Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/36322e3131322e3132382e302f32302d3234203d3e20313532313739.roa
File: 36322e3131322e3132382e302f32302d3234203d3e20313532313739.roa (raw, json)
Hash identifier: 4OD07bikEzVW0f0iJwddTiHo4kOtaHyua4YRDwBLj8A=
Subject key identifier: 1E:45:34:F8:B3:AB:2D:4D:79:6D:FF:11:6F:A6:8D:85:2B:38:F9:80
Certificate issuer: /CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Certificate serial: 4EF6B7C864F101785E1E982B5B51D3B9E534A968
Authority key identifier: 9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/36322e3131322e3132382e302f32302d3234203d3e20313532313739.roa
Signing time: Sun 07 Jan 2024 04:35:31 +0000
ROA not before: Sun 07 Jan 2024 04:30:31 +0000
ROA not after: Sun 05 Jan 2025 04:35:31 +0000
asID: 152179
IP address blocks: 62.112.128.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:f6:b7:c8:64:f1:01:78:5e:1e:98:2b:5b:51:d3:b9:e5:34:a9:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Validity
Not Before: Jan 7 04:30:31 2024 GMT
Not After : Jan 5 04:35:31 2025 GMT
Subject: CN=1E4534F8B3AB2D4D796DFF116FA68D852B38F980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:6e:3c:f0:c7:0b:36:95:c8:50:28:83:54:f5:
92:b5:ea:ad:66:74:20:d7:06:f6:29:54:91:88:bf:
a4:86:98:1d:4f:0d:3b:7f:03:3e:7f:bd:ad:d8:3d:
69:f7:06:62:50:ae:eb:3c:26:b3:c4:a3:1f:93:f6:
5b:1b:ed:25:f9:9b:7f:cd:77:92:ad:fb:8a:a2:dc:
62:40:90:6c:54:66:e6:99:30:7a:24:21:96:f6:9b:
17:3d:c7:12:9b:0a:58:3d:19:f0:be:dd:95:66:13:
ce:2f:21:0b:ba:42:93:b7:e5:e4:75:0d:32:4a:ff:
57:74:5d:e9:57:3c:a5:70:00:31:36:7c:05:71:0c:
6d:9d:d8:98:8d:47:d9:af:f2:1a:cd:45:9a:c2:69:
b0:05:d5:0f:3d:9c:e1:f0:3f:59:69:21:89:5f:57:
3d:9e:84:cf:ab:bc:a1:99:e3:c4:f7:b4:4e:21:c3:
e3:15:80:bc:62:c0:e6:21:83:bc:b3:df:d3:ad:69:
2c:7c:f4:a2:03:8e:b2:49:b1:93:19:9d:5d:6c:c5:
89:85:06:64:b5:22:5e:c3:70:8d:0f:21:0d:37:fe:
7a:93:b5:d3:18:98:66:3a:b0:fa:f5:43:8f:ba:e8:
42:c1:82:ba:c4:bd:88:a7:42:ad:25:dd:53:e3:65:
de:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:45:34:F8:B3:AB:2D:4D:79:6D:FF:11:6F:A6:8D:85:2B:38:F9:80
X509v3 Authority Key Identifier:
keyid:9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/36322e3131322e3132382e302f32302d3234203d3e20313532313739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.112.128.0/20
Signature Algorithm: sha256WithRSAEncryption
04:79:94:c6:25:b2:f8:67:7d:07:f8:d7:b9:11:a6:4f:b6:63:
ba:9f:65:4d:55:41:c8:f9:6f:28:25:7c:89:80:3a:22:f8:11:
80:ba:0b:b1:15:cd:9e:18:e9:94:bb:de:42:d3:39:31:89:ff:
54:f7:6d:33:9d:6b:b5:e2:3f:41:a1:4e:d4:ab:fc:10:31:de:
07:7f:48:e6:e5:df:a8:8c:2d:f6:c6:f4:03:68:e3:36:26:dc:
9e:1c:7f:92:87:73:bf:43:b5:ea:b5:83:74:1e:2a:20:d8:75:
86:1e:a6:7e:c3:26:6d:c7:44:d3:43:87:8c:bd:ba:55:c0:05:
df:16:50:33:bf:c0:50:53:87:1c:32:e5:b7:ea:ba:1c:8e:eb:
c4:8e:0f:d7:4f:7c:83:fe:85:70:48:90:44:4f:08:d9:e1:38:
81:dc:4a:3b:49:5e:dc:f3:70:cf:63:c1:df:fb:d0:1b:90:f5:
de:7a:e8:23:27:81:94:91:79:87:1b:44:07:1f:86:4e:54:4d:
31:6f:91:b7:e3:d9:0d:90:63:81:43:ae:26:ce:18:05:a8:4b:
07:21:f3:71:dd:fb:cd:bc:7e:9e:1e:7d:c8:83:a2:21:54:ed:
10:f6:e5:c3:f7:b1:97:fc:b9:81:36:c5:38:80:a5:8c:29:0b:
58:47:38:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 10:21:39 2024 by rpki-client on console-fra.rpki-client.org