Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235352e302f32342d3234203d3e20333937333733.roa
File: 37372e38332e3235352e302f32342d3234203d3e20333937333733.roa (raw, json)
Hash identifier: G3ktlo5Pg6qzwxzsge9w8i5/SWUPTUDok4BusGXoygw=
Subject key identifier: F3:C4:E6:C8:08:A0:93:E3:E5:7D:DE:E9:14:D2:61:FB:1F:0C:FC:9C
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 6B81B5E53B8C0EAA294D8A95022BDA8FF4EA6980
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235352e302f32342d3234203d3e20333937333733.roa
Signing time: Thu 22 Feb 2024 17:05:13 +0000
ROA not before: Thu 22 Feb 2024 17:00:13 +0000
ROA not after: Thu 20 Feb 2025 17:05:13 +0000
asID: 397373
IP address blocks: 77.83.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.mft
rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Apr 2024 05:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:81:b5:e5:3b:8c:0e:aa:29:4d:8a:95:02:2b:da:8f:f4:ea:69:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Feb 22 17:00:13 2024 GMT
Not After : Feb 20 17:05:13 2025 GMT
Subject: CN=F3C4E6C808A093E3E57DDEE914D261FB1F0CFC9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d5:c0:f7:08:73:2a:99:39:58:f6:00:3e:e6:
cc:32:d6:12:b5:f3:26:00:60:5f:cc:d2:40:ad:c0:
12:06:f5:b3:fc:ef:24:b9:cc:dc:5b:c2:4d:b7:aa:
5f:d2:04:61:58:72:14:85:f5:ee:e2:81:dc:09:90:
b1:7b:6f:14:de:b4:dc:ad:39:c9:f6:fc:ec:5c:ad:
1a:d1:d5:c1:73:10:6c:eb:93:7a:59:5b:06:f0:c4:
24:84:95:37:b3:60:32:da:ac:43:d5:f3:c2:37:2a:
1c:fc:32:5a:c4:fc:18:ed:fe:82:6e:54:90:e9:de:
f0:f2:85:be:c4:1b:57:fe:02:44:92:5e:7c:ba:53:
a2:d7:c8:3d:70:92:5e:c4:5b:3f:20:6a:ff:fd:c7:
81:51:34:28:2b:9b:40:10:33:43:d0:5a:7c:cc:31:
a7:26:69:b0:ce:e2:87:c6:cd:75:1b:39:05:37:32:
5c:cd:fb:be:2e:39:79:e8:c5:fc:aa:20:5b:fd:e1:
58:cf:40:9e:55:55:71:d1:d1:fd:a9:28:ea:8a:23:
79:ce:3e:8b:0f:42:20:4f:64:cc:ef:46:06:ad:22:
9e:85:7d:35:b3:1e:99:8b:d2:15:78:22:75:a1:7b:
e4:d1:46:f3:38:69:bd:f8:d1:d8:9d:e4:e8:c6:91:
d4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:C4:E6:C8:08:A0:93:E3:E5:7D:DE:E9:14:D2:61:FB:1F:0C:FC:9C
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/37372e38332e3235352e302f32342d3234203d3e20333937333733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.255.0/24
Signature Algorithm: sha256WithRSAEncryption
62:fc:e9:d8:8a:76:1b:91:3e:67:53:ea:67:b0:32:2e:76:a1:
28:b1:52:37:b0:4d:e9:b4:0e:22:2a:05:21:95:c7:a6:16:eb:
c0:44:5d:20:db:e6:be:31:d1:3d:45:39:08:e5:08:41:9b:3e:
94:13:67:06:0e:38:6b:2d:e7:95:fe:69:62:03:05:19:4a:8e:
a5:6a:06:c8:b2:64:2a:27:58:ec:a5:6d:9a:32:45:b4:fe:ce:
44:0d:01:ec:6f:55:8d:97:0c:dd:c9:89:bc:45:77:15:85:ac:
c9:25:67:1f:e1:79:33:b7:c2:88:df:0e:34:d2:7e:5d:ca:56:
09:89:fc:ed:1b:fb:7d:d7:d3:a4:e3:1a:0a:68:60:83:97:80:
28:f2:68:c5:02:22:f2:79:32:67:9f:c6:7e:a1:9e:37:43:11:
dd:a5:27:85:c6:c2:00:a6:5e:63:c6:cf:24:c8:8b:56:3a:1c:
ae:47:21:51:da:5e:17:9a:ea:92:df:47:99:4d:58:f3:50:14:
ff:dc:f8:4a:67:da:0c:af:84:9e:07:8c:af:45:f0:09:a7:ab:
d0:88:81:25:69:07:9d:a4:61:95:2f:5d:82:75:fa:23:ae:4a:
6e:c0:11:19:d4:57:36:5c:4a:37:99:11:fb:19:8f:17:93:df:
39:b7:ea:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 16:08:23 2024 by rpki-client on console-ams.rpki-client.org