Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/352e3235322e3134322e302f32342d3234203d3e20313336373837.roa
File: 352e3235322e3134322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: uM048Wfp3gQD6x3UpO1RrIphGChKIEmXROvHTyNcwww=
Subject key identifier: 81:36:09:A1:46:CC:B6:27:D5:3E:18:A3:E5:79:12:E8:BA:97:92:87
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 2BAB6A8EB51BB2EBFFEB29954132E13FA29DD737
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/352e3235322e3134322e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 13 Feb 2024 12:54:17 +0000
ROA not before: Tue 13 Feb 2024 12:49:17 +0000
ROA not after: Tue 11 Feb 2025 12:54:17 +0000
asID: 136787
IP address blocks: 5.252.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 16:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:ab:6a:8e:b5:1b:b2:eb:ff:eb:29:95:41:32:e1:3f:a2:9d:d7:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Feb 13 12:49:17 2024 GMT
Not After : Feb 11 12:54:17 2025 GMT
Subject: CN=813609A146CCB627D53E18A3E57912E8BA979287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:13:42:4f:f3:c5:6c:9a:32:5d:5d:24:a3:52:
3d:e7:65:5c:75:71:68:f0:a0:33:2d:d6:35:50:e3:
c9:c1:28:69:1a:e4:2e:dc:06:74:f1:b8:bf:a0:86:
c1:5d:c6:ed:01:0d:1b:1e:11:68:70:34:ac:0e:b3:
09:09:e6:ca:39:ad:52:19:e4:46:20:da:fe:8c:a2:
3c:0d:f6:ef:89:24:ae:4a:21:f1:fc:ae:7b:8d:1a:
cb:d5:b0:f4:e4:b1:6e:55:40:b1:53:d1:69:26:b8:
58:49:40:4c:88:32:95:60:e5:71:6d:d6:b6:4d:2b:
11:c2:64:df:19:30:7c:a1:0b:be:67:98:23:25:ee:
9c:3a:be:10:ee:ea:fc:f5:b8:f0:14:3e:5a:e2:67:
72:fd:4d:7b:eb:b7:e9:7e:7c:a7:11:17:ef:b6:43:
9b:a9:e3:85:cf:00:f5:e1:e4:34:1c:b2:78:8f:d6:
7e:58:7c:c8:6d:64:f4:a9:c6:ba:f7:ef:64:81:1e:
27:2e:bd:24:12:d8:80:fc:f6:5d:2e:a7:cf:f4:4f:
d7:62:80:69:c6:70:50:d3:ab:f0:d9:f7:6b:fd:3a:
13:b9:6e:0f:22:ea:d4:ba:99:c6:00:c9:8c:0c:fb:
e4:8c:4e:e6:be:c7:4d:b7:19:38:bd:ba:9c:cf:f4:
77:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:36:09:A1:46:CC:B6:27:D5:3E:18:A3:E5:79:12:E8:BA:97:92:87
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/352e3235322e3134322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.142.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:62:b4:64:50:71:e8:46:49:f2:31:23:c6:6b:7c:d7:1d:2d:
c8:e0:ec:09:1e:d3:e7:cd:9b:85:ee:cc:bb:2f:c2:c5:97:aa:
70:c1:d7:7a:2d:a8:b7:14:30:9c:55:eb:86:0c:7f:02:ba:e0:
21:3c:4e:ba:d7:b2:3e:16:71:56:f3:92:04:e9:c0:50:0f:58:
29:3e:0b:a4:79:2b:b9:7c:af:89:7d:e9:ec:c2:46:4b:9c:7e:
d7:e2:7f:bb:31:d3:c9:98:3e:e3:6c:28:ba:90:70:e3:bd:7d:
13:e6:6f:00:78:ce:e9:33:b7:02:3c:2f:89:86:3a:2b:15:73:
e1:f0:9c:63:a8:4a:27:ce:6c:62:bf:c8:7a:b1:ab:3c:ee:d4:
39:2f:e9:b9:a3:d8:cd:f6:c7:a1:66:68:85:c9:af:ee:d0:ae:
84:5b:ba:d8:d5:2f:51:7b:5c:c7:b9:13:44:6e:79:21:28:0b:
b7:fe:3a:5a:80:fd:68:35:cb:3a:cb:af:99:35:d1:53:17:56:
16:35:c1:79:93:46:0a:66:bb:c0:8f:61:1c:30:02:e5:9f:dd:
8b:e0:7c:61:59:65:74:e5:fa:af:3a:ae:01:22:fe:63:a7:e2:
c6:0b:63:24:77:0a:a3:89:8d:e7:76:ac:1f:8d:93:e1:e3:fc:
38:02:b5:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 19:21:55 2024 by rpki-client on console-ams.rpki-client.org