Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137342e302f32342d3234203d3e20313939303538.roa
File: 36322e3139322e3137342e302f32342d3234203d3e20313939303538.roa (raw, json)
Hash identifier: ngHdoUxJymyOOTpWXLZA6HfqcGQkxKDww9uhl5L3bs4=
Subject key identifier: 59:68:49:FA:04:AE:B5:33:89:DF:B0:9E:46:A0:C1:B0:1A:1B:D2:B9
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 4AB11151158D02F0AFC772877B6B067F9AE86FC4
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137342e302f32342d3234203d3e20313939303538.roa
Signing time: Thu 05 Sep 2024 07:38:51 +0000
ROA not before: Thu 05 Sep 2024 07:33:51 +0000
ROA not after: Thu 04 Sep 2025 07:38:51 +0000
asID: 199058
IP address blocks: 62.192.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:b1:11:51:15:8d:02:f0:af:c7:72:87:7b:6b:06:7f:9a:e8:6f:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Sep 5 07:33:51 2024 GMT
Not After : Sep 4 07:38:51 2025 GMT
Subject: CN=596849FA04AEB53389DFB09E46A0C1B01A1BD2B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ce:43:44:3d:3b:fa:0c:b1:66:d5:98:03:ca:
c6:6e:86:8b:f0:84:a2:cc:3a:15:3a:76:32:41:16:
bc:79:ad:68:9a:eb:a4:c3:8f:9d:67:cf:3e:26:1d:
3d:df:c2:81:91:b8:56:39:30:3e:95:e7:80:65:89:
af:48:af:9a:b2:be:a9:57:4b:b3:6d:c7:58:4b:38:
ad:ce:15:f3:35:8f:33:1e:c1:81:eb:a1:b7:44:62:
01:f1:19:28:e2:31:6a:bb:f1:5e:9c:c5:5b:5f:d9:
4c:18:f9:35:ec:15:62:f1:71:52:46:ed:99:25:c5:
29:3d:62:f2:da:4c:69:f9:82:9d:de:a1:80:1d:c2:
fd:f1:22:95:f6:c3:63:6e:f9:58:81:d2:4d:53:21:
71:10:9a:c7:57:37:f2:f6:31:8c:a6:7c:83:75:22:
1e:e8:20:b8:49:2f:ab:2c:fe:e4:a2:b8:5f:a4:90:
49:fc:1e:95:32:2d:a7:95:31:2d:40:b7:ed:76:ae:
9d:fc:d3:c6:6e:40:7e:a6:c1:6d:ab:78:77:b7:90:
7b:60:45:fa:d9:37:e3:6d:0a:e6:35:45:89:5b:c9:
34:14:c2:89:fa:88:8e:ee:25:f6:eb:f5:46:38:4e:
6c:de:40:08:9c:bd:82:cf:96:7a:ed:5a:04:2e:b5:
00:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:68:49:FA:04:AE:B5:33:89:DF:B0:9E:46:A0:C1:B0:1A:1B:D2:B9
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137342e302f32342d3234203d3e20313939303538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.174.0/24
Signature Algorithm: sha256WithRSAEncryption
63:27:02:17:8f:15:c0:19:ad:62:2b:29:8c:d4:e1:95:25:bb:
c3:8e:31:2b:c0:63:8f:b9:2a:75:28:47:95:60:4d:01:bf:69:
1d:6e:c8:28:7a:67:a2:56:e6:30:d9:70:ea:16:06:fb:c9:60:
d3:71:c5:3f:d7:26:7a:48:97:0c:a6:a3:97:7e:18:2c:5b:4f:
e1:7e:0f:99:a1:b7:cf:31:66:71:4e:e4:d8:8c:12:81:c9:c0:
1c:de:47:26:d2:5c:84:d8:c5:e8:5e:f8:c2:a3:49:7c:85:c2:
3b:5a:b4:98:69:67:7e:a6:58:69:0b:28:55:1a:c4:8b:97:e3:
bc:40:fd:a9:fb:62:88:71:d3:05:06:6e:e7:50:20:65:be:65:
ba:df:f9:59:30:48:0d:19:c0:ef:7f:46:2a:10:70:59:38:fd:
12:05:3c:7c:a3:e0:95:9d:bb:1e:20:ae:55:1c:6e:76:6d:b4:
84:01:02:3b:bf:8a:22:bf:be:35:21:c3:52:2b:4b:dc:19:7e:
3e:98:6c:64:52:1f:73:52:57:00:d4:3f:a4:7f:9b:cb:2c:fe:
0c:8f:93:68:74:13:52:95:f0:92:7a:25:8f:b9:63:c4:96:d0:
f3:3d:10:74:89:5c:cc:28:04:b7:f0:e3:2e:08:8d:f1:06:9b:
c1:4e:33:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:59:19 2024 by rpki-client on console-fra.rpki-client.org