Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136362e302f32342d3234203d3e20323131343339.roa
File: 3130392e3131302e3136362e302f32342d3234203d3e20323131343339.roa (raw, json)
Hash identifier: IoHPZV/ks18fiY0lyq28jHv3CbN5O8c/IV/OtcpswCs=
Subject key identifier: C9:DE:68:BC:4F:9B:25:90:2E:0D:B2:7D:3D:B0:44:69:C6:44:CA:17
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 6A58F2A79020F58F7F2485DBF5CABFD42123F6D5
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136362e302f32342d3234203d3e20323131343339.roa
Signing time: Wed 22 May 2024 08:40:42 +0000
ROA not before: Wed 22 May 2024 08:35:42 +0000
ROA not after: Wed 21 May 2025 08:40:42 +0000
asID: 211439
IP address blocks: 109.110.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:58:f2:a7:90:20:f5:8f:7f:24:85:db:f5:ca:bf:d4:21:23:f6:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: May 22 08:35:42 2024 GMT
Not After : May 21 08:40:42 2025 GMT
Subject: CN=C9DE68BC4F9B25902E0DB27D3DB04469C644CA17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c0:6e:3a:d9:de:d5:04:c8:00:38:60:20:3e:
79:0f:51:64:81:18:48:f9:7b:3b:34:94:43:ae:2f:
8d:71:6a:81:a8:02:11:74:03:d3:3e:65:8c:ab:06:
df:15:82:89:3d:7e:23:29:90:40:e7:38:e8:af:09:
30:5b:1d:de:12:c7:ee:20:04:00:3f:aa:04:2f:bd:
e6:53:d9:b8:25:95:55:b3:de:f6:98:8e:5c:16:15:
e6:fd:fa:7b:5d:d6:f0:22:39:fd:ac:85:82:db:b7:
6f:f9:7a:27:b4:1b:4c:fd:2a:d0:d5:07:f5:30:93:
03:80:cc:e6:c3:d5:93:96:9b:59:49:02:51:2d:7d:
c0:32:fa:c2:60:85:28:24:6a:b5:60:56:d9:be:cf:
0c:c1:b9:08:45:fa:7d:22:6c:87:e0:81:74:e9:22:
5f:a4:d0:17:04:38:9b:6c:09:af:0d:8d:ae:73:03:
c9:b5:57:2c:8f:32:e8:aa:69:98:8d:6c:af:6a:67:
5d:6d:11:96:11:48:0d:42:22:cf:86:72:1b:55:9b:
54:0b:67:d2:ad:5a:b4:0a:9e:54:cf:0d:ee:81:0a:
5b:49:f8:58:97:e9:4c:df:75:5d:7e:d2:4f:8a:b9:
1b:75:ec:46:bf:1f:02:6a:d2:f8:d5:ed:d1:8b:34:
32:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:DE:68:BC:4F:9B:25:90:2E:0D:B2:7D:3D:B0:44:69:C6:44:CA:17
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136362e302f32342d3234203d3e20323131343339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.166.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:56:4f:53:22:06:aa:44:96:4b:c0:9e:e5:1d:1f:fc:a3:aa:
0c:42:f9:9a:77:08:36:d5:66:6e:9a:83:ab:27:85:40:ae:6d:
b7:34:a0:38:18:c6:d3:4d:61:60:d0:3d:e6:8a:c4:bc:9e:a0:
12:fe:f1:5f:be:3c:48:95:75:c1:07:65:42:ab:bd:11:23:9a:
51:0c:38:8e:7f:c1:6f:c7:7f:1b:3d:8f:d5:8c:d9:bc:d4:48:
df:b6:9d:01:cc:a1:d4:bb:74:bb:39:11:aa:9c:76:39:e0:7a:
3d:5c:11:cd:33:47:22:68:c5:66:f9:f6:aa:50:2b:8f:3a:ca:
6c:c4:63:0f:86:a7:e6:15:22:5e:0b:3a:70:87:3b:6b:10:f2:
88:80:b9:d5:2b:9e:36:c1:a3:42:a8:c5:2d:2b:4a:56:e8:10:
6f:c1:fb:8e:7b:22:41:eb:91:d2:c8:cd:31:37:df:53:d5:02:
8d:b9:93:a1:4d:38:2e:11:3f:9d:ff:c7:2e:73:3b:bf:90:42:
11:8f:5a:90:f4:2c:0f:20:30:40:b9:6c:56:63:0b:0a:5a:e8:
12:fa:db:ac:52:0a:a4:6b:17:00:2c:80:1c:eb:de:0a:22:2b:
84:6d:5b:55:ce:47:05:60:63:35:a9:d0:85:50:e2:bc:3d:a9:
5d:57:a6:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org