Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137392e302f32342d3234203d3e203233343730.roa
File: 3130392e3131302e3137392e302f32342d3234203d3e203233343730.roa (raw, json)
Hash identifier: KVtb0lcNJs1t7rpTylxbMqnEZ1b4Zbff4X6Qc4GMHmI=
Subject key identifier: E6:1E:7F:9A:57:38:B0:00:57:E3:62:47:BC:DE:9B:63:82:AC:69:77
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 10221FD8581F5713E469087EBA3900F6F7FAC47B
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137392e302f32342d3234203d3e203233343730.roa
Signing time: Sat 20 Jan 2024 14:36:52 +0000
ROA not before: Sat 20 Jan 2024 14:31:52 +0000
ROA not after: Sat 18 Jan 2025 14:36:52 +0000
asID: 23470
IP address blocks: 109.110.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 14:46:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:22:1f:d8:58:1f:57:13:e4:69:08:7e:ba:39:00:f6:f7:fa:c4:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jan 20 14:31:52 2024 GMT
Not After : Jan 18 14:36:52 2025 GMT
Subject: CN=E61E7F9A5738B00057E36247BCDE9B6382AC6977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:32:69:d1:50:eb:0a:76:f8:71:44:24:5b:a3:
c5:5a:0f:8c:78:46:72:f8:33:34:a9:83:19:db:4b:
3c:fc:e4:bf:37:5b:9f:82:06:58:cb:d8:0b:70:43:
34:88:58:0c:f4:3c:32:a0:bb:5b:0b:68:7d:10:f3:
64:c6:32:72:ed:85:cf:68:8c:75:33:e1:03:ef:a5:
6f:72:09:87:37:cf:e9:21:a2:02:bb:d9:fe:fc:ee:
35:6b:f6:9f:a6:61:67:a7:5f:9f:d0:aa:fc:a5:84:
1b:8a:bd:0d:a4:ad:50:c0:f4:70:46:32:bf:d3:a2:
4f:09:c7:77:bd:1d:01:6a:18:a0:c0:c6:26:ca:81:
ea:5f:ed:47:2b:67:4b:46:0a:7d:02:f6:d8:95:14:
a9:14:54:f7:30:c1:5a:fa:a8:df:d1:b1:9d:0a:8c:
22:cd:d9:77:52:94:10:7c:dd:1d:25:06:67:40:fa:
15:02:37:8f:17:ae:e4:c0:ca:6f:ff:4e:c3:97:4f:
98:76:44:b8:55:06:83:32:bf:6c:60:b4:6a:09:ef:
e5:b0:ff:66:62:74:ba:5e:7d:d2:ec:a5:98:a8:1e:
14:c3:5f:97:98:49:f8:64:3e:34:fe:1e:75:dd:d6:
94:6f:d3:73:d1:73:b4:51:d1:a0:1e:16:f0:c3:7c:
c9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:1E:7F:9A:57:38:B0:00:57:E3:62:47:BC:DE:9B:63:82:AC:69:77
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137392e302f32342d3234203d3e203233343730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.179.0/24
Signature Algorithm: sha256WithRSAEncryption
17:3d:0c:e0:c7:17:10:06:b7:f7:78:fa:fc:47:08:53:98:47:
53:78:a2:06:84:46:f9:2e:5a:17:2b:36:16:8c:06:f3:17:04:
52:47:28:5b:a2:8e:ad:99:24:fd:5a:ac:58:cb:79:bc:65:e3:
fb:21:61:c2:e7:43:79:78:a8:78:85:dc:7e:ef:f0:43:9a:23:
24:36:73:09:2d:19:72:d5:a0:5d:3f:93:72:0d:7b:c0:dd:96:
b7:cd:1c:f8:15:4d:27:08:23:d2:d7:25:cc:52:17:56:26:c4:
86:ad:89:9c:19:e7:7d:ca:9d:a1:a7:c8:8f:70:56:2e:e3:fd:
a5:7a:80:9a:9b:9b:86:ae:0c:91:65:2e:b9:72:87:52:26:35:
79:e9:36:94:4a:ae:08:e7:c2:49:a6:2b:be:85:f4:9b:ec:85:
53:ce:fe:4f:91:78:0e:7d:9f:c7:1c:e6:eb:7e:04:6b:ac:43:
da:32:74:1f:25:f1:78:94:07:ef:74:4c:19:44:1c:d3:72:68:
ea:8c:d5:74:4f:fa:0b:fa:e8:e4:c0:4c:bd:fb:dc:bd:f5:59:
30:3c:87:54:87:4f:b4:21:b8:11:75:ef:aa:ee:f3:77:ab:15:
4f:a9:79:cb:40:89:7e:1d:2a:68:d4:6c:4f:13:e0:ea:04:c5:
03:e8:fa:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 19:47:21 2024 by rpki-client on console-ams.rpki-client.org