Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/36322e3132322e3138352e302f32342d3234203d3e20333937343233.roa
File: 36322e3132322e3138352e302f32342d3234203d3e20333937343233.roa (raw, json)
Hash identifier: siRUc9UrYUtGtst8xmTfZXX5ky0DyjQ9X9pDZzjH32c=
Subject key identifier: 8D:7E:82:00:1E:87:1D:A7:BF:AD:9E:4F:68:5E:93:15:5D:CE:2A:2A
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 62751538378C065983CB88DA90BC492423FE66FB
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/36322e3132322e3138352e302f32342d3234203d3e20333937343233.roa
Signing time: Tue 27 Aug 2024 02:05:19 +0000
ROA not before: Tue 27 Aug 2024 02:00:19 +0000
ROA not after: Tue 26 Aug 2025 02:05:19 +0000
asID: 397423
IP address blocks: 62.122.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:75:15:38:37:8c:06:59:83:cb:88:da:90:bc:49:24:23:fe:66:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Aug 27 02:00:19 2024 GMT
Not After : Aug 26 02:05:19 2025 GMT
Subject: CN=8D7E82001E871DA7BFAD9E4F685E93155DCE2A2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f1:fc:5a:89:52:91:05:06:9e:2b:30:23:55:
9e:16:36:21:f4:2a:c7:74:c6:d6:96:67:6c:24:a4:
1b:8e:2f:be:a4:0f:80:9b:18:87:05:fc:af:b5:5e:
f2:bd:c8:27:c1:4b:d1:f9:b8:4d:d2:92:19:09:77:
d0:aa:be:c5:3f:59:bb:51:e9:77:8d:c4:8b:d5:3d:
5c:ae:e0:c0:7d:4a:46:d3:ed:63:4b:c6:cd:b7:45:
36:d9:42:1a:5f:29:de:40:bc:22:1e:16:d7:f7:bf:
e4:f3:84:c5:d7:8d:f9:5e:76:00:70:46:f5:2e:95:
75:8b:1e:43:50:cf:21:a3:29:f8:6e:61:b6:d7:70:
12:a1:de:9f:10:ef:85:54:be:9b:ec:b7:1d:a5:c5:
5e:ed:ad:de:cc:0f:d0:b9:a8:65:b9:fe:10:0e:a6:
bd:64:47:5c:8a:35:03:7d:93:b3:92:51:6a:ab:8f:
73:75:90:a8:c0:1e:c8:1f:31:eb:be:ed:1c:d1:cf:
4c:6e:87:21:a2:f6:a8:8a:fa:4c:97:0f:99:67:5c:
66:a3:60:bb:22:c2:93:78:b4:23:f2:21:53:1d:dc:
90:db:af:ae:79:76:1e:e0:77:23:a5:14:af:32:3f:
cd:51:2e:bb:5c:7a:de:8d:23:4a:70:4a:3c:28:c6:
60:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:7E:82:00:1E:87:1D:A7:BF:AD:9E:4F:68:5E:93:15:5D:CE:2A:2A
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/36322e3132322e3138352e302f32342d3234203d3e20333937343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.122.185.0/24
Signature Algorithm: sha256WithRSAEncryption
82:0a:33:84:38:6e:0f:ba:3d:23:ad:ae:c1:ec:ce:1a:b4:c9:
6e:c8:2e:e1:54:63:e2:f3:c6:14:3e:ff:c1:e8:3e:fc:a5:f3:
de:ba:40:cc:17:d4:5c:c5:7c:06:6f:38:4c:41:dc:32:fc:7a:
02:9c:ff:3a:d4:48:84:fa:bb:bd:bb:9c:bc:62:85:e9:10:74:
4c:d4:3f:1d:3c:4d:b3:2b:e6:22:55:12:7f:43:18:6a:f7:65:
36:f3:2b:58:7a:e6:f7:31:26:39:dd:4f:51:79:a5:23:1a:ea:
6c:12:84:eb:97:ba:95:51:cc:d6:89:32:c0:d1:94:17:26:a8:
7e:e7:5b:dc:96:b3:7d:c0:83:dd:3d:e7:59:39:88:e3:c1:e8:
21:c9:3b:f4:52:d0:89:66:07:69:aa:92:3b:3c:d7:87:27:ab:
75:1d:64:85:b3:76:ec:a2:07:a8:15:be:81:c1:80:0e:e6:56:
0f:4f:af:ef:7d:62:c0:7b:ec:9c:07:f5:13:c2:6f:5a:b8:29:
ef:f6:3f:89:0d:7e:b8:e9:b8:fd:7c:14:7f:fa:9a:b9:16:f7:
fe:d6:d5:1f:ac:f9:f6:0b:6d:f8:38:17:18:ff:3a:2b:2e:f8:
fe:85:d9:1b:09:74:d8:71:03:35:f8:7b:80:94:48:29:33:20:
aa:e6:67:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:15:24 2024 by rpki-client on console-ams.rpki-client.org