Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39322e3131382e36322e302f32342d3234203d3e20323039383534.roa
File: 39322e3131382e36322e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: i7uE+O9NRGZNSHBh1FOI1y6PslKSRBMGaR5CiDACBGk=
Subject key identifier: 7B:7D:3D:91:67:12:D4:E8:71:A6:1B:F1:09:AC:48:4F:D0:E8:74:CF
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 1522BD6796F3E9A12A8E0DF7D23C2336FC580DB1
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39322e3131382e36322e302f32342d3234203d3e20323039383534.roa
Signing time: Tue 19 Mar 2024 19:50:27 +0000
ROA not before: Tue 19 Mar 2024 19:45:27 +0000
ROA not after: Tue 18 Mar 2025 19:50:27 +0000
asID: 209854
IP address blocks: 92.118.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:22:bd:67:96:f3:e9:a1:2a:8e:0d:f7:d2:3c:23:36:fc:58:0d:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Mar 19 19:45:27 2024 GMT
Not After : Mar 18 19:50:27 2025 GMT
Subject: CN=7B7D3D916712D4E871A61BF109AC484FD0E874CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b9:cb:e9:52:93:8a:a8:34:36:08:bb:a7:b0:
9b:14:86:fd:71:63:ca:6b:41:b7:b3:ce:a9:6e:e4:
ae:3e:40:a9:40:94:85:38:12:76:6f:ae:c1:5a:12:
ae:a8:4f:84:90:de:75:6a:16:2c:f9:96:65:44:ba:
f9:3f:3b:53:17:d7:d5:39:e3:76:b3:90:9a:56:9e:
a2:0f:0b:6d:23:3b:21:3c:ea:82:85:0d:a6:dd:13:
7a:d9:c7:ad:0c:23:28:28:7c:a2:52:07:e7:45:62:
a8:7b:47:cc:28:f3:1d:0c:ed:1c:d1:9b:24:7d:89:
41:42:1f:73:45:e7:04:d8:2c:dc:05:80:33:68:bf:
61:b4:c5:92:1e:11:30:f3:55:02:b2:8d:11:16:c2:
4a:5b:c4:ce:b5:a9:48:1c:6e:7d:22:e3:74:5b:3b:
c7:2e:7d:cb:48:53:d3:7b:88:40:ed:46:5f:c6:27:
fe:c9:cd:7d:30:f8:d9:7c:4a:e0:ff:be:dd:92:44:
50:3b:2c:aa:41:f5:38:2d:51:d6:cf:59:41:2a:13:
ec:e3:d2:08:25:21:d4:e8:39:4e:95:30:7e:17:74:
a3:8e:b3:de:e4:80:7e:93:35:7d:3a:91:2f:38:80:
60:de:ab:2d:03:0d:19:30:25:86:7b:32:b3:ec:b5:
10:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:7D:3D:91:67:12:D4:E8:71:A6:1B:F1:09:AC:48:4F:D0:E8:74:CF
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39322e3131382e36322e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.62.0/24
Signature Algorithm: sha256WithRSAEncryption
29:4e:49:16:c3:32:76:2a:f8:3a:7f:f4:e0:92:9f:de:cf:45:
a1:51:1c:e1:ff:0f:8f:d2:52:20:b4:98:2f:65:95:27:7f:66:
3c:1d:db:bf:a9:97:76:94:62:8b:80:59:18:83:a9:b2:b6:ce:
69:9d:48:87:14:0d:b0:16:06:0f:56:5a:f7:b5:2e:73:0f:cd:
b3:ab:6c:2c:03:48:77:49:1f:40:69:12:08:b7:7d:d1:db:28:
e2:40:6c:56:07:86:77:87:e3:4d:67:cf:1e:46:88:85:af:3b:
0d:d2:94:a1:a4:fe:90:0a:b7:f7:03:6b:fe:ae:bb:50:b1:a1:
ec:6a:47:af:51:6e:0e:d7:34:7d:b1:8f:76:ae:90:b5:8b:fc:
49:fc:6b:03:ff:c3:b4:48:a2:bb:f6:9f:72:45:4b:af:d6:47:
cf:c8:67:8f:d1:2a:cd:51:cd:6a:85:da:91:91:b4:1f:db:d6:
d4:67:4b:4a:00:d8:9f:e1:e7:1d:60:20:4f:c8:94:3c:be:4d:
fa:11:e2:f6:e1:e4:f2:ad:2d:02:aa:5a:c2:7c:4e:08:0b:f7:
77:6a:04:cd:7a:8b:eb:ed:2e:91:c7:bc:54:25:95:b5:a0:a3:
5f:14:cb:46:00:51:56:8e:c7:d2:3b:1e:1f:c7:f6:44:98:a2:
59:16:3e:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 19:21:54 2024 by rpki-client on console-ams.rpki-client.org