Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/37372e3234332e38342e302f32342d3234203d3e20313336373837.roa
File: 37372e3234332e38342e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: R3skwQx4oDaIFxNMNhlsXJlClmmA0bl8i0iUSY8rOk4=
Subject key identifier: 30:29:78:0E:D4:73:D2:92:74:65:18:2D:43:4A:26:24:3A:81:30:97
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 39E77EC45D3EBD33AE977C14B8D36D3573D30FE4
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/37372e3234332e38342e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 26 Feb 2024 08:52:49 +0000
ROA not before: Mon 26 Feb 2024 08:47:49 +0000
ROA not after: Mon 24 Feb 2025 08:52:49 +0000
asID: 136787
IP address blocks: 77.243.84.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:e7:7e:c4:5d:3e:bd:33:ae:97:7c:14:b8:d3:6d:35:73:d3:0f:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:49 2024 GMT
Not After : Feb 24 08:52:49 2025 GMT
Subject: CN=3029780ED473D2927465182D434A26243A813097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:26:9a:85:32:0b:94:da:5a:af:ea:9a:12:d4:
d3:55:4c:27:e8:cf:4d:d9:37:eb:57:64:5d:fd:f6:
07:58:8a:4b:f7:d7:f9:39:19:25:c3:70:c7:eb:42:
86:95:e5:93:b1:84:c7:9b:08:1d:91:00:6e:08:0c:
4a:01:f8:8b:ff:72:d9:ec:7c:14:0d:c4:cb:02:bb:
f6:35:61:91:c3:43:bf:35:b5:5b:95:b4:49:63:8a:
0c:11:51:46:4f:7e:8f:73:86:7d:6e:88:94:3c:0a:
f1:05:7c:8f:e5:63:51:a0:89:bf:20:71:fe:6d:47:
4d:4f:7d:5f:05:74:b4:d5:21:d4:85:66:b1:96:a5:
2d:ed:ef:d5:6c:99:63:a4:99:14:ac:28:42:fd:44:
37:bd:44:0a:58:a9:41:d2:7d:67:08:bb:11:f3:82:
b9:52:4b:7b:e7:e4:a3:e6:ea:f0:01:68:35:51:72:
7f:6b:88:f8:e2:ed:9b:1e:eb:b4:73:01:9f:4d:15:
e7:ff:01:ec:41:40:0e:ea:ad:cf:48:ee:55:f2:ff:
f2:a1:3d:2e:06:b9:46:e5:de:4b:f8:47:b1:01:a7:
37:22:2c:d7:b0:15:51:cc:0a:46:b7:96:81:64:67:
43:24:b2:55:f4:13:88:56:e8:29:b3:e8:38:62:48:
cf:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:29:78:0E:D4:73:D2:92:74:65:18:2D:43:4A:26:24:3A:81:30:97
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/37372e3234332e38342e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.243.84.0/24
Signature Algorithm: sha256WithRSAEncryption
37:f7:1e:0b:1c:ff:8d:51:42:0c:b5:a8:64:68:e2:f9:61:33:
81:20:e9:8d:3c:18:d8:1a:9f:2a:f8:99:44:c1:d6:8e:56:41:
f6:66:a1:44:13:34:d6:7a:62:ec:7f:1c:3e:94:41:e7:fe:48:
0c:9a:35:f7:0c:b2:69:12:c4:55:37:e0:79:b9:38:7d:e5:47:
12:ab:5a:9a:e8:09:fd:58:ce:cb:ae:7a:5b:d1:c1:24:02:62:
b0:7c:a8:3c:0e:78:47:b2:ff:6b:b1:1d:ac:c2:f8:18:42:48:
d4:fe:5a:ed:6c:f9:f6:72:c4:cb:30:63:b7:61:b7:09:2a:62:
b6:2a:f4:f1:d0:56:05:72:a5:00:4d:72:e0:38:94:4e:02:0c:
61:73:97:20:5a:55:85:fc:7e:1d:2b:c9:46:0c:13:d0:7a:6f:
a7:59:c5:a5:97:97:08:01:59:3c:78:e0:ae:68:67:6a:34:0e:
91:03:c9:b0:70:5a:43:85:bb:c2:53:ba:50:93:53:cb:9d:c9:
ba:43:9e:9d:7f:72:9a:8a:10:72:99:c0:92:d6:98:69:c0:14:
df:3c:83:96:d0:95:41:a3:60:9e:44:fb:d8:1e:cb:c1:dd:87:
42:ea:69:15:0e:78:69:69:d2:3c:90:b9:bc:cd:b2:b4:2c:90:
56:b5:38:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 19:21:52 2024 by rpki-client on console-ams.rpki-client.org