69:27:f1:e0:6e:35:22:9d:8f:1b:b5:01:6a:
db:34:e6:79:9e:cd:f9:26:5d:7b:f0:2a:7b:16:84:d0:ba:b3:
cd:c6:f4:7f:cb:d6:19:48:5e:f6:82:1d:b7:cd:fc:ef:02:ff:
24:47:7d:2e:26:0f:b8:ab:60:cf:cb:9f:67:3d:4c:0d:67:f7:
06:b4:32:44:a8:54:0c:40:7f:0f:bf:79:f1:31:e3:b6:63:ac:
54:de:c3:d6:8a:19:12:18:8e:e8:ac:22:36:c2:22:ab:d2:3c:
86:95:66:81:f3:8f:09:da:b2:df:ea:e3:5e:2e:c2:56:4a:d6:
ac:1f:f7:6f:0f:77:38:6f:0e:aa:95:a2:11:83:4c:e1:c1:f3:
51:2b:f8:44:8f:97:4b:91:83:3e:16:6e:9c:df:98:50:51:03:
b9:c1:b8:5e:fe:cb:64:4a:7d:f6:4a:c7:b9:40:c4:6e:44:cd:
e6:bc:d5:ef:00:cf:73:6b:14:88:d9:34:d0:56:de:86:75:7f:
ff:54:74:5d:cd:b5:63:fd:2b:67:15:2d:63:9d:1b:ba:15:d6:
05:2e:89:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 21:01:38 2024 by rpki-client on console-fra.rpki-client.org