Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137362e302f32342d3234203d3e20323130353432.roa
File: 3130392e3131302e3137362e302f32342d3234203d3e20323130353432.roa (raw, json)
Hash identifier: zSD30v8ubYz8fmuywlqAvuly7OKt2pOHT8N5feY/FBM=
Subject key identifier: E8:3E:B1:B5:7A:5E:A9:1D:EF:A0:89:A4:1A:D4:18:D4:E5:1D:3B:96
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 4FDF6687142568327024FF9DDCCA61DBEF145627
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137362e302f32342d3234203d3e20323130353432.roa
Signing time: Wed 14 Feb 2024 10:16:35 +0000
ROA not before: Wed 14 Feb 2024 10:11:35 +0000
ROA not after: Wed 12 Feb 2025 10:16:35 +0000
asID: 210542
IP address blocks: 109.110.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 May 2024 13:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:df:66:87:14:25:68:32:70:24:ff:9d:dc:ca:61:db:ef:14:56:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Feb 14 10:11:35 2024 GMT
Not After : Feb 12 10:16:35 2025 GMT
Subject: CN=E83EB1B57A5EA91DEFA089A41AD418D4E51D3B96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f1:b0:ae:61:c5:c4:5e:26:33:aa:fc:18:76:
60:5c:1e:a8:59:d8:0e:ed:1c:09:57:e2:d6:4e:9b:
74:8d:2c:d5:55:69:bb:3b:1b:78:51:cf:11:75:e7:
43:2e:a5:8c:4b:4e:f2:e7:9f:da:de:b7:2e:e8:16:
e7:7c:86:ba:1e:5e:18:37:46:b7:07:49:49:66:04:
43:4e:92:12:25:5c:c2:9a:ef:a6:37:77:31:0b:8e:
92:71:51:2e:71:91:43:25:4f:7d:fe:ea:e4:0f:76:
a0:7f:1e:6b:f0:f3:cc:0c:26:a7:f1:86:40:65:41:
57:bc:d6:38:7b:c3:06:be:7e:10:8c:4f:f3:a5:08:
6a:4a:2e:df:36:e5:ae:df:14:64:90:1a:7b:16:94:
ae:0c:3a:92:6f:49:97:f7:38:88:63:3d:fc:b5:b6:
4c:d5:59:63:29:95:98:ba:bb:65:be:16:ed:f7:86:
21:4b:20:85:a8:c1:ea:0e:85:18:07:9f:db:c0:92:
66:69:8c:80:a0:1c:5d:3f:1b:89:2b:98:bf:ff:43:
31:69:43:59:d7:73:54:fd:4f:e1:57:83:09:1f:55:
74:2b:8b:24:80:ef:81:ef:27:d1:bb:f8:72:f0:bc:
6f:4b:aa:6d:a0:a5:a1:c8:ac:39:15:4e:be:16:87:
0a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:3E:B1:B5:7A:5E:A9:1D:EF:A0:89:A4:1A:D4:18:D4:E5:1D:3B:96
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137362e302f32342d3234203d3e20323130353432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.176.0/24
Signature Algorithm: sha256WithRSAEncryption
21:5b:22:f2:3f:fb:3a:ff:dd:9f:f9:d0:bd:f7:05:e8:57:50:
b1:a5:9d:5a:31:15:fc:5d:6f:8f:26:f2:57:73:fa:0d:21:b8:
04:cd:ec:87:78:cc:b2:92:4a:49:3d:9b:42:4d:8a:58:ba:4c:
e5:b1:c1:5e:67:a0:38:43:ff:e0:ea:42:43:f3:0c:a6:26:6d:
43:ad:12:1d:a5:0d:54:4a:fa:b1:a4:0a:ad:1e:a1:88:d9:63:
4f:97:b0:7e:08:62:a0:dc:b2:08:26:08:12:8e:fa:43:c7:cb:
52:b4:53:f9:e9:e4:6f:a7:77:01:df:5b:c8:6e:0b:42:62:61:
53:88:c5:d1:d3:8f:33:43:e0:8d:65:b6:8e:bd:99:26:8d:12:
f3:23:8c:09:0b:8f:ad:fe:e0:f0:82:c5:03:dd:7f:83:1a:13:
b5:e2:d0:62:a4:49:41:10:f5:8f:d9:01:3b:f6:8a:bc:5a:56:
ae:8d:6b:74:a1:90:c4:5a:70:94:a9:67:87:1a:fd:11:30:d4:
b8:57:c3:e6:ea:24:b7:8c:11:cf:16:a8:bf:87:81:fb:58:44:
32:30:71:a8:4d:6d:6c:67:9d:e0:83:fe:ed:96:53:bd:3c:d5:
bf:ce:88:11:6b:8a:7c:76:05:99:e7:0f:02:0f:e8:9e:36:7f:
d4:40:b3:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 30 00:36:57 2024 by rpki-client on console-ams.rpki-client.org