Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39322e3131382e36322e302f32342d3332203d3e20313336373837.roa
File: 39322e3131382e36322e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: elcvIqxG6RwZr3qg7fs0pJ1RTAHCAOPdgS9SfeCEQ6c=
Subject key identifier: B0:EB:E6:49:7D:23:DB:6E:B3:24:00:42:60:E5:23:94:CE:A1:4F:CA
Certificate issuer: /CN=12c2a8354689aec2a74fca14944927621ba27c94
Certificate serial: 074A393E22AC44851F39C21D8CE228C8CC3BBCB9
Authority key identifier: 12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39322e3131382e36322e302f32342d3332203d3e20313336373837.roa
Signing time: Mon 26 Feb 2024 08:53:42 +0000
ROA not before: Mon 26 Feb 2024 08:48:42 +0000
ROA not after: Mon 24 Feb 2025 08:53:42 +0000
asID: 136787
IP address blocks: 92.118.62.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:4a:39:3e:22:ac:44:85:1f:39:c2:1d:8c:e2:28:c8:cc:3b:bc:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c2a8354689aec2a74fca14944927621ba27c94
Validity
Not Before: Feb 26 08:48:42 2024 GMT
Not After : Feb 24 08:53:42 2025 GMT
Subject: CN=B0EBE6497D23DB6EB324004260E52394CEA14FCA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:90:44:3e:09:67:04:24:d6:d0:9a:37:de:78:
0c:a2:bf:c9:b1:f1:b3:f7:b5:7b:2a:7c:4e:5b:be:
ea:03:04:95:41:a4:5a:cc:8d:4d:e4:7e:f9:24:46:
d0:c6:c5:21:2e:8d:79:b6:f2:4a:83:34:c0:b5:60:
19:03:97:3c:5d:17:98:41:88:ef:b1:e5:19:38:74:
96:74:d9:bb:ef:67:16:59:c1:d1:33:ef:60:55:70:
90:be:d8:c6:02:57:59:57:57:1a:58:ce:15:1f:af:
5c:c6:a4:a4:a5:0d:37:01:04:03:8a:38:db:e4:70:
93:a9:c9:c6:01:97:71:52:db:32:c6:a5:f5:8f:d4:
44:66:c4:b6:e8:a6:b8:56:11:b9:af:5e:3b:fd:f7:
d0:74:a2:5b:ac:50:c3:11:12:b4:33:a9:8a:a1:d1:
52:85:18:19:d5:46:42:4e:a8:b8:f6:03:65:05:b4:
e8:18:b1:8d:1f:8a:35:e1:43:5e:11:b9:46:d8:50:
dd:39:e8:1f:8e:37:24:7a:e6:8d:53:02:cb:82:66:
fa:4b:9e:b0:a1:3c:61:8e:d3:7b:19:40:d3:8e:d9:
3f:02:0b:61:34:bb:b0:9e:26:2f:65:74:0d:d0:25:
c2:e8:9f:e3:1e:2f:23:fd:7b:9b:b3:38:5c:1b:65:
51:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:EB:E6:49:7D:23:DB:6E:B3:24:00:42:60:E5:23:94:CE:A1:4F:CA
X509v3 Authority Key Identifier:
keyid:12:C2:A8:35:46:89:AE:C2:A7:4F:CA:14:94:49:27:62:1B:A2:7C:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/12C2A8354689AEC2A74FCA14944927621BA27C94.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsKoNUaJrsKnT8oUlEknYhuifJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/7/39322e3131382e36322e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.62.0/24
Signature Algorithm: sha256WithRSAEncryption
72:29:fa:20:84:2c:36:54:63:c5:b4:f2:93:7a:e3:c4:26:a4:
b4:39:e7:e6:22:12:ad:0d:67:e3:fc:84:f0:ab:6b:fe:30:61:
11:4a:61:8c:fe:ad:b0:d2:e3:fa:2c:56:8a:99:e5:0c:69:18:
dd:62:a7:09:10:e6:55:c0:99:71:74:28:db:36:b4:b9:bd:3a:
8b:c7:83:37:6a:a5:3e:f0:fb:3c:db:cf:78:57:8f:4d:da:8c:
f4:cb:9c:b9:20:56:8b:bb:98:45:6c:df:b5:10:31:2b:e3:2f:
ab:47:9b:f3:de:d2:bb:6b:61:31:1f:ad:6b:f5:c6:a5:b1:bc:
4f:06:a7:5d:7a:92:57:8e:26:3e:78:c5:0d:e6:31:7c:fe:3e:
47:0a:45:81:c8:ca:f2:76:9f:a2:f6:b1:0a:55:83:db:5f:3a:
eb:61:3d:ae:17:48:19:26:c3:2f:0d:1c:39:72:5d:6a:b0:40:
09:48:2a:34:57:a8:ed:d6:63:f6:87:90:fe:52:c6:ff:b6:47:
f8:78:81:86:df:88:1e:d1:02:ad:96:f0:a8:17:be:41:9d:57:
8a:7b:73:c3:72:17:ca:59:ed:4f:31:8f:a3:a7:7b:62:d9:c5:
48:91:6c:a9:de:d8:9c:6d:cf:52:68:a3:e5:62:f9:0c:f2:71:
e9:d7:20:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:49 2024 by rpki-client on console-ams.rpki-client.org