Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137322e302f32342d3234203d3e20323733333438.roa
File: 36322e3139322e3137322e302f32342d3234203d3e20323733333438.roa (raw, json)
Hash identifier: dMqAcZx9ayJ+1iUSW7UM0yO942oHinoYpMEAORVvMDk=
Subject key identifier: B3:FC:E0:05:24:1A:AC:FC:77:56:E0:D6:D0:7D:A5:76:FD:67:C0:19
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 142A787630A1D0AF87C4AE7B582DAFD965DCE20D
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137322e302f32342d3234203d3e20323733333438.roa
Signing time: Sun 01 Oct 2023 12:40:37 +0000
ROA not before: Sun 01 Oct 2023 12:35:37 +0000
ROA not after: Sun 29 Sep 2024 12:40:37 +0000
asID: 273348
IP address blocks: 62.192.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 May 2024 15:47:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:2a:78:76:30:a1:d0:af:87:c4:ae:7b:58:2d:af:d9:65:dc:e2:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Oct 1 12:35:37 2023 GMT
Not After : Sep 29 12:40:37 2024 GMT
Subject: CN=B3FCE005241AACFC7756E0D6D07DA576FD67C019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d8:86:cc:fa:b2:4b:a8:08:ed:8a:45:ce:5f:
9b:4e:c8:74:f5:eb:9e:e6:eb:a1:ed:9e:c7:27:97:
f4:b5:3b:1c:d0:d7:c4:30:f5:d6:e4:d3:27:2b:3b:
b3:08:f2:a1:d2:ae:ad:0c:d0:b7:7d:65:55:f9:fc:
b0:c3:47:d3:08:47:f8:d7:36:6b:01:58:86:e0:e3:
71:11:ae:ba:ff:22:85:40:f0:4c:9a:55:38:04:41:
d2:b6:b8:76:6a:40:5e:65:b4:25:19:c1:6e:3f:3c:
5a:49:cc:b4:0e:d0:a6:25:26:1a:49:11:27:fc:10:
0e:5d:34:9d:1b:49:e2:83:4c:46:23:ec:ef:7b:aa:
e7:69:ce:c3:2e:b0:c2:82:49:03:68:2f:40:27:42:
84:50:67:0c:77:71:5c:2f:7f:1a:3a:5e:fe:57:ad:
9d:71:1c:3f:91:16:ab:6d:f2:af:62:82:d3:0e:8d:
50:89:19:19:63:b2:11:29:13:15:38:b6:b8:4c:69:
ed:ed:1a:27:82:f6:f1:6d:76:40:25:4e:22:ca:0d:
cb:5e:2e:64:1f:a8:a5:09:84:6d:03:37:e5:bd:58:
c1:76:11:d2:7e:68:a9:bd:1b:44:98:7d:ff:f9:fd:
b1:53:cf:01:89:f0:09:28:4b:b1:15:de:59:5e:fd:
f9:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:FC:E0:05:24:1A:AC:FC:77:56:E0:D6:D0:7D:A5:76:FD:67:C0:19
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137322e302f32342d3234203d3e20323733333438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.172.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:de:14:b6:53:9a:9d:04:12:a7:b6:3e:14:5c:86:64:c7:96:
9e:c4:a3:96:8b:50:ef:3b:1b:a1:35:f7:42:24:02:26:1b:f1:
f3:e7:66:4c:8c:43:20:ac:49:7d:f7:46:01:1a:bb:73:66:fe:
d0:f4:ee:17:20:f4:4b:a2:56:c0:3a:76:25:19:39:39:31:ba:
cc:1f:1d:12:ca:26:0a:7c:5a:4d:97:c5:1c:f8:4a:79:38:28:
5d:e7:64:c2:03:5a:62:83:97:b6:24:fb:5c:9a:43:5f:12:7d:
a4:a0:c6:ed:fc:01:8e:3e:ad:a3:24:3d:5a:72:7f:24:b7:2c:
0d:a8:1b:b9:63:ef:56:6f:38:85:bc:12:26:3f:fc:1d:34:e1:
1e:32:91:ca:b1:68:87:96:7a:2d:87:85:48:ca:d3:74:07:2a:
f6:53:b1:08:ef:a0:72:a0:68:0d:12:a2:f8:e1:d5:4e:57:75:
c9:99:5f:66:fd:e7:01:bf:0a:a4:fe:07:49:d7:06:10:8d:a0:
79:b3:ac:2e:bd:48:f5:06:90:fc:9c:5b:19:09:5d:7d:24:6f:
ad:c9:92:9c:c5:c8:61:f0:db:a4:64:c0:a0:3c:e3:f6:c4:bf:
0f:25:e7:7d:8a:05:cb:81:00:a7:3d:43:1c:d5:40:87:12:33:
10:4c:0a:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 11 20:11:49 2024 by rpki-client on console-fra.rpki-client.org