Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/36322e3131322e3134342e302f32302d3233203d3e203136353039.roa
File: 36322e3131322e3134342e302f32302d3233203d3e203136353039.roa (raw, json)
Hash identifier: eWLKKmcEz6pqT5QZbBFFmS/7ZGC8IHApE48l8PsxN2w=
Subject key identifier: 54:50:D9:9A:5C:CB:45:61:5C:AD:E5:42:B9:BE:60:00:C6:8A:77:77
Certificate issuer: /CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Certificate serial: 350C20D8DEB7E56F745AE4E9FF40C0349ED69DF9
Authority key identifier: 9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/36322e3131322e3134342e302f32302d3233203d3e203136353039.roa
Signing time: Mon 18 Dec 2023 16:34:55 +0000
ROA not before: Mon 18 Dec 2023 16:29:55 +0000
ROA not after: Mon 16 Dec 2024 16:34:55 +0000
asID: 16509
IP address blocks: 62.112.144.0/20 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.mft
rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:0c:20:d8:de:b7:e5:6f:74:5a:e4:e9:ff:40:c0:34:9e:d6:9d:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Validity
Not Before: Dec 18 16:29:55 2023 GMT
Not After : Dec 16 16:34:55 2024 GMT
Subject: CN=5450D99A5CCB45615CADE542B9BE6000C68A7777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c0:9b:16:e9:54:85:57:c8:91:0e:bd:33:26:
54:a3:73:d7:6c:fb:89:56:2b:17:57:86:a6:73:bf:
ce:29:94:f8:e8:f3:32:aa:9d:db:c3:f7:b7:19:ed:
68:78:9f:c3:fd:25:fc:d9:5a:b1:89:a0:9e:1b:40:
c3:67:6c:1f:f5:a8:69:fa:11:97:d5:13:aa:b5:1e:
22:d7:a6:75:59:46:de:72:0f:f0:26:1e:b5:07:a9:
37:72:b4:5e:47:54:2a:9d:8a:48:18:c9:bb:a4:88:
36:c5:ad:eb:5b:91:be:08:3e:92:48:70:40:11:4a:
44:02:47:6f:18:9f:c3:4f:3a:6d:91:5d:79:29:c6:
9a:81:08:2b:6a:72:b0:94:95:71:ac:c7:3e:5b:7d:
bc:8e:08:5f:d2:ee:dc:d2:96:df:c0:14:e4:07:81:
81:bb:83:e9:9a:f4:ff:3d:e4:48:f3:45:54:9a:68:
e1:d3:f9:0c:e3:68:c0:aa:b2:af:db:00:ce:51:55:
13:6e:8b:96:5f:75:32:db:09:61:88:75:74:4a:d0:
ec:d2:b2:dd:55:16:2d:b1:46:ed:c5:ab:92:be:26:
5c:cb:28:fd:33:41:3c:0f:19:90:ed:a0:3f:67:68:
06:80:f7:8b:bc:d9:4a:a4:2f:69:c9:a7:2e:e9:67:
83:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:50:D9:9A:5C:CB:45:61:5C:AD:E5:42:B9:BE:60:00:C6:8A:77:77
X509v3 Authority Key Identifier:
keyid:9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/36322e3131322e3134342e302f32302d3233203d3e203136353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.112.144.0/20
Signature Algorithm: sha256WithRSAEncryption
67:5c:73:14:80:54:a1:63:c3:0f:ec:1d:3c:5f:c7:f8:f7:ae:
e9:de:01:e2:ba:38:0d:0c:94:56:0f:89:7a:b7:93:e8:cb:2a:
f2:1c:67:6f:eb:7a:0c:89:b5:3d:1e:fe:79:b0:87:07:14:82:
3c:31:41:07:ea:6e:ab:20:97:a3:81:a9:86:4b:ce:21:83:fe:
cb:4c:ed:16:34:40:0d:b9:97:da:7c:34:8b:de:2a:87:13:54:
55:f5:e3:bf:9d:5d:67:c2:33:e7:46:2e:a2:76:f2:c2:8a:41:
61:1a:d7:94:4f:16:42:9f:c8:20:e5:5c:18:0c:2c:dc:95:e3:
14:71:5b:38:4a:01:85:7b:95:76:13:b6:96:15:5a:39:42:db:
ed:e4:88:21:58:23:19:62:c8:79:38:8f:88:86:75:84:16:89:
b0:77:89:ae:4a:d0:a3:97:79:b0:48:7c:8e:bd:7f:00:e2:d4:
f7:d3:93:d2:50:86:8d:7f:c7:bd:82:8e:b9:e0:97:24:89:cf:
1d:78:bd:7b:e3:6e:06:0f:18:df:c1:a4:6f:fa:c1:f1:78:6c:
30:4c:87:21:a4:2b:b7:ed:78:e7:44:ee:67:3d:52:69:1b:d3:
78:5a:9c:bb:6e:92:26:0d:66:8e:54:79:24:82:e1:81:ca:09:
5f:a6:c0:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 18:54:25 2024 by rpki-client on console-ams.rpki-client.org