Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/352e3130342e37392e302f32342d3234203d3e20313336373837.roa
File: 352e3130342e37392e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: Og379fk0nS0keYd8UuKzGoDnM+DU8OonQBoa0flSh/A=
Subject key identifier: 60:DE:DD:71:84:D5:C4:D8:AB:63:D8:37:CA:D3:06:7D:A0:19:48:73
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 3E5076B354E3016563F5C872EBBF2B5F82156B8C
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/352e3130342e37392e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 04 Mar 2024 19:44:48 +0000
ROA not before: Mon 04 Mar 2024 19:39:48 +0000
ROA not after: Mon 03 Mar 2025 19:44:48 +0000
asID: 136787
IP address blocks: 5.104.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:50:76:b3:54:e3:01:65:63:f5:c8:72:eb:bf:2b:5f:82:15:6b:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Mar 4 19:39:48 2024 GMT
Not After : Mar 3 19:44:48 2025 GMT
Subject: CN=60DEDD7184D5C4D8AB63D837CAD3067DA0194873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c6:7f:4f:72:af:50:54:4e:b7:74:97:98:5c:
a1:37:98:d4:ee:73:4c:08:60:1e:18:7a:d1:b3:50:
d3:fa:06:8a:b3:ba:2a:40:c0:42:8c:86:ce:4b:90:
f1:4f:e2:09:f8:92:6b:f1:3d:37:73:35:cd:1c:dd:
e9:e1:e6:ab:d8:31:70:a5:38:b7:b6:65:c7:4f:bc:
f3:bf:98:39:84:6a:b3:68:cd:cf:3d:5a:e2:15:1b:
71:66:87:64:04:79:86:74:9f:50:7f:18:42:23:e1:
ec:c1:54:70:04:de:86:7a:91:f0:ea:48:ec:2c:39:
cb:61:ee:2f:1d:ac:ff:8d:d9:e3:05:ec:c7:91:b7:
d6:72:db:d9:44:a2:97:d0:62:38:90:49:04:73:13:
c9:53:fd:e2:f3:2e:4e:4d:91:e3:e5:96:38:88:de:
bf:00:f0:38:29:44:93:bd:5e:5e:c0:a9:d9:92:e0:
44:dd:06:6a:f7:1d:1f:c5:a1:3d:b8:de:1b:24:0d:
c5:d9:4c:89:a1:b1:a1:1b:92:9b:a0:ef:26:93:44:
12:fe:31:56:5c:f3:54:af:5c:51:7b:75:d1:e4:e9:
a0:ae:c2:4a:b0:82:56:ce:b7:0e:8e:4b:7e:31:21:
9e:67:af:30:7b:74:ec:f0:d4:e5:73:15:5a:dd:0d:
54:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:DE:DD:71:84:D5:C4:D8:AB:63:D8:37:CA:D3:06:7D:A0:19:48:73
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/352e3130342e37392e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.79.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:66:97:9c:08:c4:da:33:af:35:c0:33:ad:af:58:a3:d1:83:
64:7f:84:fd:1f:10:8a:88:20:05:22:38:ac:1c:e1:47:28:8a:
85:4e:75:00:79:0f:c3:14:24:12:4e:99:12:63:3e:54:d7:6e:
d6:8a:72:5b:c1:02:a8:ec:eb:44:b2:13:9d:44:e6:8f:59:8b:
00:ed:b1:ba:5b:c5:1f:03:61:d1:fd:55:12:34:9e:64:52:97:
d1:62:75:46:4e:bc:c2:18:a6:b9:80:7d:8e:49:d8:90:91:90:
bc:7c:f8:01:bf:21:a6:c0:90:f8:b4:10:0a:65:24:18:2a:a0:
69:75:00:b7:ce:c7:dc:94:80:74:f1:a2:28:60:b3:1d:8e:71:
37:30:79:55:2d:ef:1a:85:ca:3f:19:62:c0:01:f7:1b:f5:70:
4d:07:aa:0b:32:3e:32:95:0f:c2:9a:27:8d:93:46:2b:42:c7:
39:c4:71:7b:a7:bd:8a:1e:eb:e5:50:58:04:7f:04:f6:34:18:
11:a9:88:de:3d:dc:6d:21:9f:fc:2a:31:e8:c3:57:1e:1e:af:
4c:1f:fe:4f:99:8a:50:13:11:fb:70:36:1d:2c:06:39:dc:fd:
9c:c3:d7:91:04:e9:24:d6:eb:96:fd:84:1d:10:17:d0:28:d5:
c7:f8:33:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:44:10 2024 by rpki-client on console-fra.rpki-client.org