Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203136323736.roa
File: 3130392e3131302e3137352e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: R8hp/6tXqWrO2yULUJADThIUiQvjy/UnGAa1WNl6Czg=
Subject key identifier: 1C:D5:85:61:77:CE:E3:67:9D:E5:5E:9E:D4:CD:F7:B3:EE:DD:4D:C2
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 2E3C42B293014F6EF0B667D076739EFD0C8C0676
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203136323736.roa
Signing time: Wed 13 Mar 2024 20:09:04 +0000
ROA not before: Wed 13 Mar 2024 20:04:04 +0000
ROA not after: Wed 12 Mar 2025 20:09:04 +0000
asID: 16276
IP address blocks: 109.110.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:3c:42:b2:93:01:4f:6e:f0:b6:67:d0:76:73:9e:fd:0c:8c:06:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Mar 13 20:04:04 2024 GMT
Not After : Mar 12 20:09:04 2025 GMT
Subject: CN=1CD5856177CEE3679DE55E9ED4CDF7B3EEDD4DC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ba:96:7a:0f:8b:61:01:dd:bf:ac:dd:64:9e:
5e:be:45:cd:a4:8b:37:0c:7d:e4:46:35:bb:16:6e:
e9:34:fc:3a:33:2f:9b:cb:70:d0:14:5e:4a:f4:28:
16:6f:c6:a1:28:db:01:6c:bd:c3:5d:c0:75:9f:da:
2a:af:ea:f5:22:38:c3:b9:92:9c:e1:8b:37:7f:e5:
6d:99:e9:63:84:7a:51:16:7c:8d:36:8f:81:61:13:
a1:ea:7c:63:54:ac:00:a8:52:0c:cd:99:a9:e0:bc:
dc:c6:3f:ec:ca:be:fa:d1:7b:16:7b:da:1f:75:b9:
3b:b9:46:d5:78:a8:6c:fe:32:93:3f:e8:bc:f9:5d:
15:8f:a3:3d:e7:62:19:4c:5e:52:c9:85:d7:c3:23:
b6:f0:dc:ca:5f:0c:a2:4e:63:a5:51:0b:95:cb:31:
47:0a:ed:04:6d:16:68:fc:b3:8a:fd:a2:5f:d4:11:
54:58:53:69:eb:87:6e:45:bb:78:a1:9d:5e:4d:e3:
14:d9:68:11:33:ab:76:ab:b2:e9:69:d8:b4:8a:5a:
ec:9d:bd:52:70:dc:26:8d:59:ad:db:17:4b:bb:4c:
1d:99:d5:5d:d7:5d:58:09:52:96:70:94:c4:17:24:
83:0d:58:a5:e7:6a:98:6c:78:68:9a:ee:85:3e:0d:
eb:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D5:85:61:77:CE:E3:67:9D:E5:5E:9E:D4:CD:F7:B3:EE:DD:4D:C2
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.175.0/24
Signature Algorithm: sha256WithRSAEncryption
30:77:b1:6e:2b:3d:dd:3f:f3:d9:df:c7:a9:0d:db:56:61:31:
17:d0:4e:aa:5e:97:0a:49:08:09:91:eb:7b:6a:98:03:b2:19:
75:67:a7:cf:89:be:df:28:a1:ee:f0:d0:52:c8:b0:a6:15:1f:
00:95:a5:da:bc:f3:b6:ad:a1:af:f3:e4:af:0c:f5:c8:09:85:
be:b0:c6:21:96:1c:26:58:35:32:7d:18:b6:a1:5b:e8:e6:ed:
14:46:ec:4c:4d:01:c5:2d:4e:19:22:98:d2:27:f6:58:36:f6:
3e:97:e9:00:02:9e:13:4e:1d:f8:e9:56:8e:f5:a9:ac:ce:2c:
e5:3b:61:32:b8:62:69:9d:62:da:6d:eb:e9:7a:6c:6c:1b:50:
a5:c6:b8:8a:d0:0b:cf:41:c8:a1:28:a9:ce:8b:b7:bb:ae:da:
77:9e:b6:f6:86:e0:f3:68:63:6c:80:5a:4c:6f:00:b9:a2:82:
96:c0:b7:81:0b:c3:19:ae:f6:21:6a:9b:cd:25:e5:4a:6a:fc:
4e:57:06:df:e0:e4:1e:b5:d2:3a:0b:5e:49:fe:e4:ba:f4:de:
09:51:60:b5:c7:9d:35:d1:b0:fe:48:0a:80:81:17:ac:63:d3:
f5:cd:f4:b7:f5:53:f1:21:7c:f9:9d:5e:3f:44:61:47:bf:86:
ac:2f:4e:ca
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIULjxCspMBT27wtmfQdnOe/QyMBnYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl
ODZlMGVmYzAeFw0yNDAzMTMyMDA0MDRaFw0yNTAzMTIyMDA5MDRaMDMxMTAvBgNV
BAMTKDFDRDU4NTYxNzdDRUUzNjc5REU1NUU5RUQ0Q0RGN0IzRUVERDREQzIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwupZ6D4thAd2/rN1knl6+Rc2k
izcMfeRGNbsWbuk0/DozL5vLcNAUXkr0KBZvxqEo2wFsvcNdwHWf2iqv6vUiOMO5
kpzhizd/5W2Z6WOEelEWfI02j4FhE6HqfGNUrACoUgzNmangvNzGP+zKvvrRexZ7
2h91uTu5RtV4qGz+MpM/6Lz5XRWPoz3nYhlMXlLJhdfDI7bw3MpfDKJOY6VRC5XL
MUcK7QRtFmj8s4r9ol/UEVRYU2nrh25Fu3ihnV5N4xTZaBEzq3arsulp2LSKWuyd
vVJw3CaNWa3bF0u7TB2Z1V3XXVgJUpZwlMQXJIMNWKXnaphseGia7oU+DethAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUHNWFYXfO42ed5V6e1M33s+7dTcIwHwYDVR0j
BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi
MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo
dUR2dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt
OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzMDM5MmUzMTMxMzAyZTMx
MzczNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzYzMjM3MzYucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BABtbq8wDQYJKoZIhvcNAQELBQADggEBADB3sW4rPd0/89nfx6kN21ZhMRfQTqpe
lwpJCAmR63tqmAOyGXVnp8+Jvt8ooe7w0FLIsKYVHwCVpdq887atoa/z5K8M9cgJ
hb6wxiGWHCZYNTJ9GLahW+jm7RRG7ExNAcUtThkimNIn9lg29j6X6QACnhNOHfjp
Vo71qazOLOU7YTK4YmmdYtpt6+l6bGwbUKXGuIrQC89ByKEoqc6Lt7uu2neetvaG
4PNoY2yAWkxvALmigpbAt4ELwxmu9iFqm80l5Upq/E5XBt/g5B610joLXkn+5Lr0
3glRYLXHnTXRsP5ICoCBF6xj0/XN9Lf1U/EhfPmdXj9EYUe/hqwvTso=
-----END CERTIFICATE-----
Generated at Mon May 20 12:33:05 2024 by rpki-client on console-fra.rpki-client.org