Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136302e302f32342d3234203d3e203136323736.roa
File: 3130392e3131302e3136302e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: qmZDC2TdBMVCexxJZwkgbRBilbvlB01wvqzyAyCpSoQ=
Subject key identifier: B4:F3:BC:4D:37:A1:9A:36:7B:AF:B0:86:7F:FA:86:59:65:2D:FA:0E
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 0CE26BD75C17B3701F01CA4843A7FFE5FF3EEA79
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136302e302f32342d3234203d3e203136323736.roa
Signing time: Thu 03 Oct 2024 09:22:55 +0000
ROA not before: Thu 03 Oct 2024 09:17:55 +0000
ROA not after: Thu 02 Oct 2025 09:22:55 +0000
asID: 16276
IP address blocks: 109.110.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:e2:6b:d7:5c:17:b3:70:1f:01:ca:48:43:a7:ff:e5:ff:3e:ea:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Oct 3 09:17:55 2024 GMT
Not After : Oct 2 09:22:55 2025 GMT
Subject: CN=B4F3BC4D37A19A367BAFB0867FFA8659652DFA0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:34:9b:50:86:f7:95:c5:97:03:d2:b2:9f:13:
6f:29:ab:dd:4b:2d:68:b7:79:60:10:1d:de:78:6f:
35:cc:df:24:96:68:93:b1:99:a3:47:40:2f:68:2d:
be:0a:26:f4:bc:1c:3c:62:a6:d7:1a:7e:05:c5:d8:
1a:2b:07:27:26:c5:c3:61:6e:86:ba:79:ca:92:d4:
16:42:ea:92:45:65:c7:e0:d0:15:39:c9:43:c8:fc:
01:0e:1e:2e:19:39:12:0c:8d:77:3f:c5:41:2a:d5:
39:fa:96:10:3f:39:55:cd:13:1c:9c:b8:88:59:c9:
bc:5b:60:c1:ea:66:26:b7:c0:06:f7:b3:06:bc:a6:
f5:76:e8:fa:83:ae:f6:dd:64:76:4e:44:84:9b:6d:
62:b4:94:9b:92:9a:3a:e0:1e:b1:98:21:e0:76:e6:
74:d1:dc:cd:cb:e9:78:7f:66:1a:ca:95:5b:e8:71:
de:46:eb:17:3f:c2:2a:6d:35:6f:e3:00:e8:d1:7e:
60:be:03:a6:33:fd:07:4e:80:22:e7:49:58:03:b6:
28:66:a2:1f:ef:53:a2:e3:32:9d:5d:1e:bd:a6:b2:
71:e9:46:a0:5f:a2:b6:34:c3:f9:be:93:e2:af:3d:
c8:b7:d0:da:dd:69:f3:ca:30:ac:24:bb:39:d4:9e:
86:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:F3:BC:4D:37:A1:9A:36:7B:AF:B0:86:7F:FA:86:59:65:2D:FA:0E
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136302e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.160.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:fc:c8:41:dd:65:ea:9f:c8:56:69:58:06:87:36:b8:a4:21:
43:81:a0:21:41:fb:83:61:f4:7d:6d:16:d3:f1:86:ef:00:3f:
83:a0:69:ea:63:a6:d0:05:d9:83:5b:a2:d4:8a:df:f3:72:a5:
f5:24:08:cf:7a:8c:4f:25:82:97:44:cf:ca:09:ac:74:c4:15:
69:be:9d:2f:d2:17:53:42:dc:a8:99:e2:20:15:a9:4f:d9:76:
3e:08:54:4a:87:a3:fa:19:a4:45:a9:22:5a:f1:11:c0:f6:51:
fb:22:0b:1d:d2:0c:d6:70:3b:89:c7:28:94:9c:a2:a7:dc:db:
19:5a:e7:99:6c:64:e0:c6:5a:c3:cd:2e:40:7c:14:9e:be:4c:
fa:f2:68:b4:a6:28:d0:bf:87:16:3b:ce:18:2e:1f:dc:62:25:
da:dc:26:70:f9:a3:b6:be:11:65:5a:fd:42:51:96:fc:c4:ee:
1c:08:49:5b:4f:11:81:b3:7a:51:c2:45:0a:f0:4c:27:84:49:
6d:59:a1:21:94:4b:f1:da:60:b3:dd:b6:99:bd:4c:cd:fc:a6:
7a:e0:2a:8c:09:28:49:43:c7:9d:b8:8e:37:f6:3e:2d:69:54:
97:41:71:1f:e1:0d:a9:a2:49:00:a8:d6:31:53:cc:64:b7:c5:
27:10:ac:1b
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUDOJr11wXs3AfAcpIQ6f/5f8+6nkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl
ODZlMGVmYzAeFw0yNDEwMDMwOTE3NTVaFw0yNTEwMDIwOTIyNTVaMDMxMTAvBgNV
BAMTKEI0RjNCQzREMzdBMTlBMzY3QkFGQjA4NjdGRkE4NjU5NjUyREZBMEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPNJtQhveVxZcD0rKfE28pq91L
LWi3eWAQHd54bzXM3ySWaJOxmaNHQC9oLb4KJvS8HDxiptcafgXF2BorBycmxcNh
boa6ecqS1BZC6pJFZcfg0BU5yUPI/AEOHi4ZORIMjXc/xUEq1Tn6lhA/OVXNExyc
uIhZybxbYMHqZia3wAb3swa8pvV26PqDrvbdZHZORISbbWK0lJuSmjrgHrGYIeB2
5nTR3M3L6Xh/ZhrKlVvocd5G6xc/wiptNW/jAOjRfmC+A6Yz/QdOgCLnSVgDtihm
oh/vU6LjMp1dHr2msnHpRqBforY0w/m+k+KvPci30NrdafPKMKwkuznUnoa9AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUtPO8TTehmjZ7r7CGf/qGWWUt+g4wHwYDVR0j
BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi
MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo
dUR2dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt
OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzMDM5MmUzMTMxMzAyZTMx
MzYzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzYzMjM3MzYucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BABtbqAwDQYJKoZIhvcNAQELBQADggEBAKz8yEHdZeqfyFZpWAaHNrikIUOBoCFB
+4Nh9H1tFtPxhu8AP4OgaepjptAF2YNbotSK3/NypfUkCM96jE8lgpdEz8oJrHTE
FWm+nS/SF1NC3KiZ4iAVqU/Zdj4IVEqHo/oZpEWpIlrxEcD2UfsiCx3SDNZwO4nH
KJScoqfc2xla55lsZODGWsPNLkB8FJ6+TPryaLSmKNC/hxY7zhguH9xiJdrcJnD5
o7a+EWVa/UJRlvzE7hwISVtPEYGzelHCRQrwTCeESW1ZoSGUS/HaYLPdtpm9TM38
pnrgKowJKElDx524jjf2Pi1pVJdBcR/hDamiSQCo1jFTzGS3xScQrBs=
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org