Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137382e302f32342d3234203d3e203233343730.roa
File: 3130392e3131302e3137382e302f32342d3234203d3e203233343730.roa (raw, json)
Hash identifier: BUMLEirgbIRGWXLp/tgQy9P+komLVg72rX//3kIaW74=
Subject key identifier: E4:2F:57:AB:C6:CD:AE:C3:49:EA:35:9A:F5:60:CA:C0:89:31:CC:00
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 2EF0AA0412A000A1EB1F532436A721D836F6C1A6
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137382e302f32342d3234203d3e203233343730.roa
Signing time: Sat 20 Jan 2024 14:36:01 +0000
ROA not before: Sat 20 Jan 2024 14:31:01 +0000
ROA not after: Sat 18 Jan 2025 14:36:01 +0000
asID: 23470
IP address blocks: 109.110.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 14:46:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:f0:aa:04:12:a0:00:a1:eb:1f:53:24:36:a7:21:d8:36:f6:c1:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jan 20 14:31:01 2024 GMT
Not After : Jan 18 14:36:01 2025 GMT
Subject: CN=E42F57ABC6CDAEC349EA359AF560CAC08931CC00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:46:f3:63:48:c6:67:c5:f9:fc:33:7f:25:1c:
55:7c:a0:72:30:25:c4:9b:de:c3:d8:79:82:d2:5c:
98:27:e1:b6:17:5b:d8:29:d8:7d:69:a7:54:17:66:
14:1f:50:1d:09:14:b5:f2:13:67:e6:d8:3e:a2:07:
6d:cc:ec:ad:02:49:07:73:0b:bc:8f:79:0e:58:5d:
35:18:84:7e:0b:0c:f5:8c:17:a5:7c:62:3c:d9:00:
86:36:5e:78:d4:c9:01:eb:23:2b:c1:f5:3f:ed:96:
6c:87:a2:b2:2b:ba:e7:06:13:cb:5f:0e:8f:d0:59:
b4:42:cd:d8:a2:db:67:96:84:bb:a5:a3:0a:7b:3b:
7c:d3:21:8b:2f:17:ad:e1:26:70:86:68:66:e5:1e:
33:42:67:c9:0a:be:e3:cf:e6:a0:45:89:8e:a6:71:
84:98:f1:56:0e:ea:cb:1b:b5:06:d1:55:83:ee:94:
2e:1c:0f:d7:a0:23:17:fa:eb:78:63:84:55:b0:e7:
af:34:a8:f1:6b:9a:d9:da:ca:11:94:30:d7:df:07:
ef:30:65:9d:9b:1e:bc:ba:83:34:35:90:de:f6:0a:
1a:c9:85:9c:41:4a:19:b3:c6:2a:69:45:8c:ec:66:
4b:69:25:1d:ec:29:12:1d:fc:aa:77:e3:10:1a:90:
08:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:2F:57:AB:C6:CD:AE:C3:49:EA:35:9A:F5:60:CA:C0:89:31:CC:00
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137382e302f32342d3234203d3e203233343730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.178.0/24
Signature Algorithm: sha256WithRSAEncryption
76:47:60:21:b8:bc:64:67:12:86:a4:0c:a9:72:b9:4c:e0:6e:
8c:1a:c2:fb:7f:24:9b:70:8b:b8:26:2e:83:08:65:db:5c:da:
aa:61:74:7c:3d:89:f1:c3:22:7b:69:bd:01:5d:3f:4f:87:e3:
ca:85:61:79:f5:c1:02:b8:f9:1e:8f:e0:fe:74:fa:e6:6e:f6:
4a:db:14:71:e5:6f:7e:f1:73:3c:df:14:ce:98:7d:ef:65:31:
70:08:70:5a:99:f8:76:4c:3e:20:d6:5f:11:e0:92:c9:93:68:
e2:3c:1a:a8:60:4c:8d:bb:a4:8a:de:30:d2:d5:41:a9:00:96:
7d:1a:ec:18:57:83:71:ab:50:10:9f:d2:1d:42:6b:34:37:eb:
21:81:c4:50:18:aa:c0:b6:e6:4f:c9:10:e8:11:08:28:df:b1:
4a:69:83:fb:9f:4e:ea:d4:85:9b:25:b6:61:86:7f:b5:16:9f:
6c:f2:c5:59:44:0c:32:4a:1a:1f:16:19:56:cf:31:18:32:1c:
35:93:a3:ec:a0:11:7a:df:d8:b4:f8:9d:8c:92:6b:34:6a:0f:
0c:60:c1:9c:7e:2d:ba:df:8b:07:59:4e:d6:47:a2:e3:93:10:
9d:63:3c:63:fa:2a:5b:e4:3d:e5:d9:aa:ac:8f:2b:a3:12:b7:
73:09:f5:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 19:47:21 2024 by rpki-client on console-ams.rpki-client.org