Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/36322e37322e34342e302f32322d3332203d3e20313431393935.roa
File: 36322e37322e34342e302f32322d3332203d3e20313431393935.roa (raw, json)
Hash identifier: I429uE2pdVcl2dmscsrb0XnbLqe7V2m9MBxobRura6o=
Subject key identifier: A2:BB:A6:E1:CC:58:CD:A6:C8:C9:22:D9:01:AB:FD:0F:31:74:D6:20
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 52207D564FE30739000004316180A56D86E5AE3A
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/36322e37322e34342e302f32322d3332203d3e20313431393935.roa
Signing time: Thu 27 Jul 2023 13:42:28 +0000
ROA not before: Thu 27 Jul 2023 13:37:28 +0000
ROA not after: Thu 25 Jul 2024 13:42:28 +0000
asID: 141995
IP address blocks: 62.72.44.0/22 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 May 2024 14:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:20:7d:56:4f:e3:07:39:00:00:04:31:61:80:a5:6d:86:e5:ae:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jul 27 13:37:28 2023 GMT
Not After : Jul 25 13:42:28 2024 GMT
Subject: CN=A2BBA6E1CC58CDA6C8C922D901ABFD0F3174D620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e5:15:9d:a0:77:96:94:59:98:a6:5f:14:54:
0b:e1:5c:3f:f7:ae:6b:e5:49:1b:76:be:53:30:97:
19:7e:35:c4:c8:72:64:87:d2:0c:85:f6:4e:77:d2:
93:cd:e1:52:e6:94:6f:9b:d2:15:1b:65:cd:fb:33:
58:d9:3c:13:3f:fa:0c:2b:fc:23:80:a8:54:e4:51:
6e:01:60:e8:ad:9d:dc:31:7c:be:78:16:19:32:6f:
1e:52:94:9c:ac:8d:fa:75:02:cc:16:97:08:d0:e5:
0e:ec:3d:bc:d8:f3:b2:33:49:e6:6b:29:9c:b2:23:
37:15:f2:dc:7e:ee:67:15:44:1f:d0:0c:2f:90:05:
cd:47:25:ec:72:ce:76:8b:52:60:63:db:b7:cf:bc:
42:31:3c:2c:bb:d1:1e:15:38:44:36:96:e8:38:f8:
91:34:45:5a:93:1b:70:d8:c9:41:ad:68:e5:aa:6f:
1b:77:e3:27:de:77:7d:05:59:37:6e:0c:c6:f9:e1:
d4:20:58:6c:b5:70:6b:3b:22:9a:d6:45:10:8b:68:
ac:e5:cc:50:9d:08:13:3c:59:17:1b:fd:17:d5:f8:
d1:bb:e5:e0:b4:2e:f2:db:d6:0e:b3:c2:27:cb:35:
8f:9d:e7:93:ef:1a:f0:db:9d:6d:65:52:57:2d:24:
dc:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:BB:A6:E1:CC:58:CD:A6:C8:C9:22:D9:01:AB:FD:0F:31:74:D6:20
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/36322e37322e34342e302f32322d3332203d3e20313431393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.44.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:23:2d:88:19:4c:d3:2a:74:c7:c5:ce:60:03:d3:97:52:06:
30:69:e5:9f:f9:e4:d2:fd:96:23:8a:3e:89:b5:1e:6f:d0:df:
76:3c:d6:47:0d:54:10:d4:cc:a4:78:29:3b:1a:5c:34:d3:e8:
91:98:88:95:69:92:f7:1b:77:23:8a:e2:48:ec:be:bb:1d:4d:
2e:77:96:1e:4d:94:67:4d:b7:52:18:b5:68:70:7e:f0:8c:c1:
62:40:22:a6:be:d6:9a:56:b3:39:57:5b:77:17:34:52:b1:f1:
51:3d:1f:81:31:d0:1c:f6:94:49:96:c2:a5:d8:55:7a:82:af:
21:48:eb:79:61:33:93:6c:44:93:6c:4e:12:b6:c2:a8:1d:7b:
f3:0c:89:70:03:41:bd:fa:64:b5:1a:94:e2:4d:e1:87:5a:96:
5b:7a:91:8c:c5:15:a2:e8:fc:79:89:df:ff:9d:e3:e6:6a:2d:
a0:81:80:58:96:0a:a1:9a:e2:3e:51:49:ee:40:b4:51:22:86:
16:84:45:be:82:12:0c:84:91:76:9b:25:71:d9:03:41:6a:2b:
f5:86:51:9b:b8:0f:97:c9:83:4b:0b:e2:37:63:fc:a1:f4:9e:
4d:2f:e7:01:c2:d0:79:e1:75:8b:66:1b:e5:2b:c3:d3:db:ff:
84:c7:12:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 23:31:25 2024 by rpki-client on console-ams.rpki-client.org