Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133382e302f32342d3234203d3e203136323736.roa
File: 37372e38312e3133382e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: 67hzJ7+qEviKc+JKiq3KV4OqZ4fSU1BU+NXzASboCBg=
Subject key identifier: 7F:D2:7D:65:B2:D4:D1:2A:69:F6:FC:D5:97:D9:4A:33:8A:92:EB:30
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 3AC26712A1B5F1D6F0DD40FEE9C6068C64B4F7F8
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133382e302f32342d3234203d3e203136323736.roa
Signing time: Sat 05 Oct 2024 23:20:02 +0000
ROA not before: Sat 05 Oct 2024 23:15:02 +0000
ROA not after: Sat 04 Oct 2025 23:20:02 +0000
asID: 16276
IP address blocks: 77.81.138.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:c2:67:12:a1:b5:f1:d6:f0:dd:40:fe:e9:c6:06:8c:64:b4:f7:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Oct 5 23:15:02 2024 GMT
Not After : Oct 4 23:20:02 2025 GMT
Subject: CN=7FD27D65B2D4D12A69F6FCD597D94A338A92EB30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:24:8b:36:8e:05:89:59:4c:ca:e9:07:03:58:
e2:a7:18:7a:ec:65:fc:3b:d5:ee:7d:a9:4b:d9:bf:
88:c0:c2:23:14:79:68:98:61:cf:c3:b7:c6:79:5a:
fa:de:cb:96:c3:29:3e:69:20:1c:44:70:8e:34:14:
a2:43:27:c1:55:9c:1a:20:04:1f:cd:45:12:56:3f:
03:df:67:e4:cf:cf:f2:59:b2:07:94:2a:68:a1:8a:
61:12:ea:72:fc:3f:32:fc:34:87:f6:9a:e5:ba:f0:
11:a9:85:96:00:a1:2e:3e:0c:69:aa:ff:c2:65:90:
9a:79:58:44:72:cf:b1:e6:b4:2b:19:53:67:01:12:
52:96:25:31:e0:56:fc:74:ab:21:84:c8:9d:23:61:
e4:26:d2:97:44:8f:46:7e:a9:c7:d2:a0:1f:d3:79:
e1:c5:97:17:8e:4b:b5:b6:cf:1b:48:a8:fa:2d:bc:
87:81:30:3e:10:59:d0:85:d6:01:ed:24:92:da:6c:
f3:0d:00:14:c1:a2:29:fe:d5:a1:25:07:a9:6f:05:
12:41:13:54:9d:12:74:bf:c0:b6:e2:f3:6a:1a:3e:
64:2c:ea:f8:13:03:0a:e9:9d:17:66:be:f8:df:6b:
1d:f1:a2:11:ff:b4:fe:5c:9c:cd:c4:d7:0b:99:f6:
51:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:D2:7D:65:B2:D4:D1:2A:69:F6:FC:D5:97:D9:4A:33:8A:92:EB:30
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133382e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.138.0/24
Signature Algorithm: sha256WithRSAEncryption
78:3a:35:3c:70:0f:6d:6d:15:8d:c3:b5:88:55:a3:08:ea:c4:
52:75:71:d1:de:3e:ad:d4:03:58:b3:5c:4f:66:ec:95:dd:4e:
a0:57:e6:b7:4a:30:16:59:76:6b:aa:6a:1e:85:40:08:cd:6a:
61:01:f7:62:66:44:23:ad:77:0f:40:7e:da:7f:2c:b7:8e:d2:
26:42:df:97:37:f9:e2:bf:48:43:6b:0b:39:8e:4d:64:24:26:
70:d1:2b:8d:5e:ab:02:df:8e:e2:1f:8e:c0:3b:57:ea:08:3d:
65:41:e1:7b:a6:77:6d:a7:ff:6a:47:0b:e1:18:c9:e0:59:7b:
58:c8:88:c1:a6:5b:b5:f7:89:27:c9:cb:99:65:0b:56:ad:9d:
aa:8a:da:d7:d3:86:0d:07:4c:35:d0:3f:9b:81:d3:df:0e:4c:
d4:25:cb:02:b4:b1:c5:49:a7:bf:5e:e8:72:ec:21:ee:10:94:
e2:87:26:e6:b8:e7:67:0f:3f:63:ec:e8:d4:4d:c0:8e:56:e1:
86:a9:ed:63:07:c6:3a:5c:9c:e9:ea:31:a1:ba:90:8f:ff:14:
fe:e1:33:6d:02:c8:a8:2b:2c:94:78:5d:16:78:a3:5b:94:10:
38:c2:27:4c:2a:fd:75:3b:aa:21:6c:21:13:af:b8:3d:81:d1:
07:7f:96:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:14:52 2024 by rpki-client on console-fra.rpki-client.org