Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137352e302f32342d3234203d3e203332313637.roa
File: 36322e3139322e3137352e302f32342d3234203d3e203332313637.roa (raw, json)
Hash identifier: Cpd8yjyP6Pj6lsQ2rZ8NEinYWKDtve9LRtCY/PfJ4hY=
Subject key identifier: 65:D5:F0:32:9B:A5:20:C8:06:30:A9:7B:10:94:15:66:50:04:FF:DF
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 50BA473350B15E6425CE37095C7F9B3446403C5B
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137352e302f32342d3234203d3e203332313637.roa
Signing time: Sat 24 Feb 2024 13:32:05 +0000
ROA not before: Sat 24 Feb 2024 13:27:05 +0000
ROA not after: Sat 22 Feb 2025 13:32:05 +0000
asID: 32167
IP address blocks: 62.192.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 May 2024 04:36:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:ba:47:33:50:b1:5e:64:25:ce:37:09:5c:7f:9b:34:46:40:3c:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Feb 24 13:27:05 2024 GMT
Not After : Feb 22 13:32:05 2025 GMT
Subject: CN=65D5F0329BA520C80630A97B109415665004FFDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b1:f3:d6:b5:7e:9a:8b:42:35:77:3e:35:2b:
74:56:a4:54:f9:99:8a:c2:4e:78:6b:a5:bd:73:29:
ca:bc:b4:b3:d8:b0:e2:da:1a:0d:4c:67:45:1f:ba:
a5:3a:54:8a:e1:7e:b4:02:62:aa:a9:27:29:70:21:
68:45:a2:f8:ec:2b:53:90:ee:ce:bc:01:85:26:5e:
53:1a:62:f0:15:61:ad:27:42:fa:9c:2e:a1:84:33:
77:ed:d9:1a:6e:da:54:89:ce:2a:9b:61:43:ac:57:
d8:12:ed:55:1c:93:0e:60:29:00:ea:87:9b:81:98:
2f:47:a1:37:88:74:fb:30:2f:84:d6:c6:53:3d:8e:
6e:45:cb:9f:80:20:f4:5f:dd:3a:84:c2:42:3b:1b:
10:72:7b:26:7c:8f:8a:8f:ac:38:75:7c:96:d2:e4:
6e:f8:a3:bd:f1:7f:83:d9:0d:bb:bf:b1:5b:20:1b:
ca:04:9d:a1:55:39:2c:54:7a:0f:3f:3f:08:b0:ad:
3e:98:1c:c5:31:49:e8:e4:d0:1f:63:12:36:0d:b3:
f7:03:de:ad:4e:f1:d2:98:13:be:ed:e1:16:1b:12:
a9:e6:86:41:b9:04:b2:09:ea:bc:81:16:a1:25:ba:
06:50:d2:41:46:41:d1:8a:e1:35:51:93:ef:11:0a:
a4:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:D5:F0:32:9B:A5:20:C8:06:30:A9:7B:10:94:15:66:50:04:FF:DF
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/36322e3139322e3137352e302f32342d3234203d3e203332313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.175.0/24
Signature Algorithm: sha256WithRSAEncryption
20:18:09:aa:27:f0:ae:6f:34:f9:24:5f:41:db:2a:ca:a7:c7:
14:c1:71:3a:8a:ad:71:ad:fd:9e:fa:0b:f9:e5:bb:c3:f0:a2:
90:37:6b:6f:10:4c:06:eb:cd:ce:f1:9b:fa:67:ce:3b:89:85:
b0:f6:6d:41:fe:dd:62:11:c7:3b:13:bb:c5:1e:bc:b7:4e:c0:
c1:bf:ea:b4:bd:60:12:53:cb:62:9d:20:46:55:24:0c:aa:4e:
4d:99:21:51:cc:7a:26:33:af:a0:ff:d1:31:2b:99:03:cf:54:
e2:4c:24:86:5b:62:a2:f8:9e:74:47:30:77:dd:07:a2:3a:a4:
09:22:dc:ee:7b:62:f9:9e:4d:ec:dc:19:91:b0:d6:90:d2:38:
55:13:44:d5:99:13:be:75:d9:87:42:b3:6b:d9:49:87:66:cb:
6f:04:5b:46:bc:87:dd:d5:fd:53:f0:cc:0a:e5:bc:d6:63:c6:
fb:5d:ed:8a:29:52:31:60:e0:24:14:79:0d:db:c3:6a:05:17:
02:d9:3a:06:cc:69:9a:48:d5:70:15:98:fa:54:46:a9:df:35:
b0:e3:11:ec:79:da:9a:cd:25:be:77:ef:a8:53:aa:73:1f:73:
e6:0e:99:91:5f:33:7e:18:9f:20:f1:9a:da:f5:14:fe:b7:de:
d3:c3:af:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 11 11:26:32 2024 by rpki-client on console-fra.rpki-client.org