Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136312e302f32342d3234203d3e203634323637.roa
File: 3130392e3131302e3136312e302f32342d3234203d3e203634323637.roa (raw, json)
Hash identifier: 6t3zjDrcYNbw7reV07UcVMEcGxDVk5VeDlWjbhjTJeE=
Subject key identifier: 03:EE:26:7E:B9:B3:76:C5:9F:05:C5:B8:F5:4F:FC:C2:2C:9F:DD:FC
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 5F3CAE029A74DD45AE8FA8B964AD6BAE6E85EC55
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136312e302f32342d3234203d3e203634323637.roa
Signing time: Mon 11 Mar 2024 18:04:47 +0000
ROA not before: Mon 11 Mar 2024 17:59:47 +0000
ROA not after: Mon 10 Mar 2025 18:04:47 +0000
asID: 64267
IP address blocks: 109.110.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:3c:ae:02:9a:74:dd:45:ae:8f:a8:b9:64:ad:6b:ae:6e:85:ec:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Mar 11 17:59:47 2024 GMT
Not After : Mar 10 18:04:47 2025 GMT
Subject: CN=03EE267EB9B376C59F05C5B8F54FFCC22C9FDDFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e7:39:3a:ba:ed:79:b5:45:99:14:20:a8:ea:
f4:06:8f:20:ec:c2:ce:27:80:cf:ad:a3:5b:9f:31:
d9:0e:41:bd:0d:ff:92:1d:80:14:c4:43:aa:35:ab:
b6:f1:5b:30:d8:30:93:f5:49:22:71:ad:21:d4:65:
b6:d0:97:b4:b6:0c:95:6d:87:65:1a:9f:31:c0:2c:
30:e0:1f:27:29:5e:29:83:3f:ce:6a:06:ea:9b:1f:
1f:47:35:05:99:05:f5:25:89:e0:e1:e6:ff:38:df:
3b:af:61:f4:f5:4f:da:29:e7:e1:13:87:94:6a:77:
7e:1a:b2:e2:b5:f2:a6:33:cd:1b:25:f9:52:33:db:
e9:b3:ed:48:b1:7c:80:2b:12:f4:0d:d9:f5:a9:ab:
a5:9c:ce:5a:66:4c:c3:0f:96:ed:44:e6:53:a9:5c:
a9:32:b0:15:d4:70:8e:a2:c6:b0:be:52:bc:52:55:
6e:0d:86:63:89:e9:4e:c9:08:19:c4:32:a5:f3:48:
aa:64:1e:a6:17:0f:51:f5:60:61:a3:19:f3:89:58:
3e:b4:cb:53:3b:ac:47:d3:3f:29:40:67:c2:6f:0c:
63:da:1b:9e:bc:87:41:aa:1d:6d:27:ab:4d:72:d7:
ed:4f:48:60:57:0c:f5:b2:3e:de:23:e0:15:59:fc:
f2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:EE:26:7E:B9:B3:76:C5:9F:05:C5:B8:F5:4F:FC:C2:2C:9F:DD:FC
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136312e302f32342d3234203d3e203634323637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.161.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:da:8b:36:b6:98:42:df:ac:6d:b8:b9:96:b0:39:ef:c7:fe:
22:d1:4d:49:84:9a:81:21:b5:c8:34:27:46:35:44:8f:89:60:
61:23:5b:80:cc:70:4c:16:14:98:50:2d:c0:b4:74:d8:f9:30:
cc:e7:88:fd:e3:e6:92:2e:70:ac:a9:59:ff:46:c3:ed:ac:7e:
eb:e0:af:1d:dc:8a:6e:8a:b8:df:05:0a:66:99:bb:3c:78:15:
fb:fd:9d:33:0a:0b:4d:fa:96:3a:ec:b6:d2:cd:e2:bd:5a:4b:
a9:d0:09:c5:f7:f2:2e:35:eb:f9:eb:31:f6:18:c5:e4:6d:2a:
c4:79:63:de:8c:8b:e8:e3:76:d7:22:f6:11:ae:fe:e5:3c:16:
00:b3:41:0d:95:d9:6a:5f:d0:65:74:c3:d6:6b:17:be:89:e1:
05:be:ad:2e:8f:ee:44:92:a3:fd:e6:f4:8f:e2:bc:00:75:d0:
50:3d:6b:3f:47:b0:a7:06:eb:0a:d1:8b:fb:62:14:67:2e:07:
39:96:56:5b:62:a7:fe:4c:43:1d:ab:a0:30:14:cb:6d:ae:b1:
db:0d:9c:f2:a2:be:32:66:6b:4e:5d:da:c8:e6:26:b1:19:44:
78:1e:6d:5a:94:b8:48:94:1e:a8:9a:21:83:16:ed:c8:a3:b2:
45:77:51:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 14:06:24 2024 by rpki-client on console-ams.rpki-client.org