Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138302e302f32342d3234203d3e203233343730.roa
File: 3130392e3131302e3138302e302f32342d3234203d3e203233343730.roa (raw, json)
Hash identifier: 398pCF4G0SHFedvedYH3T9J3fxrIaeSAkA3gv2DGpME=
Subject key identifier: 47:C7:42:B6:0F:DA:78:3D:B3:DD:F2:BA:7E:D7:41:80:19:0A:90:7E
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 1FF6731997AF2DD816AEE02A59E111CA041E7635
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138302e302f32342d3234203d3e203233343730.roa
Signing time: Tue 20 Feb 2024 11:04:44 +0000
ROA not before: Tue 20 Feb 2024 10:59:44 +0000
ROA not after: Tue 18 Feb 2025 11:04:44 +0000
asID: 23470
IP address blocks: 109.110.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 14:46:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:f6:73:19:97:af:2d:d8:16:ae:e0:2a:59:e1:11:ca:04:1e:76:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Feb 20 10:59:44 2024 GMT
Not After : Feb 18 11:04:44 2025 GMT
Subject: CN=47C742B60FDA783DB3DDF2BA7ED74180190A907E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:60:34:c3:e3:e6:d2:4c:98:94:73:eb:28:d2:
fe:4c:f2:65:0c:75:76:5e:09:42:77:27:9e:7d:00:
29:59:6c:eb:42:44:c4:2e:b3:0a:f9:7c:27:0d:e8:
7a:9a:02:71:77:64:6c:4f:cb:16:91:7a:7c:e3:0f:
91:38:01:88:a4:42:f0:0c:42:2b:ae:71:79:0d:e0:
a9:8e:72:52:70:ad:e0:b2:51:8f:25:fb:6e:bc:e8:
42:5a:f2:d4:ed:a6:a1:fa:65:b6:6d:d5:0a:8a:11:
10:38:2f:89:dd:50:e6:8a:b6:27:33:9b:82:cf:54:
24:a3:da:6a:18:a3:a9:b0:c7:c2:53:ee:b9:34:35:
15:f2:24:66:49:a1:33:70:c6:2d:50:23:29:c5:bf:
df:8f:4b:9d:c5:9d:59:9a:15:49:4a:91:fa:43:ee:
3b:8c:6d:64:74:87:32:a6:c6:a5:37:35:c2:a4:63:
b0:ed:8f:1c:3b:06:08:af:e9:79:83:8d:b1:de:65:
1b:8c:45:16:ae:94:36:1e:77:66:67:41:ad:38:b0:
52:10:96:2d:97:81:d7:cc:a8:50:fa:1b:46:e6:d1:
49:86:26:76:bd:5c:55:66:ce:b2:51:f9:42:ef:8d:
cf:c9:ff:73:e8:3a:d8:80:e7:a4:74:f0:9b:2f:02:
22:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:C7:42:B6:0F:DA:78:3D:B3:DD:F2:BA:7E:D7:41:80:19:0A:90:7E
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138302e302f32342d3234203d3e203233343730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.180.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:cd:4b:08:c9:3b:a2:f1:13:3c:56:81:ce:cd:8f:99:d0:80:
9a:d4:9e:4b:fc:67:1b:90:a7:6a:57:9d:22:ac:d3:09:46:9a:
9e:28:06:d8:12:26:3f:f5:be:85:43:1e:7e:eb:0a:f3:ee:3d:
81:bb:c0:35:f8:95:b4:38:50:b6:cb:4a:4b:97:74:57:c6:b9:
ea:14:b8:96:2b:67:c0:1b:97:cc:35:00:de:ec:d7:ce:8e:6c:
e1:92:34:ed:70:22:56:5f:ea:32:6f:29:cd:bb:42:18:17:50:
30:91:3b:29:69:5e:e5:9d:fe:07:d7:e9:08:b4:f0:c9:50:b7:
2a:a0:5d:c4:44:94:56:b8:7f:47:2e:7b:3a:64:af:7d:50:8c:
5e:23:56:b6:8d:2c:d5:5c:13:19:b1:8c:db:67:da:60:de:84:
b6:fc:cf:f6:38:c1:5b:7b:43:f5:d7:07:97:cc:d0:03:4c:85:
e9:83:d8:e5:59:bc:6e:b4:57:5f:f1:4e:a4:45:d8:fd:c5:d5:
0d:36:32:c0:49:74:86:d1:d4:8b:1e:79:93:e0:da:95:5e:20:
5a:e6:60:21:a1:bc:d6:20:a7:fb:e6:24:5a:c0:7e:b9:c4:67:
60:8f:46:97:e6:87:27:f9:d8:ee:06:bf:49:13:e8:c0:a7:85:
85:63:d5:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 21:27:18 2024 by rpki-client on console-fra.rpki-client.org