Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137332e302f32342d3234203d3e203235363933.roa
File: 36322e3139322e3137332e302f32342d3234203d3e203235363933.roa (raw, json)
Hash identifier: 7LxiUpW29bCJDw6ndbnVxwTHPen7XCpx03brWPSWNVo=
Subject key identifier: 69:1B:71:E6:C3:9C:35:7D:59:3E:48:8D:AD:E7:38:42:8D:09:19:83
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 1A9B5A3E043BE1CF19F8267F835C269D195C655A
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137332e302f32342d3234203d3e203235363933.roa
Signing time: Sat 05 Apr 2025 14:57:04 +0000
ROA not before: Sat 05 Apr 2025 14:52:04 +0000
ROA not after: Sat 04 Apr 2026 14:57:04 +0000
asID: 25693
IP address blocks: 62.192.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 21:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:9b:5a:3e:04:3b:e1:cf:19:f8:26:7f:83:5c:26:9d:19:5c:65:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Apr 5 14:52:04 2025 GMT
Not After : Apr 4 14:57:04 2026 GMT
Subject: CN=691B71E6C39C357D593E488DADE738428D091983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d9:d0:e0:68:aa:69:db:6e:68:ec:96:90:4a:
93:3a:56:b0:7b:f5:c3:5c:55:dc:59:91:9b:5e:70:
7f:a3:95:ee:e3:f5:6c:4c:ee:b2:27:08:ea:8e:12:
74:83:63:d3:7d:6e:39:0a:0a:1f:d9:4b:b1:ea:78:
1e:f2:ec:e6:ea:a0:74:3a:69:36:ea:0e:c6:f2:49:
46:63:bb:52:85:68:54:22:4a:7a:f1:e4:56:4d:a5:
fb:14:f8:07:32:36:bc:1e:27:6f:ea:e4:f7:9e:1e:
7c:a6:f2:cb:a6:3f:4b:e2:37:55:6e:8e:d1:97:6e:
12:dc:e8:1c:bd:1e:aa:1a:7d:63:c9:7d:f0:40:0e:
97:75:82:8a:12:de:75:cd:18:79:67:db:5f:d2:ed:
4f:c8:b6:3f:28:97:b2:6c:25:1b:08:e6:3b:4e:a8:
4e:65:29:28:78:2a:01:56:f4:db:ef:20:04:b9:a9:
7b:bc:f8:d5:b5:fd:b4:c8:33:3c:c5:9a:ac:3b:8c:
a8:cc:e8:fb:d6:44:cb:d3:c2:6b:e3:20:1b:2e:e7:
be:14:71:cc:71:70:c2:de:5b:95:80:6e:0e:7b:cc:
06:41:20:17:31:37:fb:af:f0:d1:e5:00:cd:24:1f:
d8:40:e2:a1:e3:94:26:8a:36:e4:45:a6:db:cb:c1:
7c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:1B:71:E6:C3:9C:35:7D:59:3E:48:8D:AD:E7:38:42:8D:09:19:83
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137332e302f32342d3234203d3e203235363933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.173.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:d7:90:a9:e5:f8:82:3d:59:16:bd:78:07:f2:83:38:6a:35:
66:a3:ab:d0:36:71:4b:25:3f:ed:17:9e:b4:a7:0d:42:33:e4:
c7:dd:61:e0:04:d2:d0:38:93:2a:97:24:46:bc:d3:6e:d6:ac:
be:02:51:23:f5:c1:16:51:bc:dd:a4:a5:a1:de:06:65:34:87:
8d:36:41:15:f6:80:ac:67:4c:e5:22:05:43:b8:0f:8b:29:79:
59:ff:e6:78:42:75:bd:06:4b:8a:f5:a5:5a:be:95:77:8c:74:
10:54:45:a4:49:b8:23:64:21:c3:ad:6a:95:30:3d:4b:3f:48:
1b:a9:a2:25:90:9a:8b:fb:a7:c8:fc:f7:df:cc:91:41:53:16:
54:d7:0f:5c:30:93:62:a2:93:06:52:67:ec:89:7a:37:83:32:
7d:56:da:0a:28:33:57:3a:2b:ee:f5:a4:4c:84:b1:8f:1d:fe:
8f:c9:3c:cb:74:d7:86:50:69:9c:1d:c1:52:bd:18:10:f6:8c:
73:b6:fc:25:53:b4:c2:f6:f7:35:66:4c:a8:41:d5:59:c6:35:
25:65:b3:96:ba:2c:4f:31:9e:56:df:fb:70:c5:fa:c8:0e:c6:
6e:a6:c0:2b:5e:30:c9:6d:a3:f7:71:ab:d7:42:78:05:28:29:
75:34:7d:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 03:41:49 2025 by rpki-client