Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235352e302f32342d3234203d3e20333937333733.roa
File: 37372e38332e3235352e302f32342d3234203d3e20333937333733.roa (raw, json)
Hash identifier: 1mKwdC2ZIiOIr7Rnoef/+fSq7c6umW7Rd7kmaMzPSt8=
Subject key identifier: 77:DA:52:32:BC:AC:D6:8C:3E:36:4D:AD:F4:BA:D5:A6:2F:74:B5:D1
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 2A5E93144B0B98DE3178526B811597ECE5AEBC94
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235352e302f32342d3234203d3e20333937333733.roa
Signing time: Thu 23 Jan 2025 17:53:52 +0000
ROA not before: Thu 23 Jan 2025 17:48:52 +0000
ROA not after: Thu 22 Jan 2026 17:53:52 +0000
asID: 397373
IP address blocks: 77.83.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:5e:93:14:4b:0b:98:de:31:78:52:6b:81:15:97:ec:e5:ae:bc:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Jan 23 17:48:52 2025 GMT
Not After : Jan 22 17:53:52 2026 GMT
Subject: CN=77DA5232BCACD68C3E364DADF4BAD5A62F74B5D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:52:12:e6:ac:da:a9:13:d4:54:e7:2b:b1:54:
42:2a:5c:bd:f8:0d:b1:5c:1b:e9:95:e1:70:ec:f5:
b3:29:04:5b:3a:5d:ac:cc:5e:92:44:b2:4d:0a:71:
4f:34:b0:af:81:93:81:22:b5:da:04:4c:95:61:a5:
d9:b8:f5:c7:17:2d:27:3e:14:04:1e:db:1d:03:62:
75:17:23:3f:8f:66:31:2b:ca:49:81:b2:88:a2:0e:
94:9a:d0:69:a7:5b:34:31:fa:3c:08:85:f9:3c:da:
33:ae:da:65:ff:85:37:1e:10:d0:46:3c:50:e9:b1:
b2:69:71:ed:11:33:46:9a:01:90:c6:40:7c:bd:87:
fd:54:4f:d0:cc:e7:5e:00:78:fe:38:a6:05:69:a6:
68:07:cf:dc:91:02:d7:a2:64:6a:78:4a:1b:09:21:
1a:32:f6:1b:54:18:8b:9a:ee:cf:d3:38:7a:a3:54:
ba:cb:fa:92:a8:83:c5:d9:51:4d:84:d3:6b:ab:c7:
ad:37:7d:41:fa:9d:09:12:8f:0a:31:39:5d:a4:b3:
a6:c6:84:93:32:23:9c:41:90:1b:86:c4:b5:5c:19:
45:6f:b9:ba:85:03:d5:fd:74:2c:ed:18:47:fa:aa:
ff:66:05:82:17:4d:67:8d:ad:c3:13:2c:1e:55:32:
1e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:DA:52:32:BC:AC:D6:8C:3E:36:4D:AD:F4:BA:D5:A6:2F:74:B5:D1
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235352e302f32342d3234203d3e20333937333733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.255.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:99:a1:cf:3f:7f:54:ae:d5:59:ba:74:e2:e8:59:44:f4:a8:
b1:9d:fd:96:79:8d:8b:5b:cd:ff:e0:ca:a5:39:fc:54:ce:ed:
1c:0b:e6:8b:57:3b:5e:1f:e8:a2:e1:37:ee:9b:78:e4:06:0e:
a5:35:e4:98:96:5a:2c:1b:4c:c0:8e:00:1c:3b:90:15:7d:50:
45:cc:4f:5d:80:04:40:41:7b:42:37:56:25:d6:af:46:f2:74:
64:25:0b:7e:92:9f:33:0d:c8:0b:6b:23:0d:be:9e:71:66:60:
02:51:1d:da:fe:be:5c:63:02:b5:dd:58:dc:df:08:ea:a0:83:
78:e7:f5:ee:32:59:cf:81:d4:86:43:4e:38:e2:41:7c:a7:bd:
42:63:f1:7f:de:ca:98:7e:bd:6e:5a:29:d9:4f:42:f8:00:98:
3c:83:fb:67:d3:1e:5b:28:41:28:ff:8b:a3:b9:cf:41:a3:f3:
36:77:a8:b4:fa:a2:dd:58:69:43:10:6a:46:a2:90:81:84:1f:
d6:d3:46:f8:04:df:3f:0c:10:d9:81:3d:39:8b:7a:48:40:b9:
72:1f:f2:45:e0:24:35:a7:87:f2:45:c1:67:56:8f:72:38:76:
dd:9c:dc:e4:47:39:1f:23:95:13:fb:8d:02:47:58:f3:b3:3c:
70:66:85:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:25:05 2025 by rpki-client