Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/39322e3131392e38332e302f32342d3234203d3e20313336373837.roa
File: 39322e3131392e38332e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 7Q3ya4szxhoHvvVuX0KWkw6Jfj80yXbvFZ5vlUEy3g0=
Subject key identifier: 48:C6:88:71:AA:44:1D:10:92:8D:A0:DE:1B:B6:3D:DB:65:B7:F9:CF
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 6B0A92F6A748A1BCF6E56D150418F45318D62904
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/39322e3131392e38332e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:47 +0000
ROA not before: Fri 27 Dec 2024 11:42:47 +0000
ROA not after: Fri 26 Dec 2025 11:47:47 +0000
asID: 136787
IP address blocks: 92.119.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 14:45:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:0a:92:f6:a7:48:a1:bc:f6:e5:6d:15:04:18:f4:53:18:d6:29:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:47 2024 GMT
Not After : Dec 26 11:47:47 2025 GMT
Subject: CN=48C68871AA441D10928DA0DE1BB63DDB65B7F9CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:bb:ac:3c:d3:c7:00:b1:e9:11:3c:bd:6c:e6:
2f:65:84:06:35:ba:5d:df:83:c2:89:41:75:f2:e0:
d4:cb:c0:45:64:f6:86:90:e9:a2:a3:49:50:f9:14:
9b:c9:92:1b:58:42:3d:16:c9:ae:ff:c0:0a:41:fe:
8e:da:da:5a:f3:6c:54:ef:43:a3:fc:14:d8:65:96:
2b:14:43:43:5c:80:ba:18:9f:f0:66:e6:c8:38:1f:
25:87:b7:65:4e:59:07:21:de:40:a4:5a:c0:a3:61:
64:42:30:c3:07:58:4d:ec:8c:06:a5:99:e7:2f:6a:
9c:6f:e5:bc:ee:9e:f9:60:17:79:23:5c:b1:9b:e1:
f6:e9:d4:a2:49:06:a9:30:c3:1b:05:5e:26:b3:ea:
5e:ba:5f:4d:5c:14:35:44:6d:74:f9:20:ff:12:0c:
ac:a7:22:8b:a2:02:79:bc:08:10:f8:a0:63:53:d0:
11:89:91:4e:a0:b2:bc:a2:69:02:1f:1f:ed:55:2b:
98:88:60:29:d9:c4:ce:1c:d5:7a:56:72:81:e2:dc:
10:a7:9c:66:4f:ee:a6:03:d6:a3:55:a2:ca:bf:be:
93:ee:72:34:54:1f:c8:f3:f4:ee:2e:21:50:2a:89:
82:91:68:f2:93:54:0e:f9:ec:34:41:9d:71:ab:b5:
02:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:C6:88:71:AA:44:1D:10:92:8D:A0:DE:1B:B6:3D:DB:65:B7:F9:CF
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/39322e3131392e38332e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.119.83.0/24
Signature Algorithm: sha256WithRSAEncryption
48:fe:34:b1:0a:a3:36:c5:67:1c:88:f0:b4:8b:2c:e8:45:f8:
20:1c:ee:b3:8c:82:7e:ea:cc:68:1b:c7:69:b0:d2:a0:1d:4f:
1f:bd:f1:c6:a6:78:11:44:de:f2:26:2f:eb:9f:3f:cb:8c:80:
2b:44:b5:d9:b8:af:e0:7a:ef:15:0f:14:52:6e:32:5b:fe:64:
34:22:06:0b:25:a8:06:a3:d3:d8:59:d6:59:5e:f6:2d:c6:39:
84:2f:99:9d:47:a7:e4:65:89:e5:44:a0:09:aa:db:b3:97:a3:
a8:15:98:06:0a:ff:67:77:fd:aa:a6:73:5c:87:7c:07:b9:4c:
06:20:d2:96:91:b6:f1:65:1b:0a:b4:41:66:70:81:0b:c1:9f:
b4:9f:9b:be:a0:44:f1:d1:d4:1c:4b:9b:b6:e0:d6:b4:5d:39:
06:37:3b:11:c0:9d:a3:ba:80:40:02:f7:c6:99:11:a3:fb:43:
ee:dd:1d:a0:f5:f9:4b:17:52:32:79:dd:d3:4e:89:48:4d:03:
ff:b8:4e:69:df:cb:5f:e0:3f:6f:8b:cc:89:f6:4c:ae:3e:94:
4a:25:db:9a:2f:f5:d3:a0:8a:aa:55:30:9b:1c:02:25:04:0c:
d6:c7:19:d4:ab:a1:47:2d:0a:34:62:c1:a0:2c:69:f4:8e:72:
f0:82:f8:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:22:02 2025 by rpki-client