Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136302e302f32342d3234203d3e203233343730.roa
File: 3130392e3131302e3136302e302f32342d3234203d3e203233343730.roa (raw, json)
Hash identifier: vteYZYL+OxC0zPvhTsde6U41HhuuYea4ebJSVXhr/n8=
Subject key identifier: 92:98:0E:D4:6E:39:8C:13:07:FB:87:20:B2:3D:04:3F:B3:0E:2D:71
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 09EA3DA235BD44EB855B3A15B119A29049E13145
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136302e302f32342d3234203d3e203233343730.roa
Signing time: Thu 25 Jan 2024 05:04:05 +0000
ROA not before: Thu 25 Jan 2024 04:59:05 +0000
ROA not after: Thu 23 Jan 2025 05:04:05 +0000
asID: 23470
IP address blocks: 109.110.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 14:46:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:ea:3d:a2:35:bd:44:eb:85:5b:3a:15:b1:19:a2:90:49:e1:31:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jan 25 04:59:05 2024 GMT
Not After : Jan 23 05:04:05 2025 GMT
Subject: CN=92980ED46E398C1307FB8720B23D043FB30E2D71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:49:a3:c5:9c:3d:f2:70:9c:e3:65:34:8b:4b:
b6:9d:75:4b:7c:57:72:43:69:89:03:b0:b0:5d:bd:
40:20:23:ac:3f:35:92:e5:93:15:aa:79:44:2b:75:
56:ba:16:9f:90:f6:6f:23:86:3c:c1:5b:e1:65:32:
6c:f1:50:ce:82:5e:ef:bf:4c:2b:24:b8:18:50:1a:
13:76:1a:56:5e:1e:f2:74:d0:f7:87:7d:1a:c3:f0:
6d:6b:97:f0:73:46:37:c6:b9:00:e1:21:1e:80:61:
30:b6:6d:b9:47:51:e6:3f:4a:a0:f8:9e:b3:0b:73:
ab:7f:c3:dd:18:09:d8:99:af:86:62:29:5b:04:d1:
75:c4:3d:d9:51:be:19:30:e5:a8:42:5e:dd:fa:09:
6f:f3:53:08:bd:c9:30:98:80:c9:53:5c:3b:98:a3:
55:d0:6e:34:2d:b3:40:9b:08:e3:33:1e:f4:55:be:
d3:63:79:35:6f:43:fa:b6:7d:d2:08:48:b5:bd:50:
c5:97:69:e2:83:d8:f6:9a:0b:56:ca:3a:81:8c:96:
6b:aa:7f:de:38:46:e9:d4:45:1b:ad:29:18:73:e0:
f2:99:3f:06:39:c9:c1:e0:0f:43:3b:a2:6f:0c:a6:
de:3c:5d:f8:7c:6f:c3:86:61:68:c2:64:d5:36:0e:
78:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:98:0E:D4:6E:39:8C:13:07:FB:87:20:B2:3D:04:3F:B3:0E:2D:71
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136302e302f32342d3234203d3e203233343730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.160.0/24
Signature Algorithm: sha256WithRSAEncryption
02:18:bf:3f:c1:53:97:c9:37:75:ee:6b:73:e4:f5:b5:75:3b:
e9:a2:1c:e2:7f:99:c2:6a:c7:05:23:32:d0:40:57:e2:8e:f3:
30:46:07:46:3f:b5:f9:33:f5:0f:72:e0:20:da:86:f9:57:e0:
49:ca:f6:a4:5e:3b:18:97:7d:c5:4e:00:fd:62:68:84:41:e6:
d6:4b:cf:92:89:7b:1a:16:7b:43:8e:92:47:af:02:1f:9e:36:
20:63:ef:d1:f7:9b:0c:7e:72:89:bc:58:a4:7c:3c:70:a6:b4:
6a:26:2e:06:81:85:a5:ea:2e:cb:6c:d5:d9:3d:81:87:64:d1:
0a:4f:1a:cc:73:3d:e7:84:20:63:a5:e8:ba:8e:6d:50:83:38:
fb:72:55:c2:e1:63:4d:74:3f:73:f2:89:66:4f:97:5c:ab:89:
eb:6a:07:5d:19:a4:41:9f:94:b8:54:ee:c0:0c:b9:09:25:b7:
43:b8:fd:e0:f9:db:cf:4f:7f:43:05:1b:dd:90:1c:3c:80:74:
05:09:c2:35:30:41:78:4b:e5:c2:a0:3b:d0:8b:6b:62:49:cf:
73:90:e7:11:a6:a3:1e:bf:22:ce:00:33:85:06:79:5b:9c:b2:
ef:4c:ba:a5:21:52:1e:85:e4:f6:a6:86:64:1a:45:e3:e0:37:
b8:01:f8:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 21:27:18 2024 by rpki-client on console-fra.rpki-client.org