Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138332e302f32342d3234203d3e203136353039.roa
File: 3130392e3131302e3138332e302f32342d3234203d3e203136353039.roa (raw, json)
Hash identifier: nQqQvY0EHEEugk+pFNXjKc/gQs8dBUffbHS52Kbt3ZA=
Subject key identifier: 4F:41:70:A5:60:BD:0E:D9:07:54:74:A8:BE:E7:D5:21:44:0D:9B:BD
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 3E8E1328883A7B4FA421114F4C7EC2CDE695D193
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138332e302f32342d3234203d3e203136353039.roa
Signing time: Thu 04 Apr 2024 18:00:11 +0000
ROA not before: Thu 04 Apr 2024 17:55:11 +0000
ROA not after: Thu 03 Apr 2025 18:00:11 +0000
asID: 16509
IP address blocks: 109.110.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:8e:13:28:88:3a:7b:4f:a4:21:11:4f:4c:7e:c2:cd:e6:95:d1:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Apr 4 17:55:11 2024 GMT
Not After : Apr 3 18:00:11 2025 GMT
Subject: CN=4F4170A560BD0ED9075474A8BEE7D521440D9BBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:11:65:3d:c0:10:61:e1:f7:2e:6a:52:a0:c3:
14:98:b4:a6:e9:f7:0b:87:46:5a:cb:76:78:a3:74:
7b:e0:ab:41:e1:73:24:48:43:cd:29:6c:12:60:0e:
8f:d4:75:c5:20:28:13:31:28:02:5c:13:0b:e9:80:
8e:a5:74:c2:1d:da:c7:1b:ec:42:41:a6:71:1a:9c:
04:24:a5:01:3f:fd:a9:c3:9e:f5:3f:27:ad:67:a6:
b1:18:4a:c5:ba:f7:c0:d0:9e:9c:9c:f8:e3:43:0c:
56:89:72:42:fd:52:3f:4d:da:73:3a:b2:fe:88:48:
fc:62:2a:9b:23:70:7c:16:e1:c2:52:dd:b3:91:d4:
b9:6b:d3:8c:fa:47:29:64:5c:7c:7b:79:35:7c:ec:
6b:04:f1:1a:a6:3a:a5:c2:31:6b:ea:01:a4:73:8e:
0c:89:9a:ae:81:5e:61:cd:61:9d:ec:a1:82:c6:30:
ff:10:ec:44:ba:55:02:49:e7:82:3b:ca:86:3b:03:
2c:37:46:ab:f8:46:e3:9e:00:28:10:10:0f:15:9d:
19:d2:a8:46:49:94:52:76:ea:f2:e9:75:89:b9:5d:
16:be:31:89:3d:a8:d7:7b:e3:ac:df:03:c7:15:90:
c1:28:66:f6:6f:b1:53:a4:5f:3c:c6:e9:9e:37:02:
3d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:41:70:A5:60:BD:0E:D9:07:54:74:A8:BE:E7:D5:21:44:0D:9B:BD
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138332e302f32342d3234203d3e203136353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.183.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:a4:e8:e2:38:6a:a6:5a:65:ef:bd:ad:a7:07:34:ed:1c:bf:
03:de:93:bf:7a:e7:2d:fb:0c:54:38:1c:68:ff:df:87:76:dc:
09:64:35:23:17:56:9f:cd:6e:b5:64:e1:1e:5f:14:28:3f:a4:
57:ca:56:c1:04:96:f8:0c:3d:13:e0:f7:12:66:e5:d9:2f:86:
d2:00:99:84:30:41:87:44:2a:52:46:a0:b6:13:fc:4a:d5:51:
13:35:cb:7c:47:cf:2c:2f:79:0f:f1:c5:e3:fa:09:29:06:34:
76:71:21:57:bd:12:7e:b6:b9:ae:95:5e:55:f8:14:8f:ba:02:
9c:79:cc:27:c8:9c:66:36:3b:cc:79:8f:54:93:4f:bd:68:d2:
15:21:a3:5f:9c:2e:3b:d4:b1:7b:e9:c9:c9:5f:1d:02:e6:7d:
83:22:8d:86:43:31:10:0e:17:0e:8e:16:d8:7e:75:31:1a:25:
28:ef:26:e7:e0:d2:e4:4e:5e:1d:22:f7:10:94:f3:90:e1:dd:
c6:b5:2c:ce:93:f7:22:d6:39:8f:14:a6:34:2f:57:4a:a5:11:
73:aa:cb:8e:55:22:98:47:1f:c8:76:27:92:f9:c0:ea:79:e5:
69:98:54:6d:e0:70:c2:bc:08:19:e4:14:c6:67:56:27:cd:f8:
35:7a:e4:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 13:51:13 2024 by rpki-client on console-fra.rpki-client.org