Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3137312e32322e37372e302f32342d3234203d3e20323130393330.roa
File: 3137312e32322e37372e302f32342d3234203d3e20323130393330.roa (raw, json)
Hash identifier: YIyV7lW9Nqd91JET4ko8mZ7zZt7/fRvZVyH6AX4wF7s=
Subject key identifier: C0:5F:06:52:EA:3F:D2:41:67:16:33:39:D8:7F:3D:35:08:9A:57:26
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 4D1183152DCEF7891DFE7086460F4920BB949065
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3137312e32322e37372e302f32342d3234203d3e20323130393330.roa
Signing time: Tue 02 Jul 2024 15:05:18 +0000
ROA not before: Tue 02 Jul 2024 15:00:18 +0000
ROA not after: Tue 01 Jul 2025 15:05:18 +0000
asID: 210930
IP address blocks: 171.22.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.mft
rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:11:83:15:2d:ce:f7:89:1d:fe:70:86:46:0f:49:20:bb:94:90:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Jul 2 15:00:18 2024 GMT
Not After : Jul 1 15:05:18 2025 GMT
Subject: CN=C05F0652EA3FD24167163339D87F3D35089A5726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:e4:cd:ac:fb:28:91:98:16:b2:1f:7f:a8:46:
97:22:84:f9:d9:18:7f:6f:38:6d:8c:27:13:76:56:
68:d6:01:4b:46:ae:dc:1a:2d:bc:e2:13:4d:6a:97:
8d:12:8b:33:92:6a:58:2d:0f:de:6b:86:8a:f9:93:
86:a4:5d:eb:64:d2:35:78:38:a4:7a:4a:3f:a1:e3:
ca:f9:1a:2d:3a:89:e3:93:59:df:db:83:ef:e6:47:
f3:af:ee:e4:5b:45:62:8c:b0:9b:a9:a3:f2:d0:26:
e9:16:2d:90:f4:3e:7b:d2:16:0c:d3:de:f6:f9:1f:
ac:8b:2b:c7:84:97:1c:76:ea:64:b8:97:60:af:7c:
44:04:b8:8c:c2:74:09:13:b4:4b:3f:9a:d6:7f:10:
87:a8:4f:d6:1d:15:df:41:ae:c9:0d:15:83:e0:d8:
e2:e4:9c:b6:cd:32:9c:7a:4e:96:65:6b:6d:b5:6a:
54:08:fa:e0:18:53:6b:4f:1f:1f:a8:84:39:0e:e5:
38:c6:26:26:20:11:9f:d4:89:3a:ba:6f:b9:46:b6:
c4:fd:bb:7e:ae:1d:d5:06:9e:4a:9e:17:28:3d:0e:
16:d7:07:92:7c:ab:3a:b8:c0:ae:a1:e3:0b:6c:a6:
e3:4e:31:1a:40:ed:80:30:a1:60:d2:cd:17:44:32:
f9:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:5F:06:52:EA:3F:D2:41:67:16:33:39:D8:7F:3D:35:08:9A:57:26
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3137312e32322e37372e302f32342d3234203d3e20323130393330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.77.0/24
Signature Algorithm: sha256WithRSAEncryption
61:9d:2a:9c:0e:21:df:ee:fa:a8:56:5d:47:cd:5a:8a:9f:d4:
cf:9a:71:d8:07:2a:32:26:5e:d6:56:df:14:17:bb:dd:c1:84:
8a:5a:33:d7:43:72:bf:e6:74:c2:c2:db:55:5a:b1:bc:12:f1:
74:d1:56:68:58:4d:5e:1b:30:6f:7a:d3:2c:45:dc:a3:88:1f:
33:54:07:9d:cb:9a:40:d4:f6:4f:13:d1:77:76:57:05:d4:66:
5d:a7:35:59:a8:70:60:9d:87:ee:2f:42:a9:14:98:ce:ac:4b:
a2:c7:2d:85:10:05:3c:13:c5:9f:b4:a4:45:61:09:02:03:eb:
eb:6f:26:1b:e5:a0:6e:3c:41:c1:5b:c2:91:74:96:38:3e:4b:
38:1e:a9:06:76:7d:82:76:65:ef:d4:08:11:68:af:ce:25:ba:
cc:55:bc:70:ee:15:67:95:c7:7d:b9:e0:c8:9a:c8:4f:df:55:
8d:ce:d4:58:17:b8:04:20:b0:42:14:f0:5d:69:4a:05:7f:2c:
02:4a:cc:87:cf:3b:80:f6:90:29:c7:6a:69:c0:f2:2a:d1:d7:
02:2a:04:2a:55:70:0a:dc:17:ad:30:47:0b:6e:25:d8:35:92:
8c:da:31:ee:59:8b:0a:ea:2b:41:75:3e:84:01:6a:24:ee:44:
09:b2:30:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org