Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136342e302f32342d3234203d3e20313937363439.roa
File: 3130392e3131302e3136342e302f32342d3234203d3e20313937363439.roa (raw, json)
Hash identifier: kxP+/6BDKtAqttpl3Ws94XpbjwoJES3QEQdmlOEpsL8=
Subject key identifier: D8:EB:05:C8:42:5D:40:C3:E1:A4:5E:52:10:01:6A:57:03:E8:E2:81
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 57A37C37C7D826EA03C424584B2A5F7F1FA6F0C8
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136342e302f32342d3234203d3e20313937363439.roa
Signing time: Sat 11 May 2024 01:00:00 +0000
ROA not before: Sat 11 May 2024 00:55:00 +0000
ROA not after: Sat 10 May 2025 01:00:00 +0000
asID: 197649
IP address blocks: 109.110.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:a3:7c:37:c7:d8:26:ea:03:c4:24:58:4b:2a:5f:7f:1f:a6:f0:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: May 11 00:55:00 2024 GMT
Not After : May 10 01:00:00 2025 GMT
Subject: CN=D8EB05C8425D40C3E1A45E5210016A5703E8E281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:86:f4:66:31:25:ff:e7:ec:29:d5:64:d0:7f:
8a:ad:5b:13:67:ac:f7:c5:b5:fd:15:75:26:08:cc:
ad:d8:77:c3:e1:26:6c:60:dd:d1:24:76:44:3b:3e:
af:ac:e8:d2:f6:f2:b9:d2:95:ae:87:05:b8:0d:f8:
95:72:f4:67:da:51:ec:d5:4c:b7:98:26:52:7f:80:
36:e0:54:a8:33:be:54:18:49:28:c8:28:8b:58:1f:
fc:89:0e:6a:3c:52:16:9e:dc:8a:d9:e9:73:a2:81:
fd:74:05:d8:25:3e:ae:2e:88:b6:89:9f:ca:5b:f4:
ad:6b:67:d2:ed:bc:79:59:7a:12:13:f7:55:64:ae:
91:18:5e:f2:84:d7:53:ff:20:40:82:df:96:80:a9:
5f:a3:d7:7c:81:fe:82:7c:aa:3b:82:11:99:d6:f8:
1f:88:f5:90:1b:b3:e3:13:03:72:8e:b5:41:34:82:
93:e2:53:97:cd:2f:57:10:7f:98:e7:e4:73:ed:7b:
c3:e3:ab:bb:12:b2:33:cf:4c:f9:14:b8:1f:49:33:
c8:d2:73:6e:7d:8b:97:68:ba:f4:d5:f3:3c:d2:04:
88:eb:e5:73:c8:e3:cc:c1:4a:7d:a6:dd:7a:35:5e:
ba:03:6f:f0:44:16:31:44:21:f6:e9:22:ad:ff:23:
96:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:EB:05:C8:42:5D:40:C3:E1:A4:5E:52:10:01:6A:57:03:E8:E2:81
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136342e302f32342d3234203d3e20313937363439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.164.0/24
Signature Algorithm: sha256WithRSAEncryption
24:e1:77:9c:7e:30:7e:39:80:c9:59:1d:0e:bd:c8:78:5f:9d:
37:bd:5e:df:f1:0e:01:7d:d4:dd:89:10:74:9d:02:85:bd:e1:
77:23:d9:e4:4c:d1:0b:f4:57:6c:f8:76:4e:a1:59:11:ad:fe:
a6:7e:9f:72:fb:f3:bb:66:f6:92:20:19:f8:1d:4b:bc:fe:90:
ab:45:3e:fb:5e:fc:c7:86:b3:66:5f:d8:91:49:48:28:be:fc:
3a:b7:ee:29:f9:c3:a5:33:c3:ae:f1:99:b9:85:3a:13:9b:12:
77:f6:50:bc:77:9b:cc:2d:a6:23:3b:b0:ed:47:6c:07:65:97:
29:d2:ab:11:57:02:74:ea:d7:bf:35:14:a6:2e:70:a8:7f:f7:
22:b9:1a:ca:55:3a:77:e0:84:70:0d:25:bd:f6:da:10:fb:a7:
a7:29:e9:a0:f3:2c:62:82:1d:a3:36:85:b8:4e:cf:bf:00:4a:
0a:01:e0:91:b1:0a:9a:6e:e1:c3:34:3a:70:c8:b6:0c:29:92:
2c:de:e0:17:25:77:6c:0c:ea:9b:8d:00:b5:f8:f8:69:4a:a9:
2d:17:ac:ca:ce:96:f6:39:ea:b1:f1:79:10:2d:c7:9e:a9:df:
b3:cf:bb:e5:50:b0:52:de:a1:7e:af:27:b0:7e:69:c0:d6:6d:
f3:9d:a9:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org