Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/37372e38332e3130352e302f32342d3234203d3e203432383331.roa
File: 37372e38332e3130352e302f32342d3234203d3e203432383331.roa (raw, json)
Hash identifier: OEP/PGlc0vdFRO0EW4QEnWwcC8xfSMrtkm9GgGchf9A=
Subject key identifier: 45:64:4B:F3:C3:A0:53:3B:5E:DC:F6:42:F3:E5:90:0C:B1:AA:8C:6A
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 47783E7195DF73F51B9572E3B730FC44A5EF79A7
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/37372e38332e3130352e302f32342d3234203d3e203432383331.roa
Signing time: Tue 01 Oct 2024 15:43:22 +0000
ROA not before: Tue 01 Oct 2024 15:38:22 +0000
ROA not after: Tue 30 Sep 2025 15:43:22 +0000
asID: 42831
IP address blocks: 77.83.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:78:3e:71:95:df:73:f5:1b:95:72:e3:b7:30:fc:44:a5:ef:79:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Oct 1 15:38:22 2024 GMT
Not After : Sep 30 15:43:22 2025 GMT
Subject: CN=45644BF3C3A0533B5EDCF642F3E5900CB1AA8C6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:2e:27:29:71:36:39:96:eb:a4:ca:21:ff:1f:
d1:53:cd:30:97:1c:d7:d7:b9:5d:76:4e:d7:6b:0a:
f0:0d:3a:2d:cb:59:a4:2d:87:32:9d:74:f5:0f:f9:
be:fa:33:48:b4:2e:bb:a4:f3:9b:87:e0:14:54:7a:
4b:f1:7b:e0:c7:2d:23:b8:0d:da:7d:f0:11:ea:0e:
7e:96:d8:5e:07:2b:fe:36:e1:62:d7:ab:7e:44:f5:
ca:93:f0:65:b0:02:d8:1b:60:9f:65:4f:12:6f:37:
b9:75:0c:81:a5:6b:03:56:5f:20:b4:d1:87:e4:4c:
b6:f6:81:85:57:4c:d0:5e:d8:f9:33:66:e0:c0:3b:
bc:cc:03:3e:65:cf:4d:6e:97:9e:8b:fb:2a:9a:d2:
29:95:68:41:71:69:a8:8b:8f:29:af:0d:fd:9b:73:
67:a3:e3:82:1f:f6:2a:45:d8:0d:06:24:4d:81:3f:
92:2b:ce:49:a6:86:0e:35:2f:cb:ca:94:31:85:ad:
41:a4:46:f3:89:0a:67:da:48:1a:60:fb:3b:ef:46:
29:27:dc:df:ef:f2:af:3c:c4:3b:6e:91:37:e1:68:
ed:73:09:82:45:7a:a8:57:80:e8:1e:63:7b:79:a8:
a2:8f:61:44:2f:f5:6a:b1:e2:3b:e6:3e:58:d4:46:
e3:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:64:4B:F3:C3:A0:53:3B:5E:DC:F6:42:F3:E5:90:0C:B1:AA:8C:6A
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/37372e38332e3130352e302f32342d3234203d3e203432383331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.105.0/24
Signature Algorithm: sha256WithRSAEncryption
64:bd:be:4e:03:22:f3:c4:5d:c1:b9:6b:6f:f3:a3:bc:0a:39:
f8:24:b0:37:c3:53:11:46:47:90:d0:53:57:75:ef:b5:8e:0f:
b3:9c:75:da:48:80:e3:99:59:50:3a:82:95:ee:4f:b0:3f:81:
fd:6c:c3:c0:be:a8:8a:9f:9f:17:cf:3a:9d:3e:41:ff:72:35:
a0:0b:0e:ae:20:c7:96:7c:ea:09:7b:35:dd:61:77:5b:31:8d:
f4:17:44:5d:3d:6a:0a:85:60:bf:29:08:2e:2d:fe:d2:fe:cd:
63:73:e9:2b:16:67:f9:1a:9b:0c:44:22:f6:e0:fb:fd:97:0b:
c1:fc:26:01:34:52:d7:3a:21:02:8d:d0:d0:e4:3a:1a:b4:1b:
c3:cd:12:85:8c:e6:0e:54:1b:de:19:15:73:6a:c3:b3:3b:af:
6b:83:25:2d:14:ce:e9:18:e3:75:77:25:e0:60:88:c4:40:54:
e8:f1:27:4e:5c:92:f1:1f:f4:56:f0:a5:b5:d7:70:a4:d4:0b:
23:dc:1e:1f:7d:b7:df:22:d9:72:75:b3:4f:50:55:d5:45:a0:
73:55:37:57:c6:51:4f:40:df:5f:09:6c:67:59:3d:6e:4b:08:
ac:43:d8:8f:0b:6d:9f:a2:10:e0:a5:69:36:9c:7e:67:5a:e0:
35:23:e7:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org