Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/36322e3131322e3134342e302f32302d3233203d3e203134363138.roa
File: 36322e3131322e3134342e302f32302d3233203d3e203134363138.roa (raw, json)
Hash identifier: BQqS+ENoluPvvGDs1a6f197QeJNMvxpt54Fq5Jh8Uaw=
Subject key identifier: 02:F7:11:4C:F4:45:84:F5:87:0D:EA:24:CE:F8:E2:71:59:F1:25:25
Certificate issuer: /CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Certificate serial: 746C19A81058ACD5840CC2744BDB80C1C9670AB8
Authority key identifier: 9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/36322e3131322e3134342e302f32302d3233203d3e203134363138.roa
Signing time: Mon 18 Dec 2023 16:34:55 +0000
ROA not before: Mon 18 Dec 2023 16:29:55 +0000
ROA not after: Mon 16 Dec 2024 16:34:55 +0000
asID: 14618
IP address blocks: 62.112.144.0/20 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:6c:19:a8:10:58:ac:d5:84:0c:c2:74:4b:db:80:c1:c9:67:0a:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Validity
Not Before: Dec 18 16:29:55 2023 GMT
Not After : Dec 16 16:34:55 2024 GMT
Subject: CN=02F7114CF44584F5870DEA24CEF8E27159F12525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d0:08:e0:67:d3:ea:e4:94:b0:5c:db:94:fc:
17:6f:d8:fa:1a:d6:fd:0d:af:36:18:4f:13:84:86:
62:9c:c9:43:44:31:24:58:fc:9d:bc:7e:8c:23:bd:
b6:40:47:a0:27:6a:21:46:56:6c:31:9f:2a:1d:b5:
94:a0:76:25:6a:45:69:c6:e0:75:84:f3:95:84:9b:
c8:11:1d:ee:7b:67:5f:9e:cb:f7:f9:d4:d4:ef:3a:
42:05:dc:cb:76:51:0d:0d:30:a9:2a:e7:a4:4e:ff:
1e:65:a3:02:b5:1e:b4:6a:49:ba:ba:8a:bd:5e:39:
ec:3a:b2:b5:8a:ae:ae:94:67:c8:e7:82:7f:4d:3d:
f1:70:6e:c5:76:31:1e:65:86:3f:a7:e2:72:ca:10:
65:c5:d3:71:07:d6:89:a8:da:4f:44:ae:4d:9f:db:
54:13:c5:61:e2:a5:a4:04:09:6a:87:96:0e:a9:81:
fe:7c:e9:a8:c8:5e:8b:4b:8e:31:e1:69:be:c5:d4:
ff:91:aa:11:be:07:fa:30:8f:99:3e:ab:c7:a3:1c:
f1:e6:b5:ba:ab:d4:6d:21:e3:5d:1c:9c:80:3a:42:
95:30:27:ac:62:2f:d4:5c:5a:8b:bb:11:5b:89:0a:
f0:11:fe:9a:5e:53:57:8f:0b:bd:d4:af:e6:15:56:
f1:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F7:11:4C:F4:45:84:F5:87:0D:EA:24:CE:F8:E2:71:59:F1:25:25
X509v3 Authority Key Identifier:
keyid:9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/36322e3131322e3134342e302f32302d3233203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.112.144.0/20
Signature Algorithm: sha256WithRSAEncryption
25:8f:db:c7:c4:e6:dd:22:ca:9b:48:72:76:8b:0b:5b:f7:c6:
25:4c:bd:d6:69:50:34:8f:0c:c9:c9:b1:d0:c7:d0:6f:f2:18:
81:3a:9b:83:ad:8a:f3:34:69:59:fb:a9:6b:37:93:d3:c8:6d:
71:ea:83:6b:82:95:01:86:be:84:79:47:3b:ea:8f:70:e8:dd:
16:c1:7d:07:f9:58:47:df:c7:11:37:c0:a8:e3:e0:40:42:18:
ad:12:a5:32:6e:7f:0b:40:68:87:85:25:ea:46:ff:b8:b1:80:
a0:b8:ff:d6:49:99:8a:2e:c5:da:b2:be:25:56:47:88:ec:e7:
6c:bd:db:46:0b:2b:fd:b0:61:21:2c:8d:26:56:9d:f9:b3:95:
10:9a:45:b7:ac:94:fa:cf:5b:c9:b9:9b:ab:01:48:8b:a2:0b:
2a:46:1e:26:75:77:e3:c9:f9:86:b6:fb:14:d7:c8:f7:62:1f:
ee:95:dd:f1:58:b4:ed:b6:ab:d0:41:0c:24:d7:44:0a:70:76:
30:75:26:3e:8f:c9:23:45:4e:f6:d7:07:13:37:a4:2b:df:a2:
25:9a:8d:4d:6b:ca:30:da:f8:77:b4:28:45:6c:4e:04:a7:4f:
38:4f:06:b3:a0:b8:38:93:21:3f:d9:34:1d:0b:a7:c0:e2:76:
03:3a:6f:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 03:21:44 2024 by rpki-client on console-fra.rpki-client.org