Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136322e302f32342d3234203d3e20323136313833.roa
File: 3130392e3131302e3136322e302f32342d3234203d3e20323136313833.roa (raw, json)
Hash identifier: 62CYCcbTIMFFo/B5ein5fABzQ5Z6y4lorMgOH7A3ZHE=
Subject key identifier: 06:86:CE:B3:40:E1:C7:D6:0E:4D:08:07:FC:12:BC:BC:5F:64:61:33
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 328556C529D7106CE35869BFC1094246F4AC06AB
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136322e302f32342d3234203d3e20323136313833.roa
Signing time: Wed 24 Apr 2024 19:09:54 +0000
ROA not before: Wed 24 Apr 2024 19:04:54 +0000
ROA not after: Wed 23 Apr 2025 19:09:54 +0000
asID: 216183
IP address blocks: 109.110.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:85:56:c5:29:d7:10:6c:e3:58:69:bf:c1:09:42:46:f4:ac:06:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Apr 24 19:04:54 2024 GMT
Not After : Apr 23 19:09:54 2025 GMT
Subject: CN=0686CEB340E1C7D60E4D0807FC12BCBC5F646133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6b:16:50:95:8c:d3:3b:38:b4:25:76:e3:67:
cc:dd:af:16:df:4c:04:b6:68:f6:44:96:c5:0d:ed:
a7:f8:d5:b8:29:32:a8:ab:a9:fd:02:cb:5a:a9:ee:
75:fd:41:e7:2c:8c:61:31:71:b5:d3:15:5b:fa:4b:
bd:e4:5b:98:e6:1a:c4:ac:fc:a0:b9:d3:f2:6f:6f:
4c:7a:27:af:7d:4f:e8:3e:2d:ab:88:6a:53:e5:25:
1d:57:ac:74:5c:de:ed:66:22:1d:e7:70:14:b6:f6:
ae:89:97:a0:c5:bd:44:40:7d:bf:e5:b2:d2:9c:81:
e5:ee:64:d4:a2:f1:fb:cc:83:8e:e0:90:cf:4b:87:
29:59:f9:c5:d5:65:d5:63:43:81:1c:67:c3:69:3c:
b1:15:93:50:69:31:1d:54:81:fd:7e:5b:9d:17:d0:
b7:da:eb:ec:a3:24:d9:b0:92:4d:8c:b0:2c:b9:da:
f4:a6:2f:3f:3e:dc:71:d2:63:0d:d6:fb:f8:a5:09:
14:bf:92:6f:1c:cb:5d:47:7d:2f:d0:c6:82:89:b9:
06:bf:fd:75:45:12:5e:f1:dc:56:3b:f1:a0:9b:65:
9a:b5:02:79:3c:63:fe:de:4a:ef:44:1d:ef:25:99:
23:66:dd:3f:8b:ae:7a:88:2d:50:7c:23:b9:1e:9a:
e4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:86:CE:B3:40:E1:C7:D6:0E:4D:08:07:FC:12:BC:BC:5F:64:61:33
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136322e302f32342d3234203d3e20323136313833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.162.0/24
Signature Algorithm: sha256WithRSAEncryption
55:95:87:bd:f1:0d:d9:ad:aa:a5:01:9c:31:30:b2:7c:3f:eb:
a5:44:b7:c3:ed:b3:ac:57:ac:5a:a1:07:a1:9e:61:de:d1:5f:
fe:6d:4f:e9:0f:60:ee:e4:67:24:d3:d7:16:45:00:c6:07:30:
5b:00:39:f4:fe:6f:b1:2c:c4:7e:0e:ad:1e:07:8e:d8:d5:29:
41:1b:24:a2:37:76:1a:fc:36:27:22:8c:fd:73:e2:72:8c:59:
a9:84:8b:e3:95:f3:c2:fd:a6:22:1a:c5:e9:b1:5d:c9:f9:eb:
63:bc:19:b2:c3:02:b8:7d:7f:03:ef:bb:95:86:e2:4f:c5:88:
1e:09:f4:30:41:dc:a7:2f:f8:67:46:87:36:ab:2a:a1:da:77:
67:f8:05:d0:f9:59:14:ba:ce:cf:1f:77:70:d9:68:dd:a9:83:
8f:96:d7:27:dc:be:5b:4b:3d:51:81:84:19:62:11:0b:3f:b3:
95:ee:4c:96:b3:6a:53:f7:06:7c:27:ec:d4:ef:92:2f:8a:9c:
eb:f5:1a:83:0b:4b:48:81:17:67:79:d1:70:43:14:13:a1:11:
7e:5a:c6:f4:9b:79:a2:db:dd:03:95:c4:43:9c:c6:97:7f:d1:
60:d7:9b:2f:22:c8:4d:a0:b3:1b:41:3e:a8:fb:31:34:13:8c:
52:66:f0:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org