Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/39322e3131392e31322e302f32322d3232203d3e203632333837.roa
File: 39322e3131392e31322e302f32322d3232203d3e203632333837.roa (raw, json)
Hash identifier: lslHNZuP+65Ro3orFmJCft0mFEeJtFXVl/wN9QKrRpI=
Subject key identifier: FE:F3:D7:AD:D6:D5:0C:22:23:46:9B:C2:F8:74:2B:F0:0C:30:61:EA
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 6085EEAA28E724AC754DFE434A09C15AD8F170D6
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/39322e3131392e31322e302f32322d3232203d3e203632333837.roa
Signing time: Mon 11 Sep 2023 16:45:19 +0000
ROA not before: Mon 11 Sep 2023 16:40:19 +0000
ROA not after: Mon 09 Sep 2024 16:45:19 +0000
asID: 62387
IP address blocks: 92.119.12.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.mft
rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:85:ee:aa:28:e7:24:ac:75:4d:fe:43:4a:09:c1:5a:d8:f1:70:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Sep 11 16:40:19 2023 GMT
Not After : Sep 9 16:45:19 2024 GMT
Subject: CN=FEF3D7ADD6D50C2223469BC2F8742BF00C3061EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d6:d0:11:d0:b1:ec:05:28:15:ba:ef:ed:fc:
b8:d0:bf:56:6d:c3:aa:a6:58:80:5d:e7:04:67:a5:
56:d8:eb:5a:b0:f2:9d:92:dd:af:2b:b4:4a:0b:cd:
50:ea:ed:c3:7f:f9:60:58:bd:ce:a9:06:19:ee:f8:
0e:01:5e:3b:4e:2f:95:32:0f:7c:76:8a:2e:2d:6b:
0f:92:d8:55:0a:93:23:6b:b0:c7:fe:53:66:01:54:
ea:55:e6:7d:54:b3:34:5b:b1:29:9d:ba:a4:a6:05:
01:6a:33:7e:32:a8:1c:95:db:70:a0:b8:2f:b7:d7:
cc:da:27:16:92:74:6f:62:1b:3b:70:cd:ea:4f:8a:
80:74:05:af:74:b4:30:53:0d:b5:5b:64:7d:7c:b8:
e9:4c:12:de:a0:03:2e:30:cc:10:5a:f3:e6:55:ca:
71:03:25:33:8c:d9:f7:15:1e:e7:8e:23:09:31:5a:
bd:b0:c2:88:fe:47:fa:a6:57:05:9c:d6:d9:9e:ce:
10:a6:ca:d3:23:de:77:5d:57:de:ed:02:87:b5:49:
e2:3c:a8:47:e2:05:cf:cd:87:e5:a4:b3:9c:9b:13:
3a:02:6f:48:7b:fd:ec:b9:9d:a2:0f:ff:0a:f5:05:
22:8b:82:e6:65:0d:12:f9:73:ab:5e:0f:3f:18:60:
5e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F3:D7:AD:D6:D5:0C:22:23:46:9B:C2:F8:74:2B:F0:0C:30:61:EA
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/39322e3131392e31322e302f32322d3232203d3e203632333837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.119.12.0/22
Signature Algorithm: sha256WithRSAEncryption
69:bc:46:fa:c4:04:7f:e2:f6:ba:39:19:44:7d:a1:bb:17:bb:
8b:70:06:f0:e3:f1:6d:00:2f:46:75:3f:c4:72:13:8b:47:64:
ae:2c:ee:6b:c9:67:33:52:39:94:bb:1d:69:2c:ff:37:fe:15:
2e:a0:34:33:d9:bb:5b:25:1c:2d:7c:25:f4:19:c9:ed:ac:b2:
37:be:cb:db:97:bd:40:01:2d:c9:f1:e8:34:72:d0:b9:c6:b4:
ae:6e:50:65:87:04:19:af:66:17:8f:25:ae:72:f7:59:22:c2:
ee:11:13:84:f9:01:42:b8:86:3a:8c:76:4e:3e:d5:e6:18:b7:
4e:de:72:89:69:3a:41:05:dd:9b:67:e4:9f:2a:21:dd:5f:33:
57:56:cd:0f:73:b4:52:e6:4e:4c:c0:a0:76:07:85:6d:bc:5a:
a2:0f:30:59:cd:98:d6:7f:10:6a:f4:b4:fd:87:d2:45:5f:9c:
4c:33:dd:ee:28:26:e5:54:8c:3d:2d:77:2b:6b:cb:bd:e5:95:
3e:b7:48:dc:63:c4:37:0d:7e:4d:0b:2a:f8:ec:61:07:aa:a8:
26:57:89:3f:5a:9c:91:cc:7b:76:5d:f9:2d:4c:70:41:18:d2:
42:f7:09:cb:f5:bd:46:78:3b:6d:fc:b0:fc:6e:fb:9f:3f:ed:
49:4b:03:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 19:33:51 2024 by rpki-client on console-ams.rpki-client.org