Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/36322e3132322e3138352e302f32342d3234203d3e20333937343233.roa
File: 36322e3132322e3138352e302f32342d3234203d3e20333937343233.roa (raw, json)
Hash identifier: 1XyNzopwExeddqPtrumr74ZAdgh0eswgbNw+J/Snt94=
Subject key identifier: B4:B3:76:83:D0:C5:C8:4C:B6:87:AD:FB:34:64:9C:2B:4C:E9:FE:1A
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 0CC672E2DC964DCE006F2C778EDFCC0FB17796A6
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/36322e3132322e3138352e302f32342d3234203d3e20333937343233.roa
Signing time: Tue 26 Sep 2023 01:59:52 +0000
ROA not before: Tue 26 Sep 2023 01:54:52 +0000
ROA not after: Tue 24 Sep 2024 01:59:52 +0000
asID: 397423
IP address blocks: 62.122.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:c6:72:e2:dc:96:4d:ce:00:6f:2c:77:8e:df:cc:0f:b1:77:96:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Sep 26 01:54:52 2023 GMT
Not After : Sep 24 01:59:52 2024 GMT
Subject: CN=B4B37683D0C5C84CB687ADFB34649C2B4CE9FE1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7d:ae:c5:d4:bf:f2:03:6c:03:5c:1d:0e:e7:
0f:95:db:10:d3:7c:06:2d:50:f6:96:07:18:9e:c0:
61:88:18:94:a7:3e:8c:d5:1a:6d:ce:3c:86:f9:9c:
e1:2c:2b:c4:e7:d6:3b:b0:3f:96:01:16:b6:5a:06:
72:49:57:d2:5e:65:6b:fb:3d:73:49:fc:a9:1a:44:
02:7e:b7:d1:61:fd:a2:84:a8:bb:85:39:ff:85:15:
84:4f:3a:1c:7b:7f:ea:2c:f8:76:3c:e4:58:da:63:
13:24:1e:6a:f5:5a:36:c4:33:54:e9:52:11:19:12:
a8:62:d8:d7:9e:53:8b:4b:15:39:8e:c7:c2:58:a8:
04:22:c7:f9:35:fa:13:e9:10:56:b9:c3:e9:db:86:
64:15:28:48:61:e8:74:35:c8:43:02:39:3d:44:a3:
4a:31:58:c5:e4:7e:dc:bf:2f:19:c2:b4:9f:35:bb:
3e:e1:4e:83:92:cb:ff:e2:27:6a:b0:27:e8:45:70:
3d:bc:1c:56:ab:3c:08:20:57:85:cc:fa:42:c0:c1:
c4:80:33:96:26:9a:3f:aa:02:7e:ef:0b:0e:7e:13:
cc:8f:1c:cd:99:54:c5:8b:2a:36:59:5e:b1:77:90:
c4:e0:f2:49:82:94:d9:cb:4f:cf:7e:88:c8:e8:9f:
95:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:B3:76:83:D0:C5:C8:4C:B6:87:AD:FB:34:64:9C:2B:4C:E9:FE:1A
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/36322e3132322e3138352e302f32342d3234203d3e20333937343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.122.185.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:77:0c:5f:05:94:a1:56:83:5a:a0:27:0f:1c:bb:80:ff:13:
cf:ed:d3:8b:f8:ec:7d:60:04:a2:6a:e3:4e:6f:8d:a4:4b:ff:
ea:74:1f:0d:22:69:88:ca:1f:83:a5:54:8f:77:ff:4b:3e:08:
27:33:e3:50:71:2d:e8:13:6e:ea:d4:91:76:7a:6e:ce:05:ce:
bc:a7:40:a5:fc:7b:23:35:ea:c1:f9:d7:58:8d:be:46:47:24:
eb:8e:a3:ad:89:5d:b4:31:68:b1:7b:06:bd:8f:53:c7:74:e7:
1a:76:ff:bf:57:30:3a:e4:73:b0:ba:b0:05:76:26:30:2c:dd:
64:ee:91:e8:51:53:d2:92:08:74:b2:f6:44:b3:5e:fb:1a:e2:
61:31:3d:4a:3c:d3:82:a2:aa:bf:05:cb:bf:62:1f:87:81:f6:
9f:9c:86:23:fb:d0:03:f8:61:a6:df:dd:55:ae:93:6e:2b:09:
27:50:a8:76:5a:e1:83:8f:ac:16:d3:88:59:c9:f7:59:c4:d3:
e0:dc:67:c5:a5:7c:7e:59:83:33:01:1f:f3:40:ac:01:70:72:
cc:b8:25:d5:5e:d6:52:ac:43:d4:79:49:d5:87:9f:19:1f:d9:
5b:2f:81:5f:f7:62:b6:b2:cc:11:f9:91:80:06:aa:8c:c3:e6:
84:c1:47:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 07:11:46 2024 by rpki-client on console-ams.rpki-client.org