Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138302e302f32342d3234203d3e203233343730.roa
File: 3130392e3131302e3138302e302f32342d3234203d3e203233343730.roa (raw, json)
Hash identifier: x9/TUGFxLVqGkvjI8QhoD2w9JAY35tXXdWwxs+Bjm4Q=
Subject key identifier: F8:4B:D8:2A:F9:FE:60:C1:67:DC:C9:F9:A4:66:BC:72:4B:B8:24:F8
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 6786725E9DDB3A225FCB031EBF638CA77A673174
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138302e302f32342d3234203d3e203233343730.roa
Signing time: Tue 24 Sep 2024 04:52:16 +0000
ROA not before: Tue 24 Sep 2024 04:47:16 +0000
ROA not after: Tue 23 Sep 2025 04:52:16 +0000
asID: 23470
IP address blocks: 109.110.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:86:72:5e:9d:db:3a:22:5f:cb:03:1e:bf:63:8c:a7:7a:67:31:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Sep 24 04:47:16 2024 GMT
Not After : Sep 23 04:52:16 2025 GMT
Subject: CN=F84BD82AF9FE60C167DCC9F9A466BC724BB824F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:dd:40:ef:6e:5f:1a:de:21:77:28:2d:87:42:
d1:7b:29:3e:95:c7:d7:ee:11:23:fd:70:84:e6:71:
84:ab:15:e5:67:7d:ae:f7:3b:33:c7:3e:b2:ca:66:
5c:5b:99:9c:a0:fb:dd:d9:bb:35:29:a2:cb:5e:c8:
03:ff:70:14:6f:18:2b:6e:68:44:7b:f2:10:ec:7a:
a4:10:6d:01:7d:cf:25:bd:be:f6:c4:70:ac:c3:38:
0f:81:d1:26:33:19:b9:f4:bd:05:3c:ef:10:fc:e1:
83:14:c4:6d:91:03:66:1d:eb:ea:de:1c:43:95:5d:
79:3c:b3:9c:a6:c4:27:7e:f9:7d:30:cd:d8:ec:3c:
a9:c0:df:24:82:e3:b7:23:0d:16:fe:08:88:5e:f2:
38:f8:bf:55:91:ed:4e:17:7b:a2:bd:07:8d:29:0a:
c2:1c:d1:2a:11:70:69:8d:2f:2b:12:45:24:3d:10:
0e:e5:ca:4b:65:a3:9b:c8:3a:92:01:1d:84:bb:db:
57:b1:28:a1:d3:7b:38:f6:f1:95:4f:45:6d:83:22:
3a:6b:9e:3f:41:9a:e5:94:57:0a:f8:6c:34:d9:58:
6c:f9:cb:0f:38:e1:65:39:6f:98:e4:f9:f5:91:7b:
3c:5d:0d:47:04:64:63:10:76:5a:a7:22:7a:e2:b0:
7d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:4B:D8:2A:F9:FE:60:C1:67:DC:C9:F9:A4:66:BC:72:4B:B8:24:F8
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138302e302f32342d3234203d3e203233343730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.180.0/24
Signature Algorithm: sha256WithRSAEncryption
59:f5:cd:82:4a:68:17:2a:2b:b0:6d:3d:8c:a4:a5:aa:48:24:
94:71:86:d9:11:1a:fd:c4:73:bf:25:fa:43:a0:40:18:da:f0:
da:d4:50:04:ef:f6:1a:fd:60:ff:0b:43:c3:2f:73:4e:70:fd:
78:bd:a2:8e:f5:98:ab:27:12:50:e0:22:7e:45:78:a2:a9:d6:
37:93:ff:af:55:51:34:0b:90:91:03:54:2e:3e:cf:84:49:d8:
b6:9e:ca:2a:e0:f0:8a:6c:4d:f0:3b:73:82:c0:f3:b7:e5:2d:
f4:29:7d:a1:4c:78:c7:6b:4e:38:0d:a8:7c:98:95:e9:fe:66:
93:04:a3:2a:1a:df:d6:4f:73:9b:57:ad:9d:b2:61:de:d5:55:
4c:fb:2e:22:01:47:dd:c4:d8:c3:c3:d2:47:ee:7b:54:f1:2a:
ae:97:c1:7c:2f:ef:19:2b:0e:20:2c:07:14:39:6d:a2:1f:40:
b5:42:a2:60:ce:89:51:77:9a:67:48:73:96:d8:dc:fc:54:ab:
27:4d:5b:0d:26:5b:58:6a:25:c4:70:29:52:7b:b4:0f:ac:26:
92:b6:3f:32:96:28:3c:70:7e:62:85:ad:1d:fe:b0:82:d5:65:
c3:b6:4e:22:66:19:92:cb:d2:4d:cc:a6:92:a0:66:36:4f:56:
66:c7:52:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org