Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136342e302f32342d3234203d3e20313432313436.roa
File: 3130392e3131302e3136342e302f32342d3234203d3e20313432313436.roa (raw, json)
Hash identifier: zBfPqKb1qxWBuEH46tlhZC/98uiDEy0ExWtya4G3Ge4=
Subject key identifier: 7D:CA:4F:11:10:93:BD:9D:8E:D0:78:E8:4F:13:1B:56:19:08:67:3A
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 77576D8CD4F32AF003ADBB2A9ECB47ECC6D4897D
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136342e302f32342d3234203d3e20313432313436.roa
Signing time: Tue 11 Jun 2024 07:26:04 +0000
ROA not before: Tue 11 Jun 2024 07:21:04 +0000
ROA not after: Tue 10 Jun 2025 07:26:04 +0000
asID: 142146
IP address blocks: 109.110.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Sep 2024 13:50:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:57:6d:8c:d4:f3:2a:f0:03:ad:bb:2a:9e:cb:47:ec:c6:d4:89:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jun 11 07:21:04 2024 GMT
Not After : Jun 10 07:26:04 2025 GMT
Subject: CN=7DCA4F111093BD9D8ED078E84F131B561908673A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6a:01:7f:e1:34:22:6e:82:e8:05:f3:3e:db:
ee:be:99:c5:79:8c:94:f4:13:de:e0:20:d2:41:e1:
7d:f0:fe:fe:01:07:67:a9:eb:55:a3:74:95:53:44:
9d:8b:c6:67:09:a3:76:49:15:da:49:a5:bf:4c:18:
ba:cc:16:b4:d4:b8:8d:43:98:c8:dd:a2:77:fd:b4:
76:04:d8:35:13:15:4c:97:85:a4:ef:12:a5:50:f8:
06:d4:8d:2a:dd:1e:d7:06:cf:9b:c9:2f:0e:7c:94:
1a:09:d5:99:ff:52:33:cc:ea:42:b1:f9:01:d2:6d:
bb:93:6f:9c:ba:31:45:20:60:ff:f1:1f:8c:42:84:
22:1f:29:ab:e3:b9:02:1b:dc:12:12:be:ba:21:84:
2e:cb:ac:a0:9c:dd:89:1d:e9:20:93:5b:72:b5:4c:
23:c3:31:05:d0:ed:62:8b:9e:92:e1:f9:61:4e:8e:
1e:23:07:8b:49:03:3c:09:d7:db:05:2c:d1:05:a9:
3c:33:77:c8:c6:17:01:ad:2a:7c:31:01:82:4c:1a:
dc:59:92:09:24:2c:b4:54:9e:44:6e:d0:2d:22:ec:
6a:d6:fa:21:8a:7e:49:c8:eb:17:ad:a8:06:11:6e:
ff:13:58:ca:cf:77:0b:96:7b:ec:98:d4:f4:ba:48:
ed:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:CA:4F:11:10:93:BD:9D:8E:D0:78:E8:4F:13:1B:56:19:08:67:3A
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136342e302f32342d3234203d3e20313432313436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.164.0/24
Signature Algorithm: sha256WithRSAEncryption
06:1d:cd:2a:a6:ee:d5:a9:8f:0c:01:91:df:5e:ea:eb:09:03:
66:60:b4:a8:8c:c2:84:53:e0:8b:4d:f9:f9:dd:4a:6d:ff:7e:
c2:54:24:e4:8b:92:ed:b9:cc:49:b9:b7:78:64:47:89:b5:15:
77:5f:9a:b7:69:bd:e1:28:66:6e:bd:b9:7a:25:39:2a:5e:f8:
ee:33:20:08:d5:2a:21:d2:85:de:2c:6c:4b:63:4f:b6:a6:ce:
02:16:dc:37:45:54:33:4f:14:64:d5:f3:31:4c:70:b3:6f:08:
4c:4b:b5:0b:94:19:0c:de:86:8f:3d:1d:43:be:b4:01:ab:f5:
e5:c4:c8:f9:01:83:a5:4a:ab:4b:4e:b8:79:c0:fe:9f:9d:12:
e4:67:eb:cf:6f:76:ba:7c:27:88:c8:62:9f:87:8a:36:68:ae:
42:c6:fb:6f:81:c8:c3:fb:d1:5a:42:11:22:ed:09:40:0a:16:
d3:13:0e:23:15:07:e3:d6:ec:aa:c6:ce:4c:a0:0c:c9:31:79:
d1:39:6a:d3:f4:f9:c5:c9:4b:11:f2:d1:16:0e:36:23:21:47:
ef:de:05:29:d6:c2:c4:cb:3f:d0:9e:32:13:5a:11:ea:a0:49:
c6:ee:d8:b5:e7:e6:88:43:7c:29:51:58:0c:69:9c:ea:48:bc:
5e:3c:dc:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 18:52:19 2024 by rpki-client on console-fra.rpki-client.org