Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/37372e38332e3130362e302f32342d3234203d3e203539383935.roa
File: 37372e38332e3130362e302f32342d3234203d3e203539383935.roa (raw, json)
Hash identifier: VAT5UxFqa+zE72Bv0k/SBBfb/6nQqGHknuc6KOG5H14=
Subject key identifier: 68:22:D3:A2:D8:9A:28:04:89:CF:33:87:2E:E6:FE:1D:95:02:8F:50
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 8612D2F5E7FDC88CDF735310D6854699EDCF8E
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/37372e38332e3130362e302f32342d3234203d3e203539383935.roa
Signing time: Tue 28 Nov 2023 12:44:28 +0000
ROA not before: Tue 28 Nov 2023 12:39:28 +0000
ROA not after: Tue 26 Nov 2024 12:44:28 +0000
asID: 59895
IP address blocks: 77.83.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.mft
rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 11:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
86:12:d2:f5:e7:fd:c8:8c:df:73:53:10:d6:85:46:99:ed:cf:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Nov 28 12:39:28 2023 GMT
Not After : Nov 26 12:44:28 2024 GMT
Subject: CN=6822D3A2D89A280489CF33872EE6FE1D95028F50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:61:b4:b4:75:e9:d2:32:35:1c:b6:2c:b5:be:
5e:af:78:d9:74:9f:75:2b:4d:98:ac:8d:03:6e:9d:
d4:fd:a4:41:70:0f:37:1b:4d:bb:27:53:5b:22:0a:
fb:1b:7c:f1:5c:94:01:42:cf:5f:15:e4:c9:31:21:
88:0e:ab:07:25:61:28:b7:a2:e4:5e:26:5c:b9:db:
bd:ce:7c:3b:0a:ee:ca:14:69:21:fe:c3:59:03:8f:
f5:95:fb:44:f4:09:54:cc:ff:55:7c:3e:34:64:63:
d0:40:cf:61:01:d0:ac:22:dc:2f:de:86:0b:07:c8:
57:d2:02:da:11:83:82:b0:fb:18:3e:a6:11:b2:31:
b7:ee:2a:72:93:91:18:82:25:5d:7b:f4:ee:4f:d7:
72:9a:aa:c2:c7:04:2a:67:96:d4:51:86:d5:12:c8:
44:c5:a4:61:2d:0f:7c:89:46:d0:8f:d3:53:02:0d:
97:02:63:05:b8:99:b2:38:75:1a:d6:79:da:f3:b1:
33:6b:5b:f6:42:fa:57:6e:e5:a9:f4:46:52:f8:cb:
93:83:24:83:e5:ea:c9:f3:82:14:dc:42:7e:82:82:
fb:15:e2:2b:ef:1a:f1:81:1d:86:d1:40:e8:9d:04:
db:7a:28:90:7a:aa:45:be:a2:85:54:9c:90:18:af:
f9:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:22:D3:A2:D8:9A:28:04:89:CF:33:87:2E:E6:FE:1D:95:02:8F:50
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/37372e38332e3130362e302f32342d3234203d3e203539383935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.106.0/24
Signature Algorithm: sha256WithRSAEncryption
62:2c:94:88:a9:ef:52:4c:fb:2d:fe:2e:85:e7:37:c3:03:d2:
69:9d:78:d3:c9:6c:5c:0d:84:88:4e:06:bc:08:89:6c:41:0d:
47:bb:13:1e:3f:55:00:d8:ed:9f:2d:05:0d:9a:26:23:50:ce:
09:c4:fa:df:50:e3:3e:21:78:3e:e0:32:3e:eb:0f:4f:52:7d:
80:18:50:4a:57:65:7e:9f:a5:29:ce:65:cf:6b:20:a9:59:06:
56:67:af:27:0a:17:8a:b0:a9:cf:8e:56:4c:a1:bc:fe:0a:f7:
f6:2e:7a:ad:f1:6d:14:c1:e3:52:68:0d:bf:69:88:39:08:ff:
6d:da:bb:2f:80:83:c3:05:88:2c:c4:97:e1:4e:76:f0:d9:7e:
6c:ed:fc:bd:d1:01:cf:c0:bc:be:b8:42:44:28:9b:3c:7e:38:
7d:26:46:58:dd:86:16:4a:c8:4a:25:ff:6d:e7:4e:4b:84:46:
32:07:17:da:df:d9:b5:31:1e:af:8d:18:48:02:b7:c3:50:8d:
25:c4:a1:4f:8c:e4:95:1d:72:80:af:a4:53:3c:41:9f:d1:47:
88:1d:c2:29:ac:ff:4d:4f:fe:a6:2b:1b:5b:49:08:68:83:02:
99:7b:eb:1c:c4:1d:a5:7f:34:6f:a5:54:d0:25:28:20:85:bc:
be:bc:e7:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 17:26:21 2024 by rpki-client on console-ams.rpki-client.org