Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39322e3131382e35352e302f32342d3234203d3e20313336373837.roa
File: 39322e3131382e35352e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: Ji6pUWtp+hOtKvpPMBq/5HzRgfJR8vyc3Vzuc+KMz9M=
Subject key identifier: C2:FF:1C:70:24:1E:25:C2:86:A0:C2:99:E0:7B:6E:80:DA:79:83:E7
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 1964127A5E0FF5D164E3C80FC7E1E5F70A771B22
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39322e3131382e35352e302f32342d3234203d3e20313336373837.roa
Signing time: Tue 13 Feb 2024 12:54:35 +0000
ROA not before: Tue 13 Feb 2024 12:49:35 +0000
ROA not after: Tue 11 Feb 2025 12:54:35 +0000
asID: 136787
IP address blocks: 92.118.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 16:15:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:64:12:7a:5e:0f:f5:d1:64:e3:c8:0f:c7:e1:e5:f7:0a:77:1b:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Feb 13 12:49:35 2024 GMT
Not After : Feb 11 12:54:35 2025 GMT
Subject: CN=C2FF1C70241E25C286A0C299E07B6E80DA7983E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:35:d4:ea:8f:f4:d1:d1:49:84:b4:b3:30:ab:
ed:02:37:86:26:7f:91:fc:fa:ad:c2:0a:a5:ff:57:
65:aa:85:aa:39:dd:88:1e:3b:40:36:e3:9e:26:ec:
a1:a5:d9:02:c3:2d:20:b2:87:ec:96:28:ba:a7:94:
18:05:84:44:52:a1:50:17:2f:be:c3:11:56:91:95:
cb:e7:71:55:b2:ac:c1:71:39:b2:3c:c9:71:a9:85:
c7:18:d2:69:00:72:11:ce:c6:b6:96:76:c6:d9:33:
6b:10:61:bf:56:65:f4:0f:64:06:e8:f4:8e:c9:8a:
cb:ac:17:f5:63:b3:f3:5c:50:a3:d6:7d:9e:0c:c2:
8b:cb:1f:d5:bf:1e:ce:f8:d5:9f:24:97:23:f9:64:
86:29:f2:cb:85:bc:88:86:c3:42:62:88:e6:d7:27:
cc:a9:eb:e5:8a:4f:93:28:ab:34:a7:5d:b7:20:e9:
27:8d:69:84:5a:b4:97:c1:c8:8e:ef:74:66:f6:9d:
27:e9:05:b4:a2:68:3e:ac:65:dd:f1:1d:c0:9f:11:
f4:e9:4b:d3:a6:4c:f6:55:b9:f0:44:4f:c1:b2:e7:
72:b6:d5:00:93:db:84:20:ca:ff:96:c7:80:8c:0c:
1b:5b:84:ab:72:f9:66:9c:ad:9b:2a:a4:00:36:21:
8e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:FF:1C:70:24:1E:25:C2:86:A0:C2:99:E0:7B:6E:80:DA:79:83:E7
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39322e3131382e35352e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.55.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:79:6f:81:9a:8f:23:39:12:a6:b4:fc:4b:6c:a2:0a:aa:89:
8b:fc:41:b6:dd:bd:98:b7:10:4b:54:e8:39:73:05:72:52:57:
5e:44:52:b8:52:ef:4b:52:96:3c:64:ec:21:9c:17:7a:de:68:
6c:55:af:4f:16:82:55:cc:1c:59:e4:d9:c6:d3:27:04:74:e4:
ef:03:ec:81:72:c1:6c:02:4c:93:79:07:69:e3:e0:0e:6d:b1:
a3:42:b2:b7:15:2e:93:02:43:ad:5a:eb:77:b6:cf:5a:4d:48:
fe:3c:fc:63:8a:b3:71:fb:66:46:c3:0b:97:e6:f0:dc:2a:c0:
5f:bf:ed:dd:7c:b9:36:38:13:70:0f:05:f7:5d:1d:e0:44:29:
8f:29:5f:b4:5a:e7:3b:bf:bb:db:34:c9:e5:5c:e4:40:de:09:
ee:96:a0:56:a1:d6:0b:7a:71:37:64:61:52:06:16:3a:f6:08:
3f:ad:aa:ab:be:ac:43:70:4e:4b:09:e4:56:62:b4:70:e8:ea:
b9:c6:fc:c3:c5:07:39:81:45:75:70:7d:a8:9d:89:e8:6e:ee:
26:80:3e:9a:1d:0e:4d:74:ec:85:bf:ac:d2:fd:71:39:99:c0:
36:e8:7b:70:07:cc:53:1a:2a:78:b7:af:cd:a8:c8:12:08:b6:
27:99:10:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 23:39:21 2024 by rpki-client on console-ams.rpki-client.org