Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/352e3138332e33342e302f32342d3234203d3e20313336373837.roa
File: 352e3138332e33342e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: +C8jQTXNRU+TvarbbjrmqO9Vnzws+yEAbuv1xKz6+u0=
Subject key identifier: 3E:F9:EF:56:63:4A:18:40:B8:16:40:F8:3A:D8:A0:4C:67:A5:D7:7D
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 1C8E01E90DDF2A1B7D264F3752E0FE6D99E58377
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/352e3138332e33342e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 20 Dec 2024 15:23:39 +0000
ROA not before: Fri 20 Dec 2024 15:18:39 +0000
ROA not after: Fri 19 Dec 2025 15:23:39 +0000
asID: 136787
IP address blocks: 5.183.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 14:45:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:8e:01:e9:0d:df:2a:1b:7d:26:4f:37:52:e0:fe:6d:99:e5:83:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 20 15:18:39 2024 GMT
Not After : Dec 19 15:23:39 2025 GMT
Subject: CN=3EF9EF56634A1840B81640F83AD8A04C67A5D77D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2a:82:e9:07:79:ab:2c:b6:7d:8c:b5:4d:90:
e9:d4:ff:c5:df:db:04:ae:4e:d1:8b:ac:68:f1:3f:
5e:f9:c1:19:a6:4e:8e:aa:2e:e4:6f:4c:76:35:16:
9b:93:86:b7:f2:8b:77:b9:6a:31:07:7c:8a:f3:f0:
bc:09:4c:b3:07:39:54:a2:0a:ca:3e:d6:a7:79:b1:
38:e2:51:45:25:d2:85:b2:53:cc:42:5b:be:f5:08:
ae:2a:61:db:cd:94:88:cf:54:fd:53:18:18:c3:b4:
5e:68:4c:06:63:02:92:53:3f:ec:66:19:41:81:39:
95:1e:d8:1b:0a:61:87:43:2f:a8:11:f0:e6:61:ec:
05:88:ba:75:6f:8f:31:cd:11:d0:10:c3:53:9a:e2:
c0:47:d7:4f:04:4f:a1:bf:f4:e8:35:ff:46:fc:e5:
6e:da:51:07:fc:59:87:43:de:83:c3:9b:d6:11:a4:
46:f1:60:67:2a:1a:30:e6:69:42:e9:03:ef:34:cb:
39:6d:a8:73:b3:ab:6f:25:ac:88:6e:8f:eb:a1:b1:
bd:1e:a5:dd:d2:de:06:a4:ba:cc:07:5c:fe:62:c3:
03:e7:26:c1:9e:33:08:ed:f7:c7:ad:f8:f4:19:2f:
bd:b8:b9:47:57:6b:a0:9e:e4:59:a9:4d:7e:ec:be:
ff:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:F9:EF:56:63:4A:18:40:B8:16:40:F8:3A:D8:A0:4C:67:A5:D7:7D
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/352e3138332e33342e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.34.0/24
Signature Algorithm: sha256WithRSAEncryption
40:a3:60:59:29:b9:cb:0a:82:c5:16:65:2a:04:ec:d8:ae:fa:
f0:42:37:c0:9f:01:60:e1:85:ed:f7:04:c8:1a:26:ae:f3:fe:
0f:fb:f1:ba:3c:bc:b2:89:56:76:bf:71:c0:08:ea:29:a9:5f:
6f:af:07:4c:89:68:aa:c6:c8:08:a5:9c:55:ee:57:c4:b1:a3:
c6:59:58:6c:f9:18:8b:73:b5:8f:f7:a2:85:2e:93:9e:f2:31:
de:ff:5d:d2:ce:2f:6e:5e:23:c1:59:25:99:bf:b3:c7:6f:69:
f9:fc:60:30:78:69:d4:77:49:3b:ea:0c:80:b1:07:12:55:77:
ae:c6:21:a5:14:11:ad:a4:f5:f0:ba:70:7c:e5:21:7f:4e:84:
3b:22:d4:b6:ed:d0:b3:12:72:bb:aa:74:d6:91:30:18:21:fb:
a9:07:0e:43:34:b2:26:f3:35:fc:fb:c8:70:34:4c:23:f9:2f:
43:a5:22:1c:64:a2:fd:e4:b0:c6:2e:52:3a:13:49:97:30:b9:
4a:b4:35:16:77:65:83:e4:a3:dd:7d:cf:2d:f9:cc:8a:34:44:
74:b8:ce:fe:70:ff:6c:a9:8a:5b:9b:70:e3:e6:b6:b6:6c:62:
3a:10:b6:60:25:92:82:78:19:bc:e8:40:ec:56:2b:c6:c0:20:
f6:e0:ea:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:11:51 2025 by rpki-client