Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/37372e37332e32302e302f32322d3232203d3e20323033303631.roa
File: 37372e37332e32302e302f32322d3232203d3e20323033303631.roa (raw, json)
Hash identifier: 2RNTl2rvBBf8QC6nMq7fpVIxZW3oRZz4fZJv92XQ+IY=
Subject key identifier: 97:5E:C5:DE:17:74:16:24:AD:9D:A7:D5:69:3D:F2:A2:9E:28:E2:CF
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 3E1B03F310FFECA03E17AF29EF414665AAE0BECD
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/37372e37332e32302e302f32322d3232203d3e20323033303631.roa
Signing time: Mon 26 Feb 2024 08:52:49 +0000
ROA not before: Mon 26 Feb 2024 08:47:49 +0000
ROA not after: Mon 24 Feb 2025 08:52:49 +0000
asID: 203061
IP address blocks: 77.73.20.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.mft
rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:57:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:1b:03:f3:10:ff:ec:a0:3e:17:af:29:ef:41:46:65:aa:e0:be:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Feb 26 08:47:49 2024 GMT
Not After : Feb 24 08:52:49 2025 GMT
Subject: CN=975EC5DE17741624AD9DA7D5693DF2A29E28E2CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3a:14:14:d9:31:9a:18:7f:ed:5e:4e:d9:43:
ec:e9:70:24:98:75:c4:a4:a9:a9:ed:ff:b0:16:3d:
5f:9b:37:03:b4:f2:70:ba:46:36:ad:72:22:f1:69:
bc:46:28:33:f3:47:7e:04:db:b7:d8:54:73:72:4e:
76:67:b4:2f:b8:f1:d6:e4:0c:a7:1b:ca:a0:37:ce:
c7:49:b3:9f:23:a2:07:a8:19:fa:80:9b:2a:13:b1:
9f:63:20:4f:df:fa:da:a9:75:d1:01:b5:78:99:e8:
96:0f:52:33:82:73:32:a2:89:cd:69:bd:6e:78:d5:
82:48:4c:48:bf:b1:b5:34:01:21:10:d2:99:3d:c2:
69:67:9d:c3:db:5c:51:a5:76:d1:3f:54:d2:e3:fe:
92:58:dc:53:e4:60:02:1f:32:f9:71:98:d9:bc:18:
77:7d:2a:bf:2a:d9:5c:47:66:9f:95:6a:f3:e4:5c:
6d:1f:79:47:b3:14:34:b9:82:f3:9f:b8:b1:17:b3:
ec:bc:4a:46:4b:d7:a2:a5:9a:bd:76:32:61:d9:44:
eb:74:47:78:25:26:fc:73:ad:33:54:25:97:00:51:
44:7c:b6:70:c1:97:05:68:24:2f:9e:43:8f:c2:93:
96:7d:02:21:cf:14:06:c8:0d:1c:d2:bb:dc:58:78:
f0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:5E:C5:DE:17:74:16:24:AD:9D:A7:D5:69:3D:F2:A2:9E:28:E2:CF
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/37372e37332e32302e302f32322d3232203d3e20323033303631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.20.0/22
Signature Algorithm: sha256WithRSAEncryption
79:7d:4e:ed:32:d3:6a:12:f0:6a:dc:d4:5b:b2:47:eb:2f:8c:
5a:a1:f5:84:cc:50:25:2b:6e:c8:c7:3d:41:4a:92:71:ce:46:
99:82:52:a1:7a:fb:83:e8:d5:2a:08:06:96:11:c2:05:ef:f8:
f0:86:df:1d:c3:4a:67:f0:57:e5:95:0b:7b:20:06:eb:0e:02:
6a:33:06:62:41:81:06:8e:6d:10:90:38:5b:e7:8f:90:e5:b1:
42:80:11:82:92:45:cc:2d:74:94:d1:86:6d:c0:b7:a7:fe:e5:
ad:fe:21:ab:a6:74:c8:67:39:eb:64:0e:b4:60:67:c2:2a:83:
73:ea:7d:52:95:3b:5e:0b:cd:ab:63:be:a8:03:ca:3e:75:02:
bf:1d:4c:95:3a:b1:26:4a:12:7b:b1:40:4b:83:c6:29:ac:7a:
54:0c:e5:e8:c1:66:1c:0c:d3:33:a6:69:0d:e9:be:6a:0f:e5:
ea:40:c1:96:71:2e:4e:c2:fa:e9:2a:1c:3c:60:04:64:f0:d7:
d9:0c:5f:e6:be:ea:26:ac:46:d2:03:d3:31:8b:0e:c3:37:50:
44:53:52:a4:0a:a9:6e:a7:ab:e5:76:bc:0e:bc:4c:e0:d6:1b:
85:dc:0e:a2:fb:f4:7d:fd:e6:a0:dc:8a:85:c6:dc:ab:a4:68:
ad:68:c7:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 17:14:44 2024 by rpki-client on console-ams.rpki-client.org