Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/39322e3131382e36322e302f32342d3234203d3e20323039383534.roa
File: 39322e3131382e36322e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: DpffsCHlUHNVpsghEGNZUnnpelECpp7AuwmSHo2ESw0=
Subject key identifier: 5C:DB:42:AB:85:A0:FA:F1:29:73:32:18:02:56:59:7B:6C:8F:B7:A5
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 7FAA922D62682E3B451AD9F38CAC02D79950CB60
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/39322e3131382e36322e302f32342d3234203d3e20323039383534.roa
Signing time: Fri 27 Dec 2024 11:47:19 +0000
ROA not before: Fri 27 Dec 2024 11:42:19 +0000
ROA not after: Fri 26 Dec 2025 11:47:19 +0000
asID: 209854
IP address blocks: 92.118.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 10:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:aa:92:2d:62:68:2e:3b:45:1a:d9:f3:8c:ac:02:d7:99:50:cb:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:19 2024 GMT
Not After : Dec 26 11:47:19 2025 GMT
Subject: CN=5CDB42AB85A0FAF1297332180256597B6C8FB7A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d8:b6:93:ca:d1:07:41:d4:fd:c1:fa:95:b8:
4f:06:b8:92:d3:5a:47:4a:45:43:f7:4c:d0:c1:fb:
96:7a:99:a6:4e:89:fc:30:34:0e:8f:78:e8:42:ef:
da:f2:58:28:eb:ee:bf:fd:1e:6f:73:f8:7b:3b:7b:
6c:2d:54:65:55:aa:75:38:bf:bc:64:fc:e8:cb:48:
10:26:4c:e9:97:1a:6e:50:02:e4:0d:92:1b:03:1a:
4f:8b:48:08:96:80:28:c9:e1:3d:d8:6b:c6:6f:ae:
a2:c2:94:18:19:32:c6:8e:18:7e:a4:be:72:e2:fb:
4a:b3:f2:8d:88:8a:36:db:17:b1:57:86:8c:f3:84:
d8:9c:21:11:de:e0:49:41:8b:ae:bb:97:9e:64:e1:
81:ae:5f:cb:3a:61:74:28:fc:86:d7:c1:74:f9:9c:
54:99:4c:88:5e:21:1a:f6:15:da:1f:9c:6d:79:13:
37:f5:59:a8:f3:4e:4f:81:2d:41:60:10:d2:ea:ca:
c4:80:bd:ea:78:64:42:f5:38:18:3b:22:56:ad:dd:
26:d4:19:ba:e6:1b:71:b7:2e:24:62:29:30:95:c2:
c1:36:dd:c5:85:36:0f:bf:49:d1:30:86:c7:f6:69:
92:01:b1:7f:03:13:34:15:17:39:50:42:e4:5c:44:
f4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:DB:42:AB:85:A0:FA:F1:29:73:32:18:02:56:59:7B:6C:8F:B7:A5
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/39322e3131382e36322e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.62.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:e0:da:d6:10:54:da:a3:6b:c4:ce:e4:c2:6b:09:86:49:7f:
5c:a2:5f:02:7d:10:f6:b5:0e:8a:02:bc:57:30:14:f1:55:b4:
1b:4f:c7:26:55:20:a1:f6:85:2b:b0:79:a3:7e:10:4f:af:f4:
6c:93:78:c4:1c:c5:9c:51:75:13:72:22:49:cb:aa:8a:1b:f5:
cf:06:d5:69:8a:4c:54:37:18:90:08:9e:98:cd:7f:15:85:a4:
1c:ef:7d:f2:e3:fe:f7:9f:81:f2:59:d4:d0:59:a1:75:31:4f:
72:42:4a:12:bc:dd:2f:fb:46:b8:9e:a9:85:01:79:0a:d6:8a:
9c:53:34:86:8f:94:98:1c:5f:a4:7c:55:c5:6f:50:69:2b:54:
f5:ca:21:43:df:43:f0:31:3f:aa:19:e3:f8:58:0b:ed:82:4c:
2b:61:1d:0c:7c:41:50:d7:05:83:16:73:22:08:1f:2a:ac:47:
d2:25:bd:d8:6c:bd:35:5f:0f:3a:84:08:8e:0e:48:8a:5f:01:
a4:41:9b:e2:4f:fe:c4:22:38:e8:3b:15:a5:78:66:1e:a9:b3:
16:8f:c5:89:62:35:fc:f4:49:50:b7:7e:05:f4:33:31:eb:63:
fe:42:89:dc:a0:dd:34:89:6a:c7:1e:a3:63:1b:04:fe:c0:88:
f9:54:10:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:35:41 2025 by rpki-client