Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138392e302f32342d3234203d3e2032393134.roa
File: 3130392e3131302e3138392e302f32342d3234203d3e2032393134.roa (raw, json)
Hash identifier: bO8pLciorCQkfwDKxWSt4FHqIeZEfqGoOv8RYMfXqMY=
Subject key identifier: 1C:F6:0E:C6:52:D1:30:14:44:D2:AD:69:DD:05:ED:DA:02:8A:79:C6
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 4A2271D469272D0B639D2CD0371505CBC8836D70
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138392e302f32342d3234203d3e2032393134.roa
Signing time: Wed 13 Mar 2024 12:11:43 +0000
ROA not before: Wed 13 Mar 2024 12:06:43 +0000
ROA not after: Wed 12 Mar 2025 12:11:43 +0000
asID: 2914
IP address blocks: 109.110.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:22:71:d4:69:27:2d:0b:63:9d:2c:d0:37:15:05:cb:c8:83:6d:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Mar 13 12:06:43 2024 GMT
Not After : Mar 12 12:11:43 2025 GMT
Subject: CN=1CF60EC652D1301444D2AD69DD05EDDA028A79C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:02:a6:b9:3f:10:4a:c8:07:1f:cc:77:41:cd:
cf:75:12:54:62:6f:05:23:64:c3:90:4e:48:46:20:
e3:6c:3b:b3:0e:91:ac:9b:96:1f:70:92:d1:f0:d9:
d9:5e:4d:09:00:4b:fb:d2:fa:ac:7f:7d:81:00:dd:
5e:f1:04:ec:4d:b3:c6:f1:8c:5c:89:34:20:82:fc:
5f:61:91:87:84:29:4c:c3:8f:24:f5:a1:4b:e9:89:
09:7a:a0:7a:f5:50:cf:5f:8a:cf:45:99:07:90:4e:
2b:75:5e:dc:9d:45:22:b4:b4:b0:f0:e4:1b:9d:5b:
c2:00:0c:e3:16:2a:90:8e:0b:cb:6b:22:98:a8:bb:
2f:85:b1:1e:b2:0b:4f:ed:bc:65:04:be:0b:97:fe:
47:01:8f:20:98:6b:86:0b:3e:5b:1e:25:dd:09:f5:
33:f2:7b:c4:c4:24:b8:1a:e4:87:e4:29:b1:ff:ab:
d6:ab:16:8f:e5:aa:21:15:d2:6c:3f:a3:7b:41:ef:
41:7c:c2:1e:66:e3:b5:9a:ca:cd:b6:a3:6d:6b:6a:
10:16:69:1e:b5:25:63:41:d6:54:a1:89:2b:20:17:
f7:fa:95:43:e3:a1:3e:2e:f5:47:a5:16:7c:24:16:
5e:dc:a1:4d:d3:dd:2a:e0:a1:91:f3:f1:d2:6d:61:
18:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:F6:0E:C6:52:D1:30:14:44:D2:AD:69:DD:05:ED:DA:02:8A:79:C6
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138392e302f32342d3234203d3e2032393134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.189.0/24
Signature Algorithm: sha256WithRSAEncryption
85:c0:2e:90:33:91:92:b6:d5:44:d2:c8:4f:2b:32:1f:30:d7:
1f:e6:43:ff:cd:57:c6:84:29:3d:db:ce:03:4f:05:04:b7:3b:
c0:ca:f0:89:d0:70:40:d3:ed:99:4b:18:de:93:e7:1f:44:4e:
9c:bf:e0:ca:55:9e:a0:6c:1f:bc:7d:e8:3e:54:a8:93:a6:2a:
a5:74:d6:90:32:08:b0:ce:7c:54:6d:2f:7d:fc:ea:f6:08:7d:
eb:74:9a:25:4e:42:38:7d:8d:4d:5f:95:9a:32:99:33:65:66:
20:5e:b8:be:0d:73:6e:c8:86:31:50:b0:f6:32:f8:30:74:9d:
dd:0c:b1:74:a0:33:3b:14:db:bb:7b:e1:a9:5c:c0:ac:29:4c:
36:0f:2a:9c:75:fc:bf:e6:00:9a:a9:01:ee:a4:d1:16:dd:4b:
54:05:a8:f4:70:18:3b:5f:7f:b1:a4:c3:40:14:03:3a:97:2b:
6c:91:c1:b5:e8:e7:96:d8:88:5d:59:e4:3d:f0:c5:1d:be:fc:
d4:0b:99:4d:11:79:c2:01:8f:a1:4f:5a:9b:1a:22:07:23:c8:
5f:ae:a9:21:d1:ef:fd:cd:ea:4f:c6:4a:e3:a4:18:33:be:c3:
a7:1d:4d:98:97:4c:47:7b:9f:a9:9f:69:b9:b8:27:40:61:77:
83:e2:17:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org