Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/37372e3234332e38362e302f32342d3234203d3e20313336373837.roa
File: 37372e3234332e38362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: C6Y0XI5UYW6+bAZUFx3Y+f9eCRIj3ERpWgVNlhbNl3k=
Subject key identifier: C0:E0:57:DF:CB:A5:21:45:BC:25:B2:44:04:74:4F:C1:5C:05:DB:2F
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 19BA46B7AFC901EFD8FD89DDC7586357E4320012
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/37372e3234332e38362e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 01 Apr 2024 14:03:18 +0000
ROA not before: Mon 01 Apr 2024 13:58:18 +0000
ROA not after: Mon 31 Mar 2025 14:03:18 +0000
asID: 136787
IP address blocks: 77.243.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:57:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:ba:46:b7:af:c9:01:ef:d8:fd:89:dd:c7:58:63:57:e4:32:00:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Apr 1 13:58:18 2024 GMT
Not After : Mar 31 14:03:18 2025 GMT
Subject: CN=C0E057DFCBA52145BC25B24404744FC15C05DB2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:94:47:91:14:0e:83:e4:e3:a7:24:a9:54:c1:
89:da:e9:d6:5e:5c:cd:b9:cc:49:84:48:a9:ad:d2:
87:eb:87:70:b5:1d:65:e9:53:c7:5f:23:42:6a:54:
58:ab:d4:f2:9c:7e:2f:c5:3f:8d:a8:c3:a9:88:26:
75:4f:99:d0:6a:af:37:43:48:2e:41:a6:16:a1:bc:
1b:03:38:93:21:b9:96:58:c6:0f:34:99:0f:9e:1e:
b3:72:a2:48:3c:2c:37:f8:dc:61:bc:3c:c3:c7:2e:
a7:d0:8d:22:95:22:be:ac:29:ab:7e:ea:d5:fa:c1:
7d:82:b9:51:31:c0:41:20:c0:1f:a1:2a:6f:06:09:
ad:a6:05:9e:a0:56:25:02:d2:4f:a6:9c:fe:d3:21:
2c:3a:de:2a:98:6c:97:e4:9b:05:72:c7:8c:57:b0:
cf:54:75:32:d3:b0:57:89:6d:87:6b:57:a3:e7:6e:
a2:d3:81:c5:41:27:2b:96:39:6d:79:3d:67:ec:ff:
28:c7:98:c7:ed:30:41:d4:32:c2:9f:71:ee:63:45:
fe:98:4a:2e:8b:af:63:b0:e5:e0:a0:91:ef:2a:69:
b5:45:e2:9d:df:37:ff:3b:d9:47:2c:d5:8f:4f:12:
66:1f:2b:3d:ad:66:ee:a4:4b:7c:cd:1b:2e:6b:af:
7f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:E0:57:DF:CB:A5:21:45:BC:25:B2:44:04:74:4F:C1:5C:05:DB:2F
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/37372e3234332e38362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.243.86.0/24
Signature Algorithm: sha256WithRSAEncryption
94:79:a9:49:8c:df:9d:85:55:3e:63:d9:4f:4c:cd:8b:5e:f6:
a4:72:a4:ef:44:44:98:77:97:67:71:e6:9d:2e:05:a8:b5:e7:
98:4d:03:f0:99:ed:cc:f8:68:f2:1c:86:4c:19:b5:6d:1f:99:
63:24:15:3e:1e:29:2d:30:ee:71:34:e6:4d:6a:a1:91:a4:f6:
a6:7c:45:8c:6b:b5:7d:55:52:2e:64:46:c0:ab:14:7f:3c:16:
dc:81:98:a3:4a:b1:17:e6:b5:2c:e8:30:72:f7:c0:5e:4e:69:
84:28:1a:f4:b5:f5:4f:81:9d:a4:f3:fc:46:a6:d5:ae:fb:02:
3e:07:6b:64:66:66:cd:1f:03:fa:75:5a:c6:42:f7:96:9e:8f:
4f:7b:0b:f8:18:a3:2a:0a:a2:6a:54:bd:ec:92:96:ae:c8:9c:
c6:c1:b2:7e:f7:57:7c:8e:5c:d6:51:f9:4c:01:a7:e4:b7:38:
82:f6:86:b7:79:d2:9a:91:af:55:e3:09:c8:b8:16:cf:d7:05:
07:83:ff:6f:fb:b7:39:93:73:a0:43:58:66:b6:1f:2d:22:cb:
c2:55:be:d4:3d:02:c5:8b:c3:05:b9:05:a8:af:f3:c1:20:03:
80:4c:fc:38:da:9a:c8:79:42:3c:d6:ff:60:72:68:49:87:f6:
cb:66:e6:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 17:14:44 2024 by rpki-client on console-ams.rpki-client.org