Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39322e3131382e35322e302f32342d3234203d3e20313336373837.roa
File: 39322e3131382e35322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: fVfVoMQ2XTn+FFPlQIQSV03Q+hAMjkZrxkbqR+95NM4=
Subject key identifier: 00:59:AE:E3:F4:E2:86:94:9B:B2:36:A3:B0:24:15:2A:A9:45:24:68
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 279C8ED00034AC9D268B7CD22AA740D0C7ADAE51
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39322e3131382e35322e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 13 Feb 2024 12:54:31 +0000
ROA not before: Tue 13 Feb 2024 12:49:31 +0000
ROA not after: Tue 11 Feb 2025 12:54:31 +0000
asID: 136787
IP address blocks: 92.118.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:9c:8e:d0:00:34:ac:9d:26:8b:7c:d2:2a:a7:40:d0:c7:ad:ae:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Feb 13 12:49:31 2024 GMT
Not After : Feb 11 12:54:31 2025 GMT
Subject: CN=0059AEE3F4E286949BB236A3B024152AA9452468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:65:54:9b:78:f3:c9:88:f0:a8:cc:67:b1:74:
8f:d5:dc:80:d3:d3:fc:cb:8c:6a:f8:42:5d:14:82:
26:e3:ad:a7:c6:16:4a:e9:6c:fb:c9:de:4b:72:92:
90:39:53:54:63:27:81:f5:ac:5a:ef:d6:e1:48:24:
ca:b7:33:bf:c9:8d:1b:44:2b:db:82:8e:6c:56:c1:
2f:23:2c:f5:95:5b:eb:a4:b1:0f:c9:a3:9a:62:f0:
52:82:2b:6c:fd:ec:c2:d7:4b:62:03:cb:9a:b0:c8:
c2:fc:1b:94:c6:1b:8a:53:69:0a:c7:d4:fd:0f:a5:
b3:96:70:88:a7:15:a6:30:dd:9f:5d:27:52:cd:19:
28:b2:2d:26:bc:60:f9:c7:3a:9e:18:c6:89:83:cd:
77:75:f6:8a:ad:32:07:53:6d:19:e1:c3:69:7d:12:
bf:c4:04:f1:ce:64:c4:69:22:fd:da:14:4f:02:bf:
6f:f3:23:dc:0f:14:78:50:ac:44:11:56:91:a1:00:
e3:91:0c:ad:3e:82:0f:5f:4f:e3:35:67:d3:91:50:
de:22:8e:66:1c:14:a5:7c:93:ce:22:d3:b8:1e:43:
54:58:2f:75:a3:10:3f:b4:20:ed:19:2d:b5:f2:54:
08:a6:9e:65:24:9f:56:0a:1f:86:a1:fa:cc:4d:6f:
cb:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:59:AE:E3:F4:E2:86:94:9B:B2:36:A3:B0:24:15:2A:A9:45:24:68
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39322e3131382e35322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.52.0/24
Signature Algorithm: sha256WithRSAEncryption
31:ee:23:9a:69:bf:f1:05:e9:89:d5:b7:99:65:93:a1:1d:33:
eb:5a:d9:2a:5f:5c:7d:eb:de:66:97:82:74:58:b9:35:97:83:
54:79:66:8b:c0:f1:15:69:0a:63:63:68:06:39:2b:ff:e3:24:
7d:d5:79:23:72:4c:c2:63:22:4f:53:0e:75:68:50:71:1b:12:
af:4d:a8:37:3b:ad:ed:bf:fc:4d:f1:5f:b8:d9:80:8b:e4:2c:
a9:69:93:69:1b:c6:f2:a0:d8:63:bb:d2:ec:95:25:5d:0b:44:
17:1d:ce:c8:53:98:9b:04:cc:52:f7:1f:59:85:ec:24:c8:44:
89:b5:3b:e1:29:32:0e:69:2a:33:87:37:c8:43:bd:10:53:70:
87:9e:80:75:19:5c:19:c9:ab:84:81:a6:6a:30:ef:ff:99:37:
a2:0c:05:9a:9f:1f:98:a9:4f:86:80:45:c2:09:1c:72:08:46:
f6:0b:dd:45:fa:ef:af:91:8e:e7:24:e5:1c:69:dc:80:e5:74:
e4:05:80:cd:33:4d:2f:24:ec:67:f8:e1:48:65:ba:c1:99:c7:
01:03:dc:f3:bf:82:c6:32:f5:29:22:d2:19:2d:3f:56:43:db:
bd:84:05:35:81:ac:73:fa:52:93:1e:dc:e0:8a:3a:1b:f4:dc:
4c:fa:6a:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 20:21:27 2024 by rpki-client on console-fra.rpki-client.org