Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/3137302e36322e3139302e302f32342d3234203d3e203438393235.roa
File: 3137302e36322e3139302e302f32342d3234203d3e203438393235.roa (raw, json)
Hash identifier: TDSLNd9plHJwOulPeBHo1vNBDKxJTlWmh9i0dzSd4do=
Subject key identifier: 0B:9D:98:2D:7E:4D:E3:53:C6:A2:79:F4:F3:56:79:6C:5D:7B:31:61
Certificate issuer: /CN=5ecb4cadbbadd500f49ca697d566a2761e017608
Certificate serial: 051E68A64DEA64216F57C1C5C91FD39554F06CF4
Authority key identifier: 5E:CB:4C:AD:BB:AD:D5:00:F4:9C:A6:97:D5:66:A2:76:1E:01:76:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XstMrbut1QD0nKaX1Waidh4Bdgg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/3137302e36322e3139302e302f32342d3234203d3e203438393235.roa
Signing time: Tue 24 Dec 2024 14:19:06 +0000
ROA not before: Tue 24 Dec 2024 14:14:06 +0000
ROA not after: Tue 23 Dec 2025 14:19:06 +0000
asID: 48925
IP address blocks: 170.62.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/5ECB4CADBBADD500F49CA697D566A2761E017608.crl
rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/5ECB4CADBBADD500F49CA697D566A2761E017608.mft
rsync://rpki.ripe.net/repository/DEFAULT/XstMrbut1QD0nKaX1Waidh4Bdgg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 19:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:1e:68:a6:4d:ea:64:21:6f:57:c1:c5:c9:1f:d3:95:54:f0:6c:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ecb4cadbbadd500f49ca697d566a2761e017608
Validity
Not Before: Dec 24 14:14:06 2024 GMT
Not After : Dec 23 14:19:06 2025 GMT
Subject: CN=0B9D982D7E4DE353C6A279F4F356796C5D7B3161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:1f:0b:b3:57:84:a2:ce:3b:ca:46:21:95:40:
fc:56:53:f3:58:cd:02:80:d6:41:e2:97:b5:4b:bc:
34:e4:1f:e8:d8:64:6a:70:7a:67:de:26:33:b9:3b:
1c:ea:23:09:27:60:6d:28:fb:06:c9:2c:00:1e:eb:
b6:5a:f3:93:80:9c:db:04:39:41:35:f4:23:0b:7d:
3f:a9:28:f4:21:ea:a9:e0:d1:0e:c3:ac:f7:cd:fd:
c9:80:8d:c3:cc:3b:83:c1:34:b8:3d:04:cc:b9:1d:
0a:59:38:04:d7:b7:ff:e4:3a:a2:2f:90:c8:c9:50:
f9:6c:8b:af:b7:ef:d2:6c:cb:f7:60:86:53:da:65:
cd:c7:fc:b9:16:93:73:6b:71:42:62:96:da:40:1e:
df:0c:4c:20:69:44:90:1a:3a:f9:ae:79:2c:70:30:
12:6d:0c:20:0d:0e:9b:c7:58:00:ee:4a:62:88:c7:
84:13:a6:4b:0d:71:29:12:b4:52:df:44:c2:e8:6a:
48:0c:60:5f:f7:ff:45:99:24:45:ab:9d:2c:8e:0d:
51:b9:63:7d:84:1d:68:6d:20:69:e3:dc:10:db:67:
70:08:01:d2:e3:f3:3d:f5:e2:f9:2d:f9:d5:99:1c:
31:26:dc:ba:86:07:85:a1:54:a4:48:11:f2:92:c4:
b5:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:9D:98:2D:7E:4D:E3:53:C6:A2:79:F4:F3:56:79:6C:5D:7B:31:61
X509v3 Authority Key Identifier:
keyid:5E:CB:4C:AD:BB:AD:D5:00:F4:9C:A6:97:D5:66:A2:76:1E:01:76:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/5ECB4CADBBADD500F49CA697D566A2761E017608.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XstMrbut1QD0nKaX1Waidh4Bdgg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ac0e13d8-bfe0-4235-afb4-d53edfbacdd2/0/3137302e36322e3139302e302f32342d3234203d3e203438393235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.62.190.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:5e:9f:d1:a3:02:87:f8:bd:c6:5e:3e:e8:af:43:a4:51:ad:
ee:46:a8:4e:74:ca:94:4f:45:85:8d:aa:ab:e3:3c:e4:ec:c3:
4b:f4:16:d1:bd:ca:10:2b:72:f1:dc:27:a1:8f:b0:68:a5:21:
f9:67:27:0f:74:bc:d1:6c:8a:8f:39:7f:fd:8a:3b:3c:26:c7:
89:b7:6a:f3:50:ed:83:48:96:11:5f:c4:ea:a7:b1:4a:66:5a:
da:5e:43:2c:85:e7:7a:b7:bb:d1:4f:ab:e9:ec:46:4d:42:ad:
eb:9e:bd:51:86:e5:59:06:5e:44:05:af:8f:1b:43:04:ae:f4:
d7:9c:63:37:b5:5b:ec:97:5a:8f:af:55:3f:a2:52:e2:b8:ae:
4b:59:34:9e:6f:ab:83:81:d2:87:07:53:bc:33:80:59:b4:75:
6d:c7:83:03:28:73:d6:2d:7e:94:dd:50:27:89:94:5e:2e:f0:
4f:a3:d5:4b:0f:47:79:8b:1b:18:25:1a:c2:e0:37:29:9a:f7:
ad:42:b6:15:44:fd:f4:98:71:63:e2:c5:95:58:da:b8:61:a9:
d2:f7:ca:45:db:c3:e4:76:40:59:07:c1:f3:91:7a:ca:58:e6:
10:1a:df:68:05:53:09:18:61:3a:c2:c9:fb:74:3f:f9:56:20:
27:d2:62:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:30:23 2025 by rpki-client