Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133382e302f32342d3234203d3e203631333137.roa
File: 37372e38312e3133382e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: 4u33M1elGglBqRptuyVX2Qv5Il58+Hrmgi0EgwQT+YE=
Subject key identifier: BB:AE:63:C0:FF:31:D7:A5:6E:5D:9D:8F:14:CA:E2:51:F1:DA:30:01
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 1219DEB4A0A86BF106677B0A53EAAAF020132346
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133382e302f32342d3234203d3e203631333137.roa
Signing time: Wed 17 Apr 2024 13:26:58 +0000
ROA not before: Wed 17 Apr 2024 13:21:58 +0000
ROA not after: Wed 16 Apr 2025 13:26:58 +0000
asID: 61317
IP address blocks: 77.81.138.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:19:de:b4:a0:a8:6b:f1:06:67:7b:0a:53:ea:aa:f0:20:13:23:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Apr 17 13:21:58 2024 GMT
Not After : Apr 16 13:26:58 2025 GMT
Subject: CN=BBAE63C0FF31D7A56E5D9D8F14CAE251F1DA3001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7b:3f:42:fd:70:6a:e9:40:4b:de:3a:19:90:
12:dc:1d:fa:c0:9b:9a:64:65:12:68:4a:6b:9c:93:
20:21:43:34:61:87:27:de:16:40:37:19:81:60:9b:
6d:33:ef:72:74:89:32:6f:59:8f:04:67:81:68:ef:
ef:62:7f:f6:27:60:85:90:63:33:7e:a5:8a:1f:93:
b1:49:80:df:db:ad:2c:64:20:c6:62:17:55:05:88:
4d:c9:5f:65:8f:d0:29:6c:ef:ef:93:dd:75:7b:55:
bf:5b:0c:69:53:4d:03:69:32:8c:7d:7d:44:83:3c:
9b:44:22:f4:79:a7:5a:39:71:2b:61:3f:1d:97:12:
5e:63:03:3b:44:e3:81:18:6d:3c:fc:db:a2:6e:4f:
61:34:ac:9a:48:5a:cc:9d:66:29:e5:e8:59:cb:f1:
1b:71:3b:5d:8a:4c:68:3c:97:af:e7:ac:1c:d9:81:
0a:0a:a9:b0:f6:dc:61:ef:07:6b:c5:dd:fc:4c:ed:
4d:c0:44:4e:b8:14:76:10:94:b5:c1:bb:b5:09:9c:
0f:c1:e9:11:e6:89:8f:c0:39:f2:06:ea:51:26:57:
a4:f1:9c:19:62:29:8f:c8:19:fd:67:a3:13:d0:d9:
0a:7f:02:84:17:84:01:04:1e:cc:c5:81:a2:14:4c:
5e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:AE:63:C0:FF:31:D7:A5:6E:5D:9D:8F:14:CA:E2:51:F1:DA:30:01
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133382e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.138.0/24
Signature Algorithm: sha256WithRSAEncryption
66:84:f5:a5:b4:df:b5:29:93:0a:8f:b8:08:04:81:01:b0:83:
d0:ae:91:52:a7:b3:21:bb:55:ed:64:cd:b1:bf:28:ee:19:46:
62:c9:8a:fb:83:5d:b9:24:c8:a2:25:30:3c:50:c2:39:a1:b2:
49:23:b9:b6:5b:26:70:ee:67:87:c2:d7:3e:68:ef:f7:1c:ec:
70:e8:28:cd:45:6a:a8:0a:c7:12:60:37:d0:92:37:06:2f:1a:
f4:bf:56:f5:c4:7e:fb:dc:5d:e9:44:80:1b:a0:2a:69:97:bd:
73:87:f4:f2:02:63:3a:06:1c:a4:76:70:e4:ac:1d:03:02:c9:
16:00:e0:a8:30:60:27:4c:55:3b:75:b6:00:2d:8d:a5:e7:01:
43:3c:5d:2c:bd:25:aa:be:1e:2f:fa:e3:c0:d2:da:7c:5c:51:
19:75:53:2f:ef:46:0e:d0:38:93:0b:37:5c:42:84:04:8a:1b:
3c:4b:85:65:51:d9:ec:72:55:fb:4c:c8:4c:16:f7:d8:41:b5:
3e:78:e9:06:5a:3d:8b:ee:b6:3e:2b:60:7f:e5:3f:c0:df:0a:
70:48:cb:fe:6d:94:16:10:52:ee:5c:b9:8e:0e:f3:85:83:53:
69:16:55:d6:e1:91:36:22:9e:50:b1:86:1c:ef:7a:0f:b7:c2:
72:da:de:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 21:05:41 2024 by rpki-client on console-fra.rpki-client.org