Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136392e302f32342d3234203d3e203432383331.roa
File: 3130392e3131302e3136392e302f32342d3234203d3e203432383331.roa (raw, json)
Hash identifier: +B7ey8w5rNu8v3/eO8wO83/pJ3O/6KjmXlq6j3/Ea7M=
Subject key identifier: 0D:42:EE:EF:E4:A1:F0:7F:74:41:30:56:4E:E1:77:16:EE:96:1C:9D
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 50DBBDD2FD1F4EA964B5F82C656CDCD798D48739
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136392e302f32342d3234203d3e203432383331.roa
Signing time: Mon 13 May 2024 04:58:47 +0000
ROA not before: Mon 13 May 2024 04:53:47 +0000
ROA not after: Mon 12 May 2025 04:58:47 +0000
asID: 42831
IP address blocks: 109.110.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:db:bd:d2:fd:1f:4e:a9:64:b5:f8:2c:65:6c:dc:d7:98:d4:87:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: May 13 04:53:47 2024 GMT
Not After : May 12 04:58:47 2025 GMT
Subject: CN=0D42EEEFE4A1F07F744130564EE17716EE961C9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:56:8e:f1:83:98:e8:6a:07:03:64:b0:03:ef:
69:04:72:18:4b:88:98:1d:e7:8f:6b:90:f6:85:a0:
15:2a:78:76:be:12:4f:bb:c6:9f:52:c0:88:13:11:
9b:d7:a9:64:b4:7a:c8:79:96:74:c2:ec:d1:5b:b9:
2e:a7:ee:ef:10:37:03:bd:bb:7e:59:c0:d0:75:eb:
c0:d8:ca:c7:bc:4a:0b:17:9f:5a:d2:c2:20:70:d3:
8e:f0:2b:2d:1d:70:2b:cc:02:e2:9b:b7:09:13:d6:
2b:c1:a6:81:17:5f:43:b9:b1:69:2a:46:53:75:d0:
f3:f6:98:e6:9b:e8:88:3e:e0:8a:66:44:a9:1d:ae:
99:be:7a:be:f7:f6:fb:60:c9:20:9c:c5:d5:40:e0:
00:cd:39:59:8b:ad:c2:54:4f:93:b8:e6:77:eb:ad:
48:db:cf:81:eb:ef:bd:60:35:15:dd:6e:06:91:cc:
e0:59:8b:53:d0:17:95:03:8e:f1:1b:1b:2e:56:8d:
5e:45:6e:df:6b:88:8e:73:8a:15:1d:f3:8f:23:6a:
c5:21:44:bc:56:ee:17:92:a6:db:df:7f:50:b9:4c:
ff:27:43:bb:57:6d:6f:9f:14:82:7d:ca:29:20:b4:
cd:46:00:08:fe:e1:ca:ba:4a:9f:45:e6:16:63:a8:
d4:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:42:EE:EF:E4:A1:F0:7F:74:41:30:56:4E:E1:77:16:EE:96:1C:9D
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136392e302f32342d3234203d3e203432383331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.169.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:68:90:2e:7e:1a:ac:61:10:b8:ee:cd:6a:81:16:d2:5a:96:
19:8b:fe:c9:3a:b4:de:ad:8e:ed:d5:46:7f:43:fa:43:e9:f1:
bd:1f:a5:f6:0d:5a:78:23:97:00:75:2b:a0:ca:02:6d:65:35:
12:07:e2:3d:52:6b:32:e2:91:23:6d:90:d8:c2:68:c8:36:dc:
e2:6b:f2:6b:2a:e3:10:66:f7:53:4a:49:e9:d0:ea:83:94:ec:
4f:a0:3c:7f:1f:4c:3c:53:97:c3:9f:b8:f3:bc:ef:c0:12:01:
45:5a:08:96:94:14:92:c9:90:bf:3f:73:6f:dd:1e:05:a7:2c:
7d:71:9d:c1:88:cb:88:97:e3:50:25:6a:8b:0e:1c:35:eb:b9:
db:ee:f5:aa:12:58:cc:7c:96:b8:c1:4f:c4:94:61:0e:d6:0c:
74:e2:b2:6c:f7:0c:c8:47:74:83:c6:0b:ca:c9:c5:49:83:9b:
17:f0:8a:1f:ef:26:54:8f:1f:b7:18:c9:1e:26:59:19:1c:17:
5b:ea:d4:81:25:c2:42:77:40:bd:ae:22:3c:d3:c2:ba:c1:5b:
6d:18:bd:25:5e:53:a8:3f:5c:a9:19:cb:13:3c:04:17:29:4a:
a3:d3:62:83:bb:f2:cc:cf:de:e6:3a:2f:14:a6:5c:c1:6e:c9:
c3:05:e2:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org