Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/352e3130342e37392e302f32342d3234203d3e20313336373837.roa
File: 352e3130342e37392e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: RBQvSmKFYdif40Hqn3y6hC2DQI9j9sPzWV16kWHwHeQ=
Subject key identifier: 80:E7:31:A2:FD:CA:E4:4B:81:A7:5D:FE:01:E0:13:62:5D:32:4C:87
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 0AFE38EF8AC1A2ECF99238218F0A8F68DBE06F26
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/352e3130342e37392e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:20 +0000
ROA not before: Fri 27 Dec 2024 11:42:20 +0000
ROA not after: Fri 26 Dec 2025 11:47:20 +0000
asID: 136787
IP address blocks: 5.104.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 22:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:fe:38:ef:8a:c1:a2:ec:f9:92:38:21:8f:0a:8f:68:db:e0:6f:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:20 2024 GMT
Not After : Dec 26 11:47:20 2025 GMT
Subject: CN=80E731A2FDCAE44B81A75DFE01E013625D324C87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1b:11:13:f9:ba:ea:ad:5f:0f:ea:9b:56:0f:
28:dd:d0:a8:17:32:c0:a4:bb:fb:ff:26:f2:73:c1:
6d:ab:c6:30:ef:3e:8a:f7:5a:fa:b9:02:5b:f1:7e:
32:e3:ad:80:1b:1a:11:df:4c:0b:ea:60:d5:87:d4:
68:3f:59:3d:c2:cb:53:a6:84:7f:d2:fc:7d:d4:be:
0d:f4:2b:b3:fa:36:f1:0f:b0:98:25:fa:ca:c6:88:
f1:82:ef:8c:cf:9a:74:e6:4c:e0:d9:be:74:ea:9f:
2a:79:38:01:d2:1f:e8:02:fd:38:48:34:58:09:c4:
f6:fc:dc:97:3d:37:83:df:13:5b:9a:eb:2e:d1:2e:
25:c6:1b:b2:63:7b:97:2c:a3:67:d6:70:c2:d7:87:
4b:99:95:4f:1c:31:5e:3d:7b:53:0f:4b:4b:6b:e9:
65:5a:22:76:f8:73:ed:1a:d8:dd:82:66:f2:a8:d0:
55:a7:09:00:c3:ca:6f:82:1c:bc:a3:2c:91:de:b9:
f0:d0:98:7b:a1:de:19:3b:9d:98:98:2d:8e:95:4d:
9d:5a:71:1d:ec:a3:6f:f8:ab:63:20:57:fc:40:d1:
c8:f1:d2:95:cf:a9:45:2c:96:a4:26:46:e8:85:24:
d2:4f:f7:ee:63:af:e6:b0:3d:76:94:e6:fc:cd:28:
f1:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E7:31:A2:FD:CA:E4:4B:81:A7:5D:FE:01:E0:13:62:5D:32:4C:87
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/352e3130342e37392e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.79.0/24
Signature Algorithm: sha256WithRSAEncryption
25:54:a8:5f:50:7b:f9:11:28:82:53:90:24:b7:20:8c:4f:dc:
b0:2c:d2:26:6d:74:d9:dd:94:0a:fd:dd:fa:61:12:e9:c0:79:
57:1e:61:7d:47:ea:4b:53:36:52:e8:81:c1:4e:05:94:5e:9b:
93:8c:07:c8:c8:71:b8:d6:13:37:f8:b9:2a:c8:fa:77:99:51:
87:ed:ee:38:98:4a:45:10:e1:d1:f4:bb:7d:a0:4f:12:3c:43:
2b:fc:a1:5c:99:a8:ba:74:e7:81:78:51:5a:21:9a:5b:98:56:
c2:92:3a:5d:f2:5b:58:48:5a:b3:76:90:95:67:03:ef:a6:90:
16:00:6a:bb:8e:d7:71:ba:6c:74:a9:07:3b:ac:cb:41:d4:d1:
fd:75:b9:f5:33:b0:7f:f6:3c:10:c0:5e:df:1d:80:52:62:43:
cf:a8:ba:8a:45:c0:ff:d3:08:e5:0f:53:88:b0:d1:95:ba:12:
79:48:ba:2a:70:a8:49:84:2f:6a:74:32:d9:43:e8:7d:4a:f1:
f3:01:b4:2a:58:47:1e:ef:0c:26:e3:da:71:4b:d8:da:0b:f3:
16:3b:ff:20:d6:35:92:03:74:63:22:8e:e5:a9:26:34:67:64:
49:fc:18:81:b7:f7:37:b6:3f:5c:f2:92:04:fc:6c:7e:f6:f7:
23:8c:29:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 05:17:05 2025 by rpki-client