Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203530393137.roa
File: 3130392e3131302e3137352e302f32342d3234203d3e203530393137.roa (raw, json)
Hash identifier: waTFeEJpvue81WzN4ARLQefRlZS11c/SEC2ByEdVFKg=
Subject key identifier: 1A:1A:FC:66:72:44:BF:CB:28:89:4A:B4:D0:FD:E8:89:B5:D7:30:E0
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 0389E867A637CC5A6E5F246761FB7BD557EF224A
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203530393137.roa
Signing time: Sun 15 Sep 2024 06:41:05 +0000
ROA not before: Sun 15 Sep 2024 06:36:05 +0000
ROA not after: Sun 14 Sep 2025 06:41:05 +0000
asID: 50917
IP address blocks: 109.110.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:89:e8:67:a6:37:cc:5a:6e:5f:24:67:61:fb:7b:d5:57:ef:22:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Sep 15 06:36:05 2024 GMT
Not After : Sep 14 06:41:05 2025 GMT
Subject: CN=1A1AFC667244BFCB28894AB4D0FDE889B5D730E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:72:f7:aa:dd:9c:5e:62:5b:b5:3e:bb:12:15:
2b:e0:cf:04:2b:f5:fe:e3:d7:de:97:5a:e6:17:2a:
e1:1c:fc:43:56:01:ea:3d:5a:d0:92:c1:6d:23:ce:
f3:4b:6c:26:87:0a:a3:47:c3:d2:e4:42:30:29:64:
34:34:ac:46:0f:ba:e4:a7:c9:1a:3b:ce:9c:84:23:
bb:8e:a7:ed:03:ec:26:87:04:e9:cf:c9:69:45:66:
bf:fe:d5:e9:e3:4d:f4:f2:8e:36:b3:a6:ad:9c:a5:
fe:17:40:70:a9:70:25:53:27:61:f5:5d:45:3a:39:
db:c4:e3:cf:19:2c:46:fc:04:24:65:e3:fa:54:f9:
d8:bf:26:25:7c:41:34:37:5b:f2:83:a2:00:7b:eb:
9d:a9:88:6d:48:b4:bb:9a:dc:7c:c4:4a:f4:13:65:
bb:e0:24:c9:e3:07:72:29:8a:a6:42:fd:49:e6:15:
ee:f4:a9:9d:2a:5b:38:1f:19:af:02:c5:b3:9c:45:
d6:30:6b:e0:0a:f3:5f:50:03:d7:cd:ff:55:65:48:
39:3c:09:fd:b3:7e:58:19:06:98:8d:90:db:32:6a:
e8:01:57:6b:2e:48:84:c8:3d:74:fb:d9:11:92:fd:
fb:b8:79:3a:20:80:09:87:0a:b8:5a:57:c8:bc:57:
88:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:1A:FC:66:72:44:BF:CB:28:89:4A:B4:D0:FD:E8:89:B5:D7:30:E0
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203530393137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.175.0/24
Signature Algorithm: sha256WithRSAEncryption
14:ec:3d:9d:02:d8:1b:7c:e6:28:d9:10:35:91:07:a5:1b:f1:
d1:09:14:38:5a:3d:46:b2:d0:4b:50:84:d5:dd:5c:d4:4c:0c:
f5:50:70:0c:1b:eb:82:65:52:0d:32:92:4e:97:58:03:93:f3:
d1:32:19:08:45:b4:38:92:37:ad:f3:71:0a:79:69:39:ef:42:
c6:33:fc:af:c0:a3:81:c5:ee:4c:88:eb:95:9c:56:64:b6:ad:
6e:5e:da:a4:99:b7:62:b9:30:3c:90:05:9d:2d:88:fd:0e:fc:
97:62:b6:de:5b:6d:7e:39:2f:43:29:1e:6b:be:f5:00:30:12:
53:dd:28:f6:9e:1d:b8:13:31:e2:28:0e:8f:41:8c:4d:44:11:
67:d8:6f:46:0c:2d:53:45:2f:4a:e8:da:bf:d9:21:be:14:48:
c8:0c:e0:d8:af:d1:cb:b5:80:13:3a:db:f2:f8:fb:6b:24:86:
08:b9:fb:52:f4:05:be:00:d5:11:5c:dc:d0:fc:f7:15:a3:b2:
4c:2a:48:f6:33:2d:b0:d1:0b:91:d8:b5:f0:4e:53:5e:29:52:
e6:ed:03:77:ee:33:3e:7b:76:4a:99:51:0f:39:0f:82:8f:68:
be:76:38:a3:95:bd:69:45:ed:6f:35:88:76:54:fa:46:43:b1:
e8:56:a2:0f
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUA4noZ6Y3zFpuXyRnYft71VfvIkowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl
ODZlMGVmYzAeFw0yNDA5MTUwNjM2MDVaFw0yNTA5MTQwNjQxMDVaMDMxMTAvBgNV
BAMTKDFBMUFGQzY2NzI0NEJGQ0IyODg5NEFCNEQwRkRFODg5QjVENzMwRTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUcveq3ZxeYlu1PrsSFSvgzwQr
9f7j196XWuYXKuEc/ENWAeo9WtCSwW0jzvNLbCaHCqNHw9LkQjApZDQ0rEYPuuSn
yRo7zpyEI7uOp+0D7CaHBOnPyWlFZr/+1enjTfTyjjazpq2cpf4XQHCpcCVTJ2H1
XUU6OdvE488ZLEb8BCRl4/pU+di/JiV8QTQ3W/KDogB7652piG1ItLua3HzESvQT
ZbvgJMnjB3IpiqZC/UnmFe70qZ0qWzgfGa8CxbOcRdYwa+AK819QA9fN/1VlSDk8
Cf2zflgZBpiNkNsyaugBV2suSITIPXT72RGS/fu4eToggAmHCrhaV8i8V4jLAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUGhr8ZnJEv8soiUq00P3oibXXMOAwHwYDVR0j
BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi
MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo
dUR2dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt
OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzMDM5MmUzMTMxMzAyZTMx
MzczNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM1MzAzOTMxMzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BABtbq8wDQYJKoZIhvcNAQELBQADggEBABTsPZ0C2Bt85ijZEDWRB6Ub8dEJFDha
PUay0EtQhNXdXNRMDPVQcAwb64JlUg0ykk6XWAOT89EyGQhFtDiSN63zcQp5aTnv
QsYz/K/Ao4HF7kyI65WcVmS2rW5e2qSZt2K5MDyQBZ0tiP0O/Jditt5bbX45L0Mp
Hmu+9QAwElPdKPaeHbgTMeIoDo9BjE1EEWfYb0YMLVNFL0ro2r/ZIb4USMgM4Niv
0cu1gBM62/L4+2skhgi5+1L0Bb4A1RFc3ND89xWjskwqSPYzLbDRC5HYtfBOU14p
UubtA3fuMz57dkqZUQ85D4KPaL52OKOVvWlF7W81iHZU+kZDsehWog8=
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org