Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39332e3137372e39362e302f32322d3234203d3e20323034313730.roa
File: 39332e3137372e39362e302f32322d3234203d3e20323034313730.roa (raw, json)
Hash identifier: JOi5PktKO83n5neajEk1Tezd0ecys/S8zxYY8Oco3Wc=
Subject key identifier: 61:B7:F1:F0:6F:FF:FE:49:9E:A9:59:48:C2:7C:C5:A7:E5:30:C5:D0
Certificate issuer: /CN=5d70845822a61408ec2a5fd580c132da777f09d1
Certificate serial: 74E60453650B1981ED209570BCD0D6B6D7D36C11
Authority key identifier: 5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39332e3137372e39362e302f32322d3234203d3e20323034313730.roa
Signing time: Mon 26 Feb 2024 08:53:51 +0000
ROA not before: Mon 26 Feb 2024 08:48:51 +0000
ROA not after: Mon 24 Feb 2025 08:53:51 +0000
asID: 204170
IP address blocks: 93.177.96.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.mft
rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:e6:04:53:65:0b:19:81:ed:20:95:70:bc:d0:d6:b6:d7:d3:6c:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d70845822a61408ec2a5fd580c132da777f09d1
Validity
Not Before: Feb 26 08:48:51 2024 GMT
Not After : Feb 24 08:53:51 2025 GMT
Subject: CN=61B7F1F06FFFFE499EA95948C27CC5A7E530C5D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9e:ee:8d:f5:2e:08:b3:50:37:c7:05:40:3d:
6c:ea:a0:33:2a:d5:b3:45:96:0c:66:7d:f8:93:de:
9f:c0:57:dd:37:f7:ef:23:ef:6a:e7:b0:71:2a:18:
4a:9b:eb:7e:96:a3:b4:53:65:ee:70:77:28:d4:19:
9f:c7:a8:65:57:a8:38:bb:f6:99:1d:1a:66:d4:d6:
25:ae:ca:79:67:1e:78:12:6c:86:ac:d5:a3:32:53:
e6:b3:9f:d5:10:40:20:ba:15:1a:3c:93:a6:01:3f:
c9:e0:c3:47:1b:0e:40:01:c1:44:e2:6a:f9:6c:62:
f1:ca:eb:c8:71:7f:2f:67:75:8e:55:e9:69:07:7c:
7b:27:48:95:8b:dd:21:ec:67:a9:fa:d8:ab:b7:99:
b4:63:78:b9:55:b3:a7:88:84:af:fc:6d:12:43:82:
99:ab:db:67:8f:c4:d7:9a:a4:25:79:f4:3d:ee:1c:
17:9b:5c:0d:ef:fd:e7:74:c5:ac:cf:14:da:98:e6:
d6:bc:6a:d4:63:af:b7:31:7a:3c:5f:f3:cd:70:19:
35:1a:85:4a:d8:47:47:22:41:64:3f:24:fb:29:f9:
1c:ee:79:1f:c4:7d:a1:84:86:d5:76:4f:47:e8:48:
a9:3f:01:e5:70:45:56:a8:13:b9:4f:20:08:25:cb:
e0:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B7:F1:F0:6F:FF:FE:49:9E:A9:59:48:C2:7C:C5:A7:E5:30:C5:D0
X509v3 Authority Key Identifier:
keyid:5D:70:84:58:22:A6:14:08:EC:2A:5F:D5:80:C1:32:DA:77:7F:09:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/5D70845822A61408EC2A5FD580C132DA777F09D1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XXCEWCKmFAjsKl_VgMEy2nd_CdE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/8/39332e3137372e39362e302f32322d3234203d3e20323034313730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.96.0/22
Signature Algorithm: sha256WithRSAEncryption
32:92:48:38:24:ec:0b:da:d3:3c:18:e0:a4:89:2e:09:89:e6:
b6:e2:3c:68:41:38:43:55:05:ed:1e:90:36:87:eb:41:8a:05:
59:53:f6:eb:c8:01:27:93:30:1c:61:45:aa:4f:5d:e7:e5:73:
f6:c6:99:9b:f4:a4:6a:c5:8d:b1:16:b6:75:cd:03:2a:aa:3f:
09:74:83:8a:16:bf:85:1c:fe:21:13:0e:27:2c:12:08:2a:6f:
d2:e1:24:0d:1a:2a:e5:8b:80:65:0e:b7:66:52:4e:8d:60:b2:
23:63:0e:eb:85:72:f3:06:bd:ce:a1:c9:48:37:47:4b:5d:17:
fa:99:11:dd:9b:6d:4d:df:57:82:51:20:7c:29:38:ad:9b:c3:
72:d6:9a:fb:d5:70:c3:31:b4:b9:35:cd:ca:5e:75:b9:8d:3f:
9e:5f:a1:f5:a5:aa:34:aa:e9:fd:ad:ee:d5:bb:be:6b:00:5b:
f4:3d:a5:3a:84:1f:3d:b1:d9:4f:d4:b6:e1:be:15:28:c7:ab:
d8:28:b9:22:21:6b:87:73:ee:30:6b:9e:98:c0:4b:fc:f4:d9:
8c:4e:58:65:50:36:ee:30:d5:6a:f4:bf:d0:ea:bf:ba:1c:4f:
5d:9c:74:ac:05:f8:33:82:e7:8a:b4:6f:49:c1:66:6a:37:76:
1e:bf:c6:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 02:47:02 2024 by rpki-client on console-fra.rpki-client.org