Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137372e302f32342d3234203d3e2032393134.roa
File: 3130392e3131302e3137372e302f32342d3234203d3e2032393134.roa (raw, json)
Hash identifier: q1tPmFwVQ8Hpuih06C+U7vhxE9PbCJpG0TjUB2JOTpU=
Subject key identifier: 8F:DB:59:D0:3E:B5:71:A2:A0:D9:25:49:70:9E:0B:FB:4A:94:FF:59
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 6207F9BA548B7FCA413CE5ABBE357927D2BFC2B7
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137372e302f32342d3234203d3e2032393134.roa
Signing time: Wed 13 Mar 2024 12:11:43 +0000
ROA not before: Wed 13 Mar 2024 12:06:43 +0000
ROA not after: Wed 12 Mar 2025 12:11:43 +0000
asID: 2914
IP address blocks: 109.110.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:07:f9:ba:54:8b:7f:ca:41:3c:e5:ab:be:35:79:27:d2:bf:c2:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Mar 13 12:06:43 2024 GMT
Not After : Mar 12 12:11:43 2025 GMT
Subject: CN=8FDB59D03EB571A2A0D92549709E0BFB4A94FF59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:f5:44:75:a6:60:39:99:5a:2a:55:b7:59:77:
8f:0d:ab:8f:c9:2b:75:1b:a9:99:9c:af:a5:84:d7:
5c:0a:18:95:b7:51:c7:95:82:d5:d8:48:b1:cd:99:
91:95:dd:47:44:b3:4e:be:37:fa:a3:36:b6:a4:6a:
fb:c8:ff:ba:f6:6b:c3:ce:fd:72:62:df:9c:e9:e7:
c4:9b:94:6d:8d:75:61:d6:a5:ae:11:7f:e7:31:18:
e4:15:54:28:97:92:ab:2b:c6:a7:95:cb:1b:62:55:
f9:01:fb:5d:b5:af:54:40:9c:37:2c:38:42:68:36:
99:fe:46:35:78:4a:85:a4:a5:d0:ef:6f:59:9d:89:
97:1b:3d:c4:4f:f1:d9:a9:bc:ce:2c:2a:05:5f:42:
aa:7c:26:a5:f4:c7:91:c1:25:46:1a:7c:82:84:4a:
31:5d:4d:0d:e8:fd:94:de:6d:0f:1a:55:b6:b9:cb:
5d:7b:3b:ee:ef:2a:03:56:dd:75:08:58:b3:7e:fb:
a7:a8:05:d9:99:35:7f:2d:da:23:c7:ff:68:b8:e5:
41:85:03:c4:eb:ab:a6:11:5f:df:5e:46:b0:35:f1:
14:dd:9d:c0:00:a2:26:83:eb:31:38:c9:5a:68:79:
b8:83:42:94:42:ff:95:af:e9:77:f9:06:5f:64:78:
07:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:DB:59:D0:3E:B5:71:A2:A0:D9:25:49:70:9E:0B:FB:4A:94:FF:59
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137372e302f32342d3234203d3e2032393134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.177.0/24
Signature Algorithm: sha256WithRSAEncryption
56:f6:9f:76:1d:c5:fe:d1:5c:54:85:8a:0d:55:98:8d:86:89:
32:87:98:68:97:e8:e1:da:81:d6:88:c7:31:d8:9f:48:0a:b9:
07:41:bf:36:56:4f:d3:90:2f:bb:bf:2c:2e:70:1d:95:9b:bf:
58:bb:ed:32:55:65:65:5e:a2:05:11:77:fa:8e:53:f6:27:01:
f2:91:43:38:a7:8e:e6:f5:3c:3f:75:63:02:77:49:b0:10:be:
5f:6d:05:ab:54:50:d1:9a:c1:60:ee:ce:92:6b:21:c4:3d:7f:
34:bb:15:dc:18:bf:b0:b1:c2:8e:2c:e3:09:17:6d:7e:bf:15:
cb:e6:cc:73:87:d4:c9:b9:8c:2a:6c:8c:9c:e2:46:61:2d:75:
54:ad:0b:93:c9:b6:3c:6c:34:87:85:8d:9d:46:cd:38:47:e1:
31:cf:17:46:70:3e:ff:c9:63:fa:27:9b:c3:cf:0c:33:db:b3:
2c:2d:b9:08:3b:b9:5f:31:5a:30:69:0d:0d:ff:23:40:85:07:
1d:ea:69:f9:49:ac:5d:cd:c3:a3:fe:87:a3:a0:57:5f:b1:a0:
50:cf:57:b4:7b:52:6e:93:18:ce:53:e7:e3:dc:9c:8c:e3:8e:
01:70:81:1c:65:f3:4d:51:87:74:d7:2a:30:29:67:63:c0:fa:
c9:51:cc:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org