Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/39322e3131382e36322e302f32342d3332203d3e20313336373837.roa
File: 39322e3131382e36322e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: OhSwQSCYeIEmrgzajw6PX2LarxzFnHPuHk2XwACMtlQ=
Subject key identifier: 70:17:95:48:90:07:C9:75:60:4E:4A:10:45:98:76:43:86:40:FE:9B
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 2F69D7C52D21B01E3FF7A50D84BA0FDDF8582473
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/39322e3131382e36322e302f32342d3332203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:40 +0000
ROA not before: Fri 27 Dec 2024 11:42:40 +0000
ROA not after: Fri 26 Dec 2025 11:47:40 +0000
asID: 136787
IP address blocks: 92.118.62.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 10 Apr 2025 02:18:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:69:d7:c5:2d:21:b0:1e:3f:f7:a5:0d:84:ba:0f:dd:f8:58:24:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:40 2024 GMT
Not After : Dec 26 11:47:40 2025 GMT
Subject: CN=701795489007C975604E4A10459876438640FE9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7e:47:65:06:80:86:89:a7:c9:f5:2a:ee:db:
a0:c5:c3:99:21:74:c3:b2:ba:16:59:e1:b1:f4:58:
23:25:8c:8e:0c:af:8f:ab:65:66:cc:f6:00:c2:1d:
eb:12:90:f2:ca:88:a9:e2:93:e2:58:40:66:97:b5:
33:2e:1a:b5:e9:30:52:ba:98:d9:13:cf:07:87:67:
15:f3:e6:e4:11:2e:f2:d0:13:c2:a4:f6:d1:97:f5:
7f:62:dd:34:50:69:ac:31:09:c1:32:a9:ec:a9:b5:
62:0f:e6:c0:79:0d:62:58:2b:9a:e0:bf:e3:7d:12:
33:b7:89:34:aa:3f:a3:cf:ac:3c:6d:db:ba:bc:aa:
94:6a:a5:32:ad:b8:12:1c:6c:18:e1:b4:fa:59:e2:
1f:31:86:0f:25:af:eb:94:24:d6:47:aa:a0:53:50:
51:ad:7b:73:d4:3e:f1:5e:0b:fc:05:de:24:7d:a8:
58:0b:c8:89:c8:82:54:0a:89:06:77:da:64:23:d5:
2f:e3:6a:37:ef:84:9c:b6:5e:03:ad:64:2a:dc:87:
1d:e1:12:a6:42:88:cf:3c:ff:78:c6:bb:cc:f0:47:
0d:a3:00:d4:7e:f0:ed:7b:b2:fc:1a:ad:34:27:50:
42:be:12:ac:09:8c:6e:45:39:14:7b:59:69:88:7a:
68:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:17:95:48:90:07:C9:75:60:4E:4A:10:45:98:76:43:86:40:FE:9B
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/39322e3131382e36322e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.62.0/24
Signature Algorithm: sha256WithRSAEncryption
60:d4:a2:bf:4c:2c:6f:97:e0:43:24:42:3f:1c:33:90:9c:9c:
76:9c:3f:43:fc:54:d4:b8:62:83:55:8a:bd:9d:47:b2:96:1d:
1c:3b:b3:a8:49:e9:02:2f:a0:19:d3:bd:8e:6d:a7:70:f9:9e:
dd:81:72:84:c0:ac:c6:66:9b:90:21:3f:7e:32:6e:78:d6:5f:
9a:24:f3:b5:47:df:9a:b1:e7:91:76:83:75:7d:83:4e:c2:00:
42:a6:b0:af:fd:25:4b:64:1b:fb:e4:03:4a:8e:7d:7f:27:f4:
06:20:31:17:76:70:5e:17:4b:bc:84:a7:fc:62:f5:a5:c0:af:
a1:62:bd:a2:c2:c8:eb:90:17:91:df:50:1d:48:3b:f5:b5:ee:
3b:b5:e7:11:a7:1b:2e:f1:b0:95:37:7c:ae:dc:50:5c:47:9a:
b0:74:a5:af:e1:ed:52:f6:47:01:bb:b2:45:76:5a:32:7b:69:
b8:b4:a5:99:89:3b:8f:20:59:cd:10:eb:b5:d4:99:2d:be:72:
fa:3c:26:4c:82:27:bd:59:3c:14:03:74:9d:9b:94:03:5f:db:
4a:35:00:b5:a0:7f:d4:90:4a:e3:3b:69:79:26:f0:a7:f5:78:
de:78:d1:2b:ae:3f:8f:32:17:87:5a:98:22:59:ee:0e:9a:32:
15:66:51:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 10:23:18 2025 by rpki-client