Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3137312e32322e37392e302f32342d3234203d3e203633343733.roa
File: 3137312e32322e37392e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: yj5in1pweFjuodfI77YS0mG7rlwNH7tv+PBZUY8Ldro=
Subject key identifier: 52:06:C3:9F:2B:7B:AC:E2:FC:57:40:80:1C:12:DF:22:54:E5:89:C6
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 53CDC0A894BBCC51D30BCFA828023920BAE7F96C
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3137312e32322e37392e302f32342d3234203d3e203633343733.roa
Signing time: Sun 18 Aug 2024 08:32:01 +0000
ROA not before: Sun 18 Aug 2024 08:27:01 +0000
ROA not after: Sun 17 Aug 2025 08:32:01 +0000
asID: 63473
IP address blocks: 171.22.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.mft
rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:cd:c0:a8:94:bb:cc:51:d3:0b:cf:a8:28:02:39:20:ba:e7:f9:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Aug 18 08:27:01 2024 GMT
Not After : Aug 17 08:32:01 2025 GMT
Subject: CN=5206C39F2B7BACE2FC5740801C12DF2254E589C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:48:12:8b:9a:8a:98:da:cc:ad:ce:08:d7:f5:
26:77:e4:38:c0:1a:fb:9e:2f:ba:2b:50:84:02:dc:
e2:d5:5a:4b:ba:f7:f7:5f:35:c5:99:4b:49:7e:3c:
b2:0f:7a:2d:8a:49:b9:ae:38:01:4d:c6:7d:c4:ad:
d1:43:d7:9c:db:38:1b:82:77:c1:d2:df:3d:8b:3c:
c5:00:0b:a0:2e:22:e7:cd:ab:6f:1c:aa:87:7a:73:
3d:2f:66:5b:5b:59:66:1d:11:fc:5d:da:4d:ff:eb:
53:da:a8:af:ff:03:16:a6:4e:d4:36:b6:0d:c7:77:
42:11:4a:ab:c0:c3:b8:43:d4:d6:1e:bb:01:56:7d:
87:30:ed:05:c1:3a:8a:da:b0:5d:c5:74:22:d1:28:
1e:a3:da:37:ac:52:9a:c2:9e:67:e6:9a:8e:a4:3e:
22:68:63:0a:05:2c:1b:30:b5:6f:0c:a3:eb:85:7a:
f6:04:16:e4:c7:b6:a8:22:d2:12:b6:51:8e:29:7e:
f3:94:61:e1:1a:41:7b:76:3c:10:18:45:c0:6d:5b:
71:04:ae:90:75:cb:96:6e:34:b5:24:98:3d:ee:6e:
29:56:04:bc:96:8a:fc:38:03:de:d1:71:66:5f:0d:
53:34:7c:97:a5:55:31:5c:c4:31:4d:76:b8:d2:94:
60:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:06:C3:9F:2B:7B:AC:E2:FC:57:40:80:1C:12:DF:22:54:E5:89:C6
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3137312e32322e37392e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.79.0/24
Signature Algorithm: sha256WithRSAEncryption
68:8d:d5:23:25:6d:fd:cd:86:42:93:65:9c:5d:ce:97:a0:6a:
af:b6:d1:75:bf:bf:a7:8d:20:1b:56:3e:2f:96:c7:bd:d4:0d:
5e:fd:5c:fe:04:3f:af:04:76:cf:34:83:01:16:61:69:e3:c6:
37:8d:2c:5c:21:6b:88:0c:21:5e:43:95:95:a3:67:3c:7c:a1:
8a:1c:c4:c6:67:78:8d:ea:12:c0:d7:f2:58:e8:67:e8:84:9c:
89:11:b3:d5:aa:c5:05:12:fb:34:78:ce:46:57:81:37:6b:51:
04:2c:3c:18:b9:40:58:ea:2c:0e:d6:57:59:90:ed:f3:f5:8c:
89:3b:4e:09:c7:49:9a:d1:ce:69:e5:53:7d:65:fc:fa:fe:83:
5b:75:26:8f:41:e6:c0:92:e7:bd:09:e7:76:39:ce:59:60:65:
d0:47:65:09:52:60:6c:a8:1d:bf:2e:e1:75:1a:5f:3a:51:85:
04:b9:3c:db:4f:cd:13:ee:1f:7d:eb:f1:0d:81:ec:ea:28:79:
8e:4a:ff:1c:86:05:a8:77:54:d8:ec:9c:9e:b0:ef:e9:2e:77:
7a:e9:2e:11:84:f2:ad:19:13:85:7a:15:de:94:b5:0b:f8:85:
c1:5c:c2:e4:cd:b3:b8:c0:73:f5:39:cd:f3:a8:6d:fc:ab:99:
ae:d1:1a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:43 2024 by rpki-client on console-ams.rpki-client.org