Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138312e302f32342d3234203d3e203134363138.roa
File: 3130392e3131302e3138312e302f32342d3234203d3e203134363138.roa (raw, json)
Hash identifier: pbOyTQzHvKjhxzsbR+MmIyzcauLHDNc7HmQLizYheBg=
Subject key identifier: 81:83:63:3C:71:24:83:15:19:A0:F5:F6:23:22:F7:5B:0F:E9:14:E5
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 3F3940CBFF4180F57684345A946F580949C82808
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138312e302f32342d3234203d3e203134363138.roa
Signing time: Wed 26 Feb 2025 10:53:55 +0000
ROA not before: Wed 26 Feb 2025 10:48:55 +0000
ROA not after: Wed 25 Feb 2026 10:53:55 +0000
asID: 14618
IP address blocks: 109.110.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 16:29:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:39:40:cb:ff:41:80:f5:76:84:34:5a:94:6f:58:09:49:c8:28:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Feb 26 10:48:55 2025 GMT
Not After : Feb 25 10:53:55 2026 GMT
Subject: CN=8183633C7124831519A0F5F62322F75B0FE914E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e9:5e:fb:13:2e:bf:25:08:e4:59:3e:27:cc:
e7:23:c8:15:2e:16:32:ea:b3:e0:ec:e9:79:67:33:
17:a7:07:5f:99:62:99:91:7e:f0:d9:4f:f2:59:7a:
62:6d:e1:9b:88:c1:c0:cd:dc:f7:7d:63:79:98:8f:
0e:bd:cf:b6:5a:15:46:d2:b2:12:4b:33:e9:78:86:
c0:1e:e1:3a:08:28:a3:e4:83:22:24:b5:51:9c:e7:
28:a5:ff:ea:c5:14:76:41:2d:0a:34:a1:27:4c:58:
f5:07:95:93:b9:ce:96:5e:3f:d3:f6:9e:8c:af:21:
aa:ee:ce:13:22:f6:32:60:14:32:6d:d0:61:15:9f:
d6:d2:c7:b8:9e:b2:54:6a:40:fd:23:45:64:cb:77:
fb:4e:29:0d:d1:8c:5e:c6:32:2b:b4:00:5a:f8:ad:
c9:e1:f5:f9:09:74:a3:42:29:59:95:14:87:83:5c:
11:23:38:c9:df:f8:ae:4e:e9:80:84:60:a8:4b:66:
86:1b:26:b9:a4:f1:48:3c:1f:6c:1a:f0:05:0f:49:
e6:d0:84:48:1a:97:09:4b:a7:fa:39:71:4e:4f:db:
e0:a2:40:f4:a2:7e:48:fa:23:f0:3b:c1:a0:d3:c2:
82:e7:ca:2d:0a:6b:f1:af:56:0b:b1:a5:f9:50:31:
e5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:83:63:3C:71:24:83:15:19:A0:F5:F6:23:22:F7:5B:0F:E9:14:E5
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138312e302f32342d3234203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.181.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:ed:4f:83:f5:c1:30:f4:a7:11:20:c7:b6:30:30:2a:12:79:
f4:61:9d:20:0f:f7:22:93:60:2a:ac:c5:2a:be:6a:87:ed:3e:
7a:7a:13:94:41:2d:70:e5:84:b5:ee:dc:e0:47:e8:88:21:da:
b8:ab:c3:bf:dd:ca:24:3b:06:5a:74:b0:c4:19:a4:64:1f:34:
69:00:90:78:e3:fa:32:e9:83:85:eb:5e:10:7e:02:c2:c6:a0:
7a:6b:fe:de:dd:b0:6d:7f:51:43:ea:9a:17:42:3f:ba:fd:4e:
5a:15:7a:9b:49:97:04:80:37:d1:ef:10:b5:06:29:89:64:13:
49:8e:89:0c:06:10:84:d6:5b:79:31:96:ef:bb:12:67:e8:c7:
1d:8b:c9:dc:39:c6:e8:75:ee:a4:33:f7:19:9b:03:27:8d:76:
f3:26:bc:c8:bd:5d:4e:c4:43:ce:01:94:28:43:15:fc:e0:78:
f1:c5:58:3c:61:21:ef:7c:7c:d4:79:8d:69:1f:1c:7e:5e:1f:
02:38:37:77:5d:40:58:90:c3:d2:72:78:f2:93:96:d3:f7:02:
5a:80:89:f0:e4:0b:3e:b4:4c:1c:0d:c0:94:1f:7d:d8:f9:a9:
d8:6b:68:d4:14:ca:d8:48:df:53:a2:4a:ea:41:5c:4a:8b:cb:
ce:71:57:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 05:35:03 2025 by rpki-client