Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/36322e332e33362e302f32342d3234203d3e20313437303439.roa
File: 36322e332e33362e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: BN8PIgx8wj89CRntyGSPiF8fqD5uP0XORe/X+NV1b7g=
Subject key identifier: C7:1B:69:99:D7:67:4B:76:D1:6B:6C:DC:DF:3A:F0:93:DE:36:3F:0D
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 48D88432BE1CB7C2860A2A3DF7C17274C901B96D
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/36322e332e33362e302f32342d3234203d3e20313437303439.roa
Signing time: Fri 22 Nov 2024 07:44:22 +0000
ROA not before: Fri 22 Nov 2024 07:39:22 +0000
ROA not after: Fri 21 Nov 2025 07:44:22 +0000
asID: 147049
IP address blocks: 62.3.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:d8:84:32:be:1c:b7:c2:86:0a:2a:3d:f7:c1:72:74:c9:01:b9:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Nov 22 07:39:22 2024 GMT
Not After : Nov 21 07:44:22 2025 GMT
Subject: CN=C71B6999D7674B76D16B6CDCDF3AF093DE363F0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7c:42:da:8a:2c:26:26:3f:06:17:b6:fc:b1:
bd:23:47:65:1a:f5:2c:37:9f:4e:16:2c:1f:ea:61:
7f:41:b8:bf:21:11:47:ec:b3:d1:1a:60:3b:39:9b:
d0:ae:c6:d4:8b:54:5b:c0:09:60:ab:1b:53:c2:76:
0a:50:4f:6e:84:51:9f:51:ff:8f:20:a1:42:a6:a3:
09:10:ae:b9:36:1f:6f:20:40:97:15:50:ba:d1:53:
ba:00:b8:48:8d:11:d9:37:59:61:e9:7c:7a:3b:77:
6c:06:90:af:bd:3a:43:66:c3:1f:93:fd:bc:f9:e0:
db:d4:3a:f8:a8:b6:ee:53:8a:5f:54:8e:2d:6b:4c:
d5:fe:7e:ef:08:08:21:42:b2:37:0b:34:fc:8b:da:
25:a5:ea:ff:83:55:78:55:ab:59:a4:81:41:24:14:
93:cf:09:1d:42:b1:5c:48:5f:c3:4c:ad:7a:4b:83:
8d:45:4c:4e:c4:0a:9c:ad:19:df:f6:d2:ca:48:52:
1a:3d:eb:d8:c2:bb:1a:63:7c:38:51:5a:36:96:b0:
cf:ee:75:4f:23:a6:7e:aa:f3:ef:f3:b9:1f:23:8e:
05:96:e7:85:cd:c5:f5:0c:70:98:e2:f1:93:e4:f7:
93:91:f3:d9:3c:dd:8c:12:a7:35:d1:c0:f7:72:c6:
7d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:1B:69:99:D7:67:4B:76:D1:6B:6C:DC:DF:3A:F0:93:DE:36:3F:0D
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/36322e332e33362e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.36.0/24
Signature Algorithm: sha256WithRSAEncryption
51:3b:5f:e5:9c:73:4e:ee:7e:e1:31:d4:fd:6d:ed:1f:5c:29:
73:19:83:f8:f2:e8:c2:42:81:93:44:62:47:59:33:4c:89:2c:
72:e1:7f:fc:d8:e4:01:e3:0b:34:3b:ab:e0:63:d2:94:dc:1c:
fe:42:19:de:8f:7c:c9:00:8f:09:b4:4f:71:ae:98:b9:d5:bd:
2b:a4:40:2f:92:d3:73:00:b0:bd:f5:06:76:1e:cd:59:ce:6f:
c5:2b:e0:13:2e:40:38:67:3c:2f:5c:98:f6:55:35:dd:b5:6a:
bc:a2:d1:80:a8:5b:4d:2a:b7:b0:52:fe:42:01:09:04:e3:21:
59:87:87:e8:94:fc:de:ae:76:92:de:c7:e6:19:fe:5c:ca:ac:
18:b1:4b:77:77:30:ef:d0:11:94:b0:f3:11:a4:8b:61:f6:9b:
30:78:d7:0d:96:07:30:4a:f2:55:31:94:d5:3a:10:53:f3:d8:
47:26:95:a5:8e:dc:35:e8:4c:6f:5a:57:c9:7f:08:60:2f:38:
11:a7:9e:ee:23:3b:fc:ab:40:90:4b:f7:60:7f:62:3a:8f:93:
db:4c:32:95:e7:ce:2a:81:02:22:a0:fa:10:00:60:4d:0a:fe:
de:84:34:f6:50:fa:30:92:1f:38:d9:d6:e9:a2:ce:b8:32:bd:
5b:d9:8b:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:44 2024 by rpki-client on console-ams.rpki-client.org