Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/36322e332e33362e302f32342d3234203d3e20313437303439.roa
File: 36322e332e33362e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: 26/dBSTf240BW9aUgJQD85EmewMvwzZmf83v49As/xk=
Subject key identifier: 41:BC:01:67:F8:7A:63:35:84:83:1D:97:F9:68:F7:99:A8:24:33:E5
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 05EDBD84A851D5BBE1DA4E8552A846DBE56BA3E2
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/36322e332e33362e302f32342d3234203d3e20313437303439.roa
Signing time: Fri 22 Dec 2023 07:26:40 +0000
ROA not before: Fri 22 Dec 2023 07:21:40 +0000
ROA not after: Fri 20 Dec 2024 07:26:40 +0000
asID: 147049
IP address blocks: 62.3.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 13:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:ed:bd:84:a8:51:d5:bb:e1:da:4e:85:52:a8:46:db:e5:6b:a3:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 22 07:21:40 2023 GMT
Not After : Dec 20 07:26:40 2024 GMT
Subject: CN=41BC0167F87A633584831D97F968F799A82433E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:59:f5:7f:2e:af:be:de:f1:b3:af:a6:50:53:
18:13:49:ff:99:d8:bd:f2:c8:1f:0d:6f:79:c3:c9:
2c:d9:a2:3c:18:8e:b9:f9:4c:fc:e2:5c:3a:5b:80:
05:90:39:35:33:5b:9c:9e:3a:bc:8e:6b:2c:88:f8:
d3:0d:10:f6:f6:80:ff:94:43:0e:e2:43:50:67:63:
5e:2d:b8:01:e5:de:da:a3:79:86:c6:04:a2:9b:ad:
ad:3f:4c:b2:82:14:da:47:04:70:96:d5:b5:a3:7c:
3b:76:a1:b6:98:5e:69:a3:72:a2:ec:91:11:94:ac:
c8:09:ad:4a:99:67:0b:a5:2d:29:6c:92:06:f6:7d:
51:d0:1b:b6:de:c5:0b:b9:49:13:5a:fd:28:4c:1d:
3f:00:b4:68:4b:51:1c:5f:10:2c:f1:0e:b1:aa:e8:
0a:3e:44:57:a7:01:ec:74:3f:a6:a1:d4:67:68:e0:
b8:96:4d:b2:9f:a9:02:ca:60:e3:2a:56:08:e3:64:
7e:33:5f:dd:b8:eb:e5:b0:44:56:58:89:df:fd:fc:
cb:36:f6:7f:9b:e7:7c:22:ae:80:2d:9f:63:8c:31:
c5:e6:d5:02:bf:cf:66:98:71:40:f9:6f:70:a0:19:
0d:90:bf:d6:84:35:dd:f5:75:62:2e:e4:46:6c:9a:
38:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:BC:01:67:F8:7A:63:35:84:83:1D:97:F9:68:F7:99:A8:24:33:E5
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/36322e332e33362e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.36.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:ef:fb:91:d5:a9:12:47:62:7f:36:9d:4e:c8:58:b8:5a:e9:
93:7e:75:f8:a5:fa:47:45:dc:91:8e:88:47:64:97:1a:3d:de:
b3:65:91:b0:8b:ed:2c:e0:5a:b5:4f:61:ac:64:54:92:a8:1f:
95:8f:fb:7e:68:9d:47:5d:bb:f9:2a:cb:29:50:89:e9:80:03:
a8:b1:2e:62:a2:d9:7d:b1:1c:af:c8:4c:79:2a:11:54:12:08:
5a:8e:5c:ea:1b:9d:1e:56:b7:1f:bb:0b:10:20:d7:22:8d:c5:
a6:d8:cb:36:e7:f6:d6:2f:af:af:9d:f9:7c:4d:f4:ae:11:62:
17:12:01:a8:b7:a0:27:d8:e3:f3:6d:e2:21:b5:1d:5a:dd:15:
a0:f3:8c:06:c4:80:6b:01:3b:fa:39:95:6c:bb:65:79:15:79:
8c:79:e1:fe:d7:da:b5:c4:4d:7e:95:59:1e:0c:2b:d2:47:58:
2c:e6:64:71:8e:2f:01:aa:a6:37:c5:ac:24:2b:3d:eb:71:a7:
f5:83:ba:b7:5e:af:87:83:76:04:23:da:a1:e8:ed:fa:fd:ed:
28:bb:66:5f:f9:19:fa:38:08:47:53:8a:44:ee:c0:79:5f:ed:
24:92:f9:46:9e:a4:a9:a5:05:48:2f:d5:c9:7a:be:d5:6c:02:
5c:b7:dd:a8
-----BEGIN CERTIFICATE-----
MIIFNDCCBBygAwIBAgIUBe29hKhR1bvh2k6FUqhG2+Vro+IwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDk3YTI4Zjc3ZWIwYTRhYzM1NGE4YWMyODc1NGIyYTNi
YmUzYTk1OTAeFw0yMzEyMjIwNzIxNDBaFw0yNDEyMjAwNzI2NDBaMDMxMTAvBgNV
BAMTKDQxQkMwMTY3Rjg3QTYzMzU4NDgzMUQ5N0Y5NjhGNzk5QTgyNDMzRTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXWfV/Lq++3vGzr6ZQUxgTSf+Z
2L3yyB8Nb3nDySzZojwYjrn5TPziXDpbgAWQOTUzW5yeOryOayyI+NMNEPb2gP+U
Qw7iQ1BnY14tuAHl3tqjeYbGBKKbra0/TLKCFNpHBHCW1bWjfDt2obaYXmmjcqLs
kRGUrMgJrUqZZwulLSlskgb2fVHQG7bexQu5SRNa/ShMHT8AtGhLURxfECzxDrGq
6Ao+RFenAex0P6ah1Gdo4LiWTbKfqQLKYOMqVgjjZH4zX9246+WwRFZYid/9/Ms2
9n+b53wiroAtn2OMMcXm1QK/z2aYcUD5b3CgGQ2Qv9aENd31dWIu5EZsmjj9AgMB
AAGjggI+MIICOjAdBgNVHQ4EFgQUQbwBZ/h6YzWEgx2X+Wj3magkM+UwHwYDVR0j
BBgwFoAUCXoo936wpKw1SorCh1Syo7vjqVkwDgYDVR0PAQH/BAQDAgeAMIGYBgNV
HR8EgZAwgY0wgYqggYeggYSGgYFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1OTBi
OTlhZi8xNzcvMDk3QTI4Rjc3RUIwQTRBQzM1NEE4QUMyODc1NEIyQTNCQkUzQTk1
OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2ku
cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NYb285MzZ3cEt3MVNvckNoMVN5
bzd2anFWay5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3Jz
eW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4
YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzE3Ny8zNjMyMmUzMzJlMzMz
NjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzQzNzMwMzQzOS5yb2EwGAYDVR0g
AQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AD4DJDANBgkqhkiG9w0BAQsFAAOCAQEAze/7kdWpEkdifzadTshYuFrpk351+KX6
R0XckY6IR2SXGj3es2WRsIvtLOBatU9hrGRUkqgflY/7fmidR127+SrLKVCJ6YAD
qLEuYqLZfbEcr8hMeSoRVBIIWo5c6hudHla3H7sLECDXIo3FptjLNuf21i+vr535
fE30rhFiFxIBqLegJ9jj823iIbUdWt0VoPOMBsSAawE7+jmVbLtleRV5jHnh/tfa
tcRNfpVZHgwr0kdYLOZkcY4vAaqmN8WsJCs963Gn9YO6t16vh4N2BCPaoejt+v3t
KLtmX/kZ+jgIR1OKRO7AeV/tJJL5Rp6kqaUFSC/VyXq+1WwCXLfdqA==
-----END CERTIFICATE-----
Generated at Sun May 19 17:58:47 2024 by rpki-client on console-fra.rpki-client.org