Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/33362e3235352e39322e302f32332d3234203d3e20313938353130.roa
File: 33362e3235352e39322e302f32332d3234203d3e20313938353130.roa (raw, json)
Hash identifier: sm3LwIPO+yZGsv61YL8ucl3xnHHntGhLqv11sHGT+E4=
Subject key identifier: 7B:66:12:A8:76:DE:8D:E7:E3:58:99:28:BB:FD:24:49:92:00:E3:C8
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 6ECEE738598701CF507AFEF4049547CC01AD5BB5
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/33362e3235352e39322e302f32332d3234203d3e20313938353130.roa
Signing time: Sat 20 Jan 2024 07:33:56 +0000
ROA not before: Sat 20 Jan 2024 07:28:56 +0000
ROA not after: Sat 18 Jan 2025 07:33:56 +0000
asID: 198510
IP address blocks: 36.255.92.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.mft
rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 11:16:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:ce:e7:38:59:87:01:cf:50:7a:fe:f4:04:95:47:cc:01:ad:5b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: Jan 20 07:28:56 2024 GMT
Not After : Jan 18 07:33:56 2025 GMT
Subject: CN=7B6612A876DE8DE7E3589928BBFD24499200E3C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:eb:fd:3f:b9:4c:b6:9a:39:89:f4:9b:d5:67:
f8:6d:99:53:9d:e2:a4:25:db:ed:e1:5d:97:c7:f0:
a7:f4:8a:ed:cf:e9:bb:b4:22:f3:60:f4:f3:43:ad:
82:57:64:30:10:50:63:34:da:b9:c8:42:dc:7b:82:
75:a4:91:aa:f5:a3:15:cf:ed:e9:b0:1e:cd:51:8c:
1e:34:0d:75:1e:4d:65:d3:19:41:66:14:d0:6e:5f:
d4:ba:78:ce:f1:ab:d5:64:02:8c:72:43:dd:cf:fa:
18:19:9a:a6:30:70:bd:a2:92:2b:72:e3:53:f6:65:
a7:a6:eb:41:98:e1:29:b9:23:af:55:ae:18:fe:ed:
54:3c:60:fb:83:e6:94:79:7d:d0:1a:24:0c:a8:38:
53:4b:f0:88:61:6a:0d:97:c5:c4:be:61:99:b8:00:
f9:52:0f:3d:6e:f7:7f:8b:ca:d7:78:6a:c3:c0:19:
83:29:a8:e9:5a:c0:3b:c3:6f:c7:bc:08:64:44:35:
26:0a:94:ae:17:14:06:55:ba:34:14:cb:bf:e8:1e:
37:bc:82:32:9f:5e:a0:dc:5f:9e:14:9a:90:dc:c9:
8b:62:34:0b:5e:cc:4d:77:2d:81:08:02:d7:9a:18:
d9:8c:30:80:8c:60:98:16:74:d9:5e:65:47:f8:f8:
34:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:66:12:A8:76:DE:8D:E7:E3:58:99:28:BB:FD:24:49:92:00:E3:C8
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/33362e3235352e39322e302f32332d3234203d3e20313938353130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
36.255.92.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:f3:9d:1a:c0:bd:2e:cf:bb:26:a4:74:61:f3:b7:98:a2:59:
13:49:af:fe:ce:1a:3c:88:43:e3:ff:14:b4:71:c2:0f:36:0f:
4e:f8:a4:02:a7:c2:65:6f:80:a7:db:d1:b1:c9:6f:77:f2:e9:
ae:95:6a:6b:75:15:6c:9a:fb:3d:dd:35:db:be:a7:f2:db:08:
dc:52:6c:4c:9a:df:c1:b5:00:0a:f8:47:40:c8:e9:89:ae:de:
f3:4d:ab:ec:d7:63:fe:d8:e1:f4:de:0d:18:91:36:fa:31:72:
c2:b8:76:4b:36:51:c8:e0:cf:5e:a2:5e:e3:c5:96:0e:85:a9:
1f:26:32:0b:c6:d3:a3:b9:2b:1b:c6:16:e4:6f:bf:60:00:4d:
02:13:38:b9:ab:88:85:98:41:41:02:c8:03:2a:57:c2:19:4a:
41:39:c1:bd:17:e7:2d:2e:62:da:84:ca:c3:7e:3e:1d:01:03:
56:bd:1b:f2:7a:98:b8:2b:97:52:d6:e0:d9:4f:bf:36:77:18:
77:1d:c4:ba:0f:11:99:be:05:5a:43:df:44:a2:41:37:33:43:
6a:be:18:a3:49:fd:57:ab:26:42:b6:2c:ef:2b:99:32:e2:0f:
55:a8:4c:5a:42:be:0c:0e:82:74:c9:6d:b3:84:a9:28:d7:33:
65:b9:a8:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 18:19:30 2024 by rpki-client on console-fra.rpki-client.org