Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138312e302f32342d3234203d3e203136353039.roa
File: 3130392e3131302e3138312e302f32342d3234203d3e203136353039.roa (raw, json)
Hash identifier: nSNZi3H+Ky4cc4LCFmmmsp06FGIGgujKmLZRhXLtx/o=
Subject key identifier: 3E:A0:31:DC:A4:35:07:17:B9:FC:27:A8:88:B1:3C:80:45:FE:8F:46
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 3C307E8A0B5CABEA26E22F4D1F8851F96EA3769D
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138312e302f32342d3234203d3e203136353039.roa
Signing time: Wed 27 Mar 2024 10:11:04 +0000
ROA not before: Wed 27 Mar 2024 10:06:04 +0000
ROA not after: Wed 26 Mar 2025 10:11:04 +0000
asID: 16509
IP address blocks: 109.110.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:30:7e:8a:0b:5c:ab:ea:26:e2:2f:4d:1f:88:51:f9:6e:a3:76:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Mar 27 10:06:04 2024 GMT
Not After : Mar 26 10:11:04 2025 GMT
Subject: CN=3EA031DCA4350717B9FC27A888B13C8045FE8F46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:61:98:4c:c7:a8:db:be:80:a4:84:8e:55:22:
69:f0:93:03:3a:08:ae:89:b1:f0:09:55:63:27:89:
f4:54:71:ff:d2:48:43:d2:e0:4c:3e:e7:a8:88:a0:
52:9d:62:db:bd:36:cd:ac:0e:55:2f:f4:06:de:bf:
03:a2:cb:4c:2a:68:a1:53:19:a0:05:3b:4d:ca:99:
ca:f6:b4:ae:8c:5d:62:ae:4a:8a:5c:3a:ab:20:5d:
8c:65:7c:0e:5e:e2:41:85:ed:7f:ed:8b:b3:40:b9:
64:ae:fd:bc:01:27:ea:48:35:79:71:7a:e2:07:68:
c6:c8:e2:7d:cb:e2:e0:af:8f:e5:3f:09:b3:bf:e9:
d2:98:19:4e:f7:12:35:1a:51:5a:d6:58:9f:98:89:
a9:fd:9d:f0:89:bd:93:a1:e8:56:7f:1a:48:07:34:
61:d4:fe:b4:70:49:66:68:c3:b2:2d:67:6f:50:03:
ab:69:af:5e:2e:93:a7:df:47:f0:fb:6f:11:29:a5:
9d:09:91:4d:61:a7:44:88:8d:02:51:2a:55:bf:a7:
a1:71:7b:d3:92:10:69:b2:9c:16:5f:32:44:83:ac:
be:e2:31:1b:32:6e:c4:49:fd:54:b5:8b:b1:5d:0f:
1c:38:0e:ac:cd:ec:d3:e0:40:84:7a:66:3e:b4:23:
74:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:A0:31:DC:A4:35:07:17:B9:FC:27:A8:88:B1:3C:80:45:FE:8F:46
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138312e302f32342d3234203d3e203136353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.181.0/24
Signature Algorithm: sha256WithRSAEncryption
77:8d:62:8f:34:32:7d:5c:84:5a:08:3d:4b:c1:35:9c:39:89:
37:2d:08:e4:7d:a0:0d:28:c2:b7:19:21:4c:f7:c1:5f:5d:32:
ae:3b:ad:c4:68:11:e5:ef:02:e8:bf:cb:c0:e4:62:dc:e7:dd:
bd:21:e0:94:d8:1e:99:d6:e7:42:ce:6a:f1:e0:47:74:57:1f:
a4:e2:3e:86:5f:1e:7e:22:43:04:ec:f3:8d:93:ad:39:1e:9f:
85:23:63:91:6f:b2:26:83:ba:21:bd:ac:41:af:24:ef:96:f0:
de:f3:d6:ac:be:fb:aa:18:0d:de:bd:2b:32:b7:d2:69:fb:d5:
7b:75:91:74:c1:58:95:26:f1:4c:58:ac:10:5c:c7:78:24:b6:
3c:98:f4:4c:ca:2f:a1:5d:d5:4e:7e:b8:de:59:ff:46:23:59:
38:9d:5d:d8:85:61:c5:ce:87:23:a9:be:4e:c6:00:8d:1f:b6:
ac:9b:d5:1d:db:04:56:82:3c:13:1f:52:b8:bc:89:27:54:5d:
fa:70:0d:6a:9d:e2:1d:e4:fd:0a:26:4a:e9:b2:4e:95:c8:cc:
20:f0:df:fd:b0:eb:58:7d:7d:60:77:aa:96:5f:d0:6e:82:24:
02:a4:00:64:25:49:85:1e:e3:41:dc:0f:de:75:95:6c:62:da:
f1:9b:8a:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 13:51:13 2024 by rpki-client on console-fra.rpki-client.org