Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137342e302f32342d3234203d3e203134343435.roa
File: 36322e3139322e3137342e302f32342d3234203d3e203134343435.roa (raw, json)
Hash identifier: q/KK+COYhS/5JpFgl6DHMuc+yDRY/trGh8peJWBchWE=
Subject key identifier: 62:B9:9F:45:DD:40:37:F9:36:42:F9:B9:BA:84:20:6E:80:D9:90:A2
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 6727CE2568F29AC7B1E27633CCD7D817BC20E033
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137342e302f32342d3234203d3e203134343435.roa
Signing time: Thu 25 Jul 2024 20:05:19 +0000
ROA not before: Thu 25 Jul 2024 20:00:19 +0000
ROA not after: Thu 24 Jul 2025 20:05:19 +0000
asID: 14445
IP address blocks: 62.192.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 27 Jul 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:27:ce:25:68:f2:9a:c7:b1:e2:76:33:cc:d7:d8:17:bc:20:e0:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Jul 25 20:00:19 2024 GMT
Not After : Jul 24 20:05:19 2025 GMT
Subject: CN=62B99F45DD4037F93642F9B9BA84206E80D990A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:56:f9:13:e6:e4:7a:d4:a0:d6:1e:48:72:26:
cd:1f:b9:ad:91:57:cb:4f:ce:78:ad:df:6a:db:04:
f5:9f:72:3c:8b:d3:f0:86:01:e6:75:33:c5:76:e5:
be:78:7c:54:3c:d6:ce:05:0f:c4:30:5c:12:69:7a:
9a:be:b1:b0:d3:ad:bc:c8:d4:55:73:4a:b9:92:b4:
81:8d:4e:0e:27:c9:48:d2:b0:ed:c9:c7:8c:72:02:
91:3c:cc:ce:30:dd:d8:1e:a0:fc:ef:46:c9:e8:cc:
ea:b4:b8:34:3f:63:d0:34:84:1f:2d:34:04:50:b3:
c2:38:68:b5:ef:29:7a:d5:10:87:80:35:51:54:69:
2b:20:5b:06:53:1e:3a:8e:cf:06:e3:6c:fc:20:2c:
ee:68:dc:f5:ec:96:d3:b6:fa:ed:bd:07:42:dd:3a:
b3:7a:a3:a0:54:4a:37:a0:75:ff:e4:04:d0:b6:dd:
b4:76:01:f2:72:02:fb:1e:b4:f6:75:ba:c7:84:4c:
a1:60:6e:26:41:5d:1a:c6:30:6b:67:47:86:a6:78:
34:9d:0b:8f:76:02:42:0a:37:16:4f:ea:45:98:e5:
98:b4:37:fc:77:45:cc:2c:06:bb:1c:4e:f3:6f:6e:
e8:28:de:cb:be:3b:8b:da:f5:21:2d:97:08:33:f2:
97:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:B9:9F:45:DD:40:37:F9:36:42:F9:B9:BA:84:20:6E:80:D9:90:A2
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137342e302f32342d3234203d3e203134343435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.174.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:c3:a4:68:cc:fe:0e:1c:fb:22:b2:bb:b9:c6:fa:f3:9d:bc:
5f:dc:5d:b9:ac:10:4a:f1:87:ce:8e:68:07:0f:91:c0:d9:4e:
91:ae:52:4b:96:b3:20:fd:b0:1f:fd:43:26:6f:32:45:e6:8c:
38:d4:a7:84:cb:11:91:9e:1f:a3:b0:7f:b4:f5:b4:94:45:38:
81:61:1b:07:4a:81:2a:7e:0c:79:a4:59:48:0d:dd:72:5c:e1:
93:cc:6c:94:51:23:c7:aa:c8:91:33:92:b5:17:ae:85:b5:35:
09:c1:e0:38:f2:4d:76:42:2f:59:d1:12:2c:60:f0:ea:5f:0c:
5b:e3:71:75:9b:16:14:55:57:bf:25:95:e0:08:1f:f5:3d:65:
4c:f9:b7:d8:1d:71:82:92:69:4d:29:ea:ad:a2:d0:9b:b7:28:
30:ee:66:aa:95:d9:a6:a7:c3:90:20:80:15:49:a6:63:b3:46:
ff:c1:6c:da:b5:c6:08:26:14:bc:de:97:e3:80:17:0a:2e:ed:
fa:29:99:22:00:04:98:dd:3c:22:f8:14:87:e7:68:3f:64:bb:
e9:04:64:70:50:49:ef:fe:10:7d:7a:40:85:f0:ed:97:7c:5f:
c7:3a:14:82:92:7e:ff:cc:7d:95:b8:bd:c2:ba:90:f1:ad:e4:
2c:f4:18:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 17:21:57 2024 by rpki-client on console-ams.rpki-client.org