Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/33372e3134302e3234362e302f32342d3234203d3e20323031333431.roa
File: 33372e3134302e3234362e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: 3h830rQY5N6hrCXWqg8ta1/+vt/aab4rs9GygDtEclI=
Subject key identifier: 03:F0:07:C9:50:E2:4E:BB:95:90:09:2A:8E:69:4C:7A:23:08:0F:9C
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 30EBE60D78A999B01BAE052B8548D599261D32B7
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/33372e3134302e3234362e302f32342d3234203d3e20323031333431.roa
Signing time: Thu 21 Dec 2023 16:14:43 +0000
ROA not before: Thu 21 Dec 2023 16:09:43 +0000
ROA not after: Thu 19 Dec 2024 16:14:43 +0000
asID: 201341
IP address blocks: 37.140.246.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 May 2024 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:eb:e6:0d:78:a9:99:b0:1b:ae:05:2b:85:48:d5:99:26:1d:32:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 21 16:09:43 2023 GMT
Not After : Dec 19 16:14:43 2024 GMT
Subject: CN=03F007C950E24EBB9590092A8E694C7A23080F9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:dd:49:11:8d:9e:67:22:ab:b6:5d:29:92:41:
bd:f2:96:5f:f0:52:30:8b:e2:33:10:99:16:5d:26:
5b:dd:06:07:00:c9:ea:83:c5:1d:7f:02:67:6a:1a:
38:b1:2b:85:07:f4:bb:72:cd:ee:18:75:29:7b:1e:
04:ab:72:da:85:2e:49:25:c4:76:ca:da:03:8f:36:
11:06:69:a1:7c:d3:d7:2b:c8:ea:00:6b:ff:78:3d:
37:90:76:c0:b7:a4:aa:3e:97:e8:b3:6c:ef:7d:8a:
5b:28:64:34:7f:df:ab:c7:8b:83:69:9b:3a:4d:0d:
f9:e6:91:de:31:6b:50:83:bd:d5:ee:be:d7:f5:19:
1f:3b:16:cb:5e:bc:8e:98:07:73:fa:bf:5b:27:e5:
2f:ed:e0:c6:5a:c4:8a:52:ff:92:f6:6b:32:f8:b6:
1c:07:14:22:e4:90:8a:9c:22:8a:db:b2:26:f3:4b:
86:59:3a:1d:48:51:04:8a:90:31:6d:ab:9d:ec:2f:
e9:7b:af:7f:dc:d9:e8:a7:4f:0b:5d:2d:3f:26:50:
2a:04:9a:80:0b:a9:79:64:96:59:99:18:ad:a6:4e:
1d:ee:80:98:7c:c2:f5:49:db:45:37:b4:43:e8:23:
51:d4:ba:81:f0:55:3d:e5:91:43:a3:0e:79:22:18:
5d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F0:07:C9:50:E2:4E:BB:95:90:09:2A:8E:69:4C:7A:23:08:0F:9C
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/33372e3134302e3234362e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.246.0/24
Signature Algorithm: sha256WithRSAEncryption
85:05:72:82:4d:b8:8d:4a:9e:8b:bd:c3:c5:e4:51:c9:93:b5:
dc:97:6d:c9:a0:ef:42:47:1d:6c:bb:94:1e:29:43:ab:d9:a6:
cf:61:b3:6f:c4:fb:9b:68:1f:92:61:8e:3f:32:71:92:3f:b9:
62:e2:bb:33:3d:e6:ea:28:bc:1d:bb:32:cc:01:1c:3e:5e:fc:
bd:13:6f:b1:1b:47:b9:c0:d4:2e:e2:d6:5d:bf:c2:2a:ab:d4:
95:99:91:a4:a9:94:0f:f0:0f:5f:0b:78:74:d6:09:d7:4b:85:
8a:9e:fc:e7:ec:e7:10:1c:8e:10:76:6c:22:5e:7c:1c:a5:05:
66:0f:50:3a:d7:d1:b9:71:7a:f8:c3:5b:57:c2:bb:af:a8:c1:
4e:45:d5:1f:0a:02:d1:d4:d0:08:20:94:92:dd:fd:2d:93:37:
1b:80:96:e6:db:f6:d6:7c:54:e1:f1:83:4b:e8:0e:4e:17:25:
6b:30:8d:ef:65:83:3e:b2:ab:9f:e1:bc:0a:4a:0f:54:54:5e:
be:0e:22:01:14:d1:bc:af:bc:6f:b3:39:a5:65:c0:98:f0:00:
b2:f8:30:22:a2:3d:80:4e:40:45:73:c2:af:98:3c:e3:61:ed:
51:33:5f:ec:eb:b6:cf:dc:41:33:c1:c1:f5:27:2f:83:3e:8a:
a9:89:61:83
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue May 28 21:46:54 2024 by rpki-client on console-ams.rpki-client.org