Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/36322e332e31382e302f32342d3234203d3e20323136323931.roa
File: 36322e332e31382e302f32342d3234203d3e20323136323931.roa (raw, json)
Hash identifier: v1QUuec4IlaRWF8qnXoGfrjTuKu4oRihpEuFp0L+VI8=
Subject key identifier: F5:69:B5:BD:71:3B:26:C6:4E:C9:99:64:92:0A:60:2D:D7:3A:2F:F8
Certificate issuer: /CN=cefce449bea8deaedb1804dba25c584df5873dc4
Certificate serial: 03C92822DBE7ABB34C5169FB338E0D5DD7530067
Authority key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/36322e332e31382e302f32342d3234203d3e20323136323931.roa
Signing time: Wed 06 Nov 2024 07:43:27 +0000
ROA not before: Wed 06 Nov 2024 07:38:27 +0000
ROA not after: Wed 05 Nov 2025 07:43:27 +0000
asID: 216291
IP address blocks: 62.3.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:c9:28:22:db:e7:ab:b3:4c:51:69:fb:33:8e:0d:5d:d7:53:00:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Validity
Not Before: Nov 6 07:38:27 2024 GMT
Not After : Nov 5 07:43:27 2025 GMT
Subject: CN=F569B5BD713B26C64EC99964920A602DD73A2FF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fb:b8:f9:6f:9f:e8:c8:75:ca:81:db:ff:00:
b6:80:47:0a:ac:89:79:f6:46:75:46:ba:a0:2a:19:
e3:d7:78:c5:78:16:69:28:a9:f4:9b:52:61:59:c0:
2b:ec:a7:e7:55:a3:82:d3:dd:2c:b1:29:e5:84:87:
8c:3a:04:a1:ae:bb:bd:ef:c3:b2:e9:2e:cf:ca:d1:
9f:d8:8f:8e:05:ba:02:21:17:8b:f5:68:3d:5b:b8:
73:fd:31:b6:12:e7:68:e6:dc:a9:fd:4d:1a:58:c6:
bf:1d:3f:bd:d1:22:bf:86:c1:fe:06:01:bf:46:cc:
8b:a8:19:45:58:30:f8:fe:ae:bb:ae:32:4b:32:62:
cb:2c:3b:d3:e3:6d:ec:50:c1:15:6d:e8:fe:c7:03:
4f:e8:f6:1b:b0:31:a0:2d:ed:c7:fd:65:9b:9b:52:
b6:4e:47:1d:a0:38:ea:56:82:be:69:65:4f:35:55:
79:83:fc:21:9c:a3:d0:9a:89:d2:cf:f6:3f:83:ee:
39:10:74:03:e3:83:d5:48:c8:53:38:fb:f2:17:f9:
4a:e8:cf:2a:fc:7a:1e:e6:74:de:08:85:15:3c:f5:
6a:46:b7:8b:33:b1:76:77:92:6c:05:54:b6:be:c3:
3a:1e:b7:ab:c6:6f:fd:54:00:59:ae:f8:76:bb:5d:
2d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:69:B5:BD:71:3B:26:C6:4E:C9:99:64:92:0A:60:2D:D7:3A:2F:F8
X509v3 Authority Key Identifier:
keyid:CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/36322e332e31382e302f32342d3234203d3e20323136323931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.18.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:75:c7:6d:49:1f:32:8a:6c:e9:cc:33:de:95:a4:8d:9a:07:
74:88:49:5b:e5:7a:01:8e:27:c7:c7:a7:af:8f:68:55:4b:2c:
cc:43:31:16:63:b0:4e:ed:7d:5d:b6:0c:04:56:81:1e:ed:3d:
0d:01:f6:3b:56:53:34:f7:05:7e:86:8e:23:13:8f:75:5b:bc:
ab:8d:82:f5:cf:ed:d7:ba:17:a6:87:fe:28:ae:23:b0:cb:ec:
66:11:37:25:96:5d:98:2a:e8:f2:ff:b7:15:5e:fa:2d:e2:78:
17:63:6d:14:a8:ea:39:33:0f:be:78:84:ef:8b:06:97:e6:f7:
57:3a:4e:02:a5:5e:d4:80:b3:56:e0:b5:67:9d:df:be:4e:57:
7b:ba:56:05:f7:a0:90:20:2f:f0:5b:06:05:bf:f6:fd:c1:43:
bb:3d:1e:71:19:bf:4b:95:71:57:e7:9b:49:58:66:aa:9c:76:
3e:f9:20:1b:50:f7:13:71:1b:13:3e:4e:6b:c9:94:e4:26:03:
c2:a8:b8:ff:57:4f:81:59:51:92:ae:aa:e3:70:68:f8:03:d7:
76:02:9a:f7:37:ec:d1:76:b4:23:01:c2:9c:09:80:ed:4a:55:
85:22:08:86:40:71:c8:5e:cc:1d:97:5a:8c:de:52:df:58:9c:
db:80:f1:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 19:59:02 2024 by rpki-client on console-ams.rpki-client.org