Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/352e3138332e33322e302f32342d3234203d3e20313336373837.roa
File: 352e3138332e33322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 49mgKXNcS7QLM0gtFtsvEY0pfA/X8+LSR7Dal3voP6o=
Subject key identifier: 0D:A2:05:7E:1B:C1:84:1E:1B:D7:08:4A:52:FF:32:5F:51:37:B1:81
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 7AF89D57793F27DAA23B6C2E5FD203E446BEECF5
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/352e3138332e33322e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 20 Dec 2024 15:23:34 +0000
ROA not before: Fri 20 Dec 2024 15:18:34 +0000
ROA not after: Fri 19 Dec 2025 15:23:34 +0000
asID: 136787
IP address blocks: 5.183.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:f8:9d:57:79:3f:27:da:a2:3b:6c:2e:5f:d2:03:e4:46:be:ec:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 20 15:18:34 2024 GMT
Not After : Dec 19 15:23:34 2025 GMT
Subject: CN=0DA2057E1BC1841E1BD7084A52FF325F5137B181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ca:1f:ad:8e:b9:de:b1:b1:65:7d:cf:4a:f8:
77:c1:35:5e:11:92:c6:68:6f:40:2a:44:3d:05:8d:
fa:60:fc:44:27:81:ae:27:8b:4f:a1:ba:b6:6a:99:
76:d6:67:75:32:2e:56:f7:d0:fd:35:54:96:5a:79:
3b:df:bb:73:cd:1d:a1:db:bf:0b:a2:a4:84:98:ee:
5c:4a:49:29:68:4b:1e:43:41:69:1a:e8:bd:81:a8:
bb:e2:8f:64:85:0a:f8:9a:28:39:de:8f:65:d6:58:
10:d5:b3:a8:74:e8:93:c2:eb:61:e0:f8:e7:59:7e:
2a:52:3a:d9:2b:44:e8:29:f7:27:5a:62:b7:d7:58:
dd:ed:96:e9:17:3e:a7:04:42:fa:3c:62:e3:5d:5a:
71:b3:08:e6:51:cd:58:2c:d9:d0:f3:23:df:bc:3f:
c2:7d:c8:88:a8:bf:75:14:16:a6:a4:35:08:54:33:
05:8b:d5:31:99:0f:28:7d:b3:1e:dc:58:d4:ca:fc:
44:58:1c:b5:3d:fa:96:5f:38:22:c1:ef:ed:4d:ee:
e7:ab:27:03:2d:24:9c:cd:19:d5:72:22:4d:d9:73:
d6:09:b7:a4:51:66:22:34:fe:6f:d6:f1:83:0f:56:
07:32:d6:4c:c7:c3:9b:c8:af:be:cc:b3:f3:47:1e:
fe:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A2:05:7E:1B:C1:84:1E:1B:D7:08:4A:52:FF:32:5F:51:37:B1:81
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/352e3138332e33322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.32.0/24
Signature Algorithm: sha256WithRSAEncryption
53:08:16:35:39:9f:89:30:ad:94:4e:6d:93:1f:62:fa:49:6e:
22:2e:42:1c:f2:4e:41:4c:fa:5e:0d:61:9a:6c:10:76:91:3e:
dc:35:4c:a9:37:d2:cf:ad:4a:6d:10:b9:65:4a:ca:ab:6e:96:
1a:b7:33:36:d9:b8:9b:67:12:87:5d:e9:f9:1e:25:92:13:a5:
a9:03:5f:3b:a5:a3:7e:50:8b:3f:bf:c7:04:5f:53:f6:87:5d:
01:88:08:f1:ab:09:bb:34:1f:89:f9:54:2f:02:10:fe:45:77:
9d:f7:4c:fc:dc:9d:39:14:39:a4:da:74:a1:07:66:37:6a:85:
a6:a4:f7:19:27:30:50:81:c0:db:2f:b1:01:2f:cc:16:cd:a3:
aa:59:f6:09:0f:79:8d:49:6f:56:b7:5a:1f:bf:42:53:c9:97:
39:fb:86:9a:ed:65:8c:12:1a:0b:d1:08:7a:45:44:26:5e:7a:
04:77:1b:fe:90:0e:35:3f:e0:24:ed:65:67:45:1f:b4:eb:a4:
02:d0:e4:06:c8:36:a8:03:9e:15:05:bc:30:44:7d:31:ae:58:
d9:60:8c:e6:a1:47:7e:60:71:f6:b5:62:37:a7:9d:89:2d:4e:
d5:f4:af:a5:2b:24:55:54:90:af:5f:c8:7a:09:1f:cd:ad:69:
5a:39:19:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:42:20 2025 by rpki-client