Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3137362e3131332e37392e302f32342d3234203d3e20313336373837.roa
File: 3137362e3131332e37392e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: t0Bk+Gv06M+l/EfsaesJCK1xGtBQdt1uYAvHt6VdyUE=
Subject key identifier: 63:A4:FC:FE:D1:AA:63:28:74:B7:AA:C0:40:2C:F0:EE:FF:0B:5D:C0
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 5AD62CC9A2062FF82D94006CC1AC50990BE08F2C
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3137362e3131332e37392e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 20 Dec 2024 15:23:35 +0000
ROA not before: Fri 20 Dec 2024 15:18:35 +0000
ROA not after: Fri 19 Dec 2025 15:23:35 +0000
asID: 136787
IP address blocks: 176.113.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 14:45:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:d6:2c:c9:a2:06:2f:f8:2d:94:00:6c:c1:ac:50:99:0b:e0:8f:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 20 15:18:35 2024 GMT
Not After : Dec 19 15:23:35 2025 GMT
Subject: CN=63A4FCFED1AA632874B7AAC0402CF0EEFF0B5DC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:55:c7:a5:7b:21:36:04:76:85:a0:24:90:df:
29:30:e9:2d:42:b8:7c:58:27:ce:44:5d:ea:c8:93:
c2:62:98:b9:41:6a:ef:8f:e0:ad:62:95:35:ed:d0:
e2:62:f6:5b:f7:02:f7:a4:c0:e2:d9:38:29:fa:d8:
7b:08:b6:cd:82:21:1d:5f:8b:fe:fb:de:d6:06:83:
2d:a2:4c:04:83:7e:2b:52:2b:8a:44:c7:55:ea:05:
72:de:98:de:91:15:15:19:41:f1:f2:11:51:15:7d:
8d:ac:35:59:cc:3d:f0:2b:92:55:3b:cf:9f:a4:d6:
d9:e8:14:ab:59:70:b2:85:fb:c4:17:77:7d:1c:f8:
a3:a1:1a:9c:c7:31:70:ef:e4:1e:d9:c2:87:cc:ee:
3b:86:8e:f5:c3:e5:5e:9f:82:4a:17:6f:57:21:b9:
7c:c1:55:00:90:b2:7e:6b:d9:be:8d:3c:39:35:fc:
89:eb:7e:4c:84:3a:e3:bf:7a:aa:05:1c:79:fa:3e:
ef:bc:cf:af:77:4d:80:ca:c2:d4:8a:66:9c:a3:ad:
89:9d:29:82:24:99:e3:21:1e:12:9e:71:74:a4:ba:
cf:14:28:82:17:28:00:40:f7:f4:dc:df:fa:af:b0:
a5:15:ce:56:69:4c:46:cc:37:87:71:44:f0:94:9a:
16:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:A4:FC:FE:D1:AA:63:28:74:B7:AA:C0:40:2C:F0:EE:FF:0B:5D:C0
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3137362e3131332e37392e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.113.79.0/24
Signature Algorithm: sha256WithRSAEncryption
97:18:75:4e:27:be:c8:db:79:82:dc:5f:b1:7b:64:8e:8b:45:
1b:e2:b2:73:ba:93:9e:dc:39:9a:51:10:45:26:14:df:b1:b4:
74:7e:1e:d2:4d:e4:94:7b:10:82:8e:45:8a:72:04:be:60:ca:
de:2b:86:25:37:2b:07:cd:a8:16:1e:90:90:38:b5:59:35:a0:
0d:4f:7a:04:2b:b5:c1:1d:65:d5:85:81:65:05:33:e2:96:b6:
1d:3b:9a:f1:a5:55:b4:8a:90:a6:b7:74:df:7b:2e:59:fc:60:
d1:80:04:12:ab:2d:cf:75:46:95:42:83:a3:61:88:12:40:98:
6a:50:d6:51:2e:90:5d:45:9e:8d:24:1f:3c:9c:f9:2d:3f:28:
1e:ee:49:4a:98:55:74:e5:ab:5e:85:bd:d2:9d:31:42:97:2f:
23:d6:1a:8d:f9:35:da:07:c8:ea:30:c7:1a:44:bb:00:48:e1:
32:15:fd:d0:ff:de:9e:98:fa:3c:62:99:07:56:f9:64:3f:10:
00:c1:7c:99:df:c1:59:d1:b9:dc:a5:4a:a6:60:99:81:af:d6:
aa:8b:36:84:04:c4:42:c1:a6:f7:03:58:2d:02:11:d3:86:c2:
bc:29:4a:20:89:a7:4c:39:33:be:57:81:9d:3e:e9:fa:cc:f9:
9b:81:9a:97
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 00:20:05 2025 by rpki-client