Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138322e302f32342d3234203d3e203634323637.roa
File: 3130392e3131302e3138322e302f32342d3234203d3e203634323637.roa (raw, json)
Hash identifier: GB7PO5wxderEF0amYA0M5slnRrTbHhas7ZFME0kxFBo=
Subject key identifier: 26:7F:D7:E5:1F:C2:40:14:E5:E3:EF:E7:69:54:64:3B:4E:70:A4:43
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 07195078CD916D184A9A75A4E6BE3D9F6D189366
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138322e302f32342d3234203d3e203634323637.roa
Signing time: Mon 11 Mar 2024 18:04:48 +0000
ROA not before: Mon 11 Mar 2024 17:59:48 +0000
ROA not after: Mon 10 Mar 2025 18:04:48 +0000
asID: 64267
IP address blocks: 109.110.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:19:50:78:cd:91:6d:18:4a:9a:75:a4:e6:be:3d:9f:6d:18:93:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Mar 11 17:59:48 2024 GMT
Not After : Mar 10 18:04:48 2025 GMT
Subject: CN=267FD7E51FC24014E5E3EFE76954643B4E70A443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:23:a1:e7:83:18:2d:49:60:16:8e:8a:93:42:
fc:5d:b5:53:dd:05:1d:f0:3e:3c:b2:f6:a8:55:58:
b1:93:f0:c1:0e:c8:ae:e5:77:f2:80:48:f0:24:17:
fe:ee:07:5d:ae:5b:7d:9f:69:44:75:60:b8:0f:d1:
a0:07:68:15:a4:f6:79:d1:a7:28:0f:7c:da:cb:d9:
90:dd:2c:f3:08:96:64:a1:03:70:84:7d:d3:19:a1:
e4:c8:58:05:28:fb:34:2d:96:eb:a3:f9:80:f0:53:
c9:96:fe:1d:a0:d1:38:48:0a:c4:38:98:92:d9:33:
a2:43:59:a5:78:95:2b:01:a9:b2:94:19:93:11:60:
cc:be:18:57:96:41:aa:2c:53:71:b2:b9:f5:9e:5c:
e9:2f:59:0f:07:37:d3:ad:73:38:3f:e5:55:51:79:
73:67:69:1b:a8:92:a9:e6:07:5f:ae:6a:49:1e:fa:
10:d1:80:3e:ed:01:e3:a1:d6:db:ef:ae:2c:23:cf:
9c:c0:48:02:d3:b5:41:b7:df:de:01:9e:5f:39:f8:
77:34:1d:31:f2:3c:49:29:32:02:7f:32:64:35:7b:
81:74:fa:75:b2:ce:57:c0:0d:88:50:63:2f:27:e9:
01:71:23:da:1d:95:a4:bb:65:49:4c:42:68:27:0b:
c6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:7F:D7:E5:1F:C2:40:14:E5:E3:EF:E7:69:54:64:3B:4E:70:A4:43
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138322e302f32342d3234203d3e203634323637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.182.0/24
Signature Algorithm: sha256WithRSAEncryption
54:3f:21:89:84:b1:de:70:7d:10:99:11:9e:01:86:f8:a3:83:
81:39:e3:cb:62:67:fa:42:1a:ec:e6:41:a0:01:1e:db:e3:7f:
4a:10:52:49:f7:27:35:6e:ef:e2:ac:4c:0a:ca:f2:84:22:79:
60:42:fe:ef:7b:a6:bf:14:93:e7:9c:11:55:02:91:ca:58:fb:
a9:d3:fb:d8:0f:fc:69:34:20:4a:04:46:dd:39:8a:b5:95:01:
db:39:2d:4e:a6:a7:21:53:ce:81:27:f4:84:94:22:20:45:ba:
58:52:44:31:36:53:e4:58:df:29:d1:8f:c8:10:62:57:2e:e8:
9a:40:7e:1c:e4:85:3f:27:78:68:7b:2d:01:3c:64:1b:f5:8d:
ee:72:51:9e:b2:e1:1b:cc:c5:0b:4d:1b:df:07:95:61:e6:b7:
47:7a:db:ec:6e:09:12:61:ae:eb:5d:97:aa:a0:9c:2c:54:7e:
63:81:e5:a9:a3:dd:7a:5a:32:17:2d:f7:6b:24:98:7b:62:a3:
ff:b9:29:a5:9a:28:18:45:d4:7c:46:f9:bb:fe:2b:2b:1d:92:
94:24:32:b7:06:b6:89:bc:66:a8:5a:3e:20:3b:cd:ac:22:1e:
af:36:2a:5f:2c:b7:72:a1:fd:9c:09:1f:f7:44:97:00:2e:7b:
c3:3d:db:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org