Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235342e302f32342d3234203d3e20333936303733.roa
File: 37372e38332e3235342e302f32342d3234203d3e20333936303733.roa (raw, json)
Hash identifier: /sKsILc6ripbGrrjZfOCzHw6x84hkL37MuytXcwGW/A=
Subject key identifier: 53:92:B9:DF:83:16:34:D1:EC:87:1B:33:58:0D:65:41:62:26:8E:5E
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 47851748B90EE01CC04EC0D6D11324613F923097
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235342e302f32342d3234203d3e20333936303733.roa
Signing time: Thu 22 Feb 2024 17:05:13 +0000
ROA not before: Thu 22 Feb 2024 17:00:13 +0000
ROA not after: Thu 20 Feb 2025 17:05:13 +0000
asID: 396073
IP address blocks: 77.83.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:85:17:48:b9:0e:e0:1c:c0:4e:c0:d6:d1:13:24:61:3f:92:30:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Feb 22 17:00:13 2024 GMT
Not After : Feb 20 17:05:13 2025 GMT
Subject: CN=5392B9DF831634D1EC871B33580D654162268E5E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:68:c0:b4:9a:5a:9d:bf:92:9c:21:b7:e8:57:
7d:a2:b8:98:9f:11:d9:5b:3f:46:21:85:cc:47:ea:
af:82:5e:0d:f3:ee:c1:20:7f:6f:66:d3:84:6b:21:
f7:86:a9:ca:2b:83:6c:b6:e6:4a:58:4d:ef:a8:5d:
f0:53:8f:8c:fd:d1:78:1f:50:ff:2b:31:ef:75:eb:
98:ea:60:6e:c0:85:f7:d9:c0:78:fd:2f:96:eb:b9:
1e:6a:39:73:0f:d9:71:da:f1:ad:a8:8e:1c:fe:4e:
29:82:2b:db:55:a5:86:27:f5:86:2b:c9:79:ec:cc:
e5:b2:fc:43:77:bb:b4:af:1e:67:35:44:12:07:1f:
5e:55:5f:76:e4:ae:ab:de:66:b2:eb:25:29:cc:ce:
96:cb:da:5a:10:59:7c:60:62:dc:11:04:d0:8e:f0:
a0:7a:bb:de:cc:ea:9a:6e:27:f3:f1:de:b0:d5:1c:
8c:99:36:f3:d4:b7:86:2f:3f:8b:25:4a:b2:c3:f7:
ca:df:e7:a6:61:91:14:ed:b2:5d:b2:48:40:0b:51:
a4:84:e9:d2:48:7b:8d:02:6a:a3:a9:f4:28:5a:06:
96:b9:19:54:8a:77:5d:98:22:30:61:6a:ea:19:04:
f6:de:d0:aa:57:94:2c:14:32:13:34:76:13:ef:bb:
af:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:92:B9:DF:83:16:34:D1:EC:87:1B:33:58:0D:65:41:62:26:8E:5E
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235342e302f32342d3234203d3e20333936303733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.254.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:cb:76:30:89:52:9e:60:67:1a:fd:b6:f8:9b:97:82:dd:a4:
9e:e4:dc:65:8d:bc:32:41:d4:ae:93:72:10:ea:5f:e2:5e:1c:
86:23:4c:dd:d1:4a:3b:7f:02:0e:d5:2d:ba:40:40:3c:92:8a:
af:d9:1f:eb:e8:1a:ed:f4:f0:5f:14:62:4e:15:09:39:23:f6:
ab:ad:9a:54:4e:d5:2c:c4:d3:87:5e:5d:08:86:98:26:9c:7a:
3b:be:db:5b:b5:b1:11:19:3e:fd:cb:74:8d:eb:7b:67:3d:f9:
f2:6e:db:a7:b2:d0:18:0f:bd:ae:66:89:29:48:a7:17:ff:16:
14:9d:7b:c0:40:18:5d:fe:08:40:ef:2a:00:78:71:d6:7a:0c:
d5:9e:43:fa:32:b8:a4:f0:69:71:7c:8e:be:c2:ab:a6:92:04:
18:97:2c:33:f8:5d:df:31:ff:91:ab:ae:c0:80:4b:ad:24:92:
8d:24:a7:66:bc:ab:81:e2:a6:96:35:73:a1:b2:1d:7e:3d:b4:
b0:ce:b7:d8:d1:f1:9e:cf:41:5e:8a:e5:bc:2c:8c:be:61:9a:
3d:4b:fd:f7:13:be:28:64:46:f7:cf:d6:c7:92:13:a1:4d:19:
1c:aa:f9:3f:40:64:1a:95:5d:cf:50:fc:cf:50:93:36:52:40:
c3:f6:e0:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:15:24 2024 by rpki-client on console-ams.rpki-client.org