Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138332e302f32342d3234203d3e203634323637.roa
File: 3130392e3131302e3138332e302f32342d3234203d3e203634323637.roa (raw, json)
Hash identifier: uQMFXKS0gkMEjBJTcORFEL7hrv0zc11AC4CHRZvqdfk=
Subject key identifier: 65:E7:80:48:74:51:B0:2B:EE:1B:96:62:E2:77:05:AD:BE:75:61:34
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 0738A5581F39479DF76D3ACF266F37602D3910D0
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138332e302f32342d3234203d3e203634323637.roa
Signing time: Thu 12 Sep 2024 19:26:47 +0000
ROA not before: Thu 12 Sep 2024 19:21:47 +0000
ROA not after: Thu 11 Sep 2025 19:26:47 +0000
asID: 64267
IP address blocks: 109.110.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:38:a5:58:1f:39:47:9d:f7:6d:3a:cf:26:6f:37:60:2d:39:10:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Sep 12 19:21:47 2024 GMT
Not After : Sep 11 19:26:47 2025 GMT
Subject: CN=65E780487451B02BEE1B9662E27705ADBE756134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:22:47:46:c4:71:8e:3b:0a:47:8b:d9:b7:d4:
37:b0:60:0f:04:8b:57:1e:f9:8a:f7:f4:8c:df:9b:
9c:e9:bb:3f:b3:8a:a2:1a:68:0d:91:c4:43:7a:c2:
8d:c4:72:f4:24:31:11:2f:d9:f9:a2:67:e6:2d:01:
4e:df:c6:53:3b:88:cc:65:2a:1c:50:76:4a:f3:0e:
d3:52:ec:28:91:c4:32:8b:71:c8:16:36:d4:80:fa:
34:6a:f9:54:69:27:32:3c:2b:a5:43:39:4a:75:8d:
15:7d:55:f9:37:16:8a:54:c2:1f:be:da:a6:d1:0f:
00:93:88:0e:10:fd:0e:09:49:f9:ea:7d:1b:8e:a7:
d0:7d:ce:8f:9c:bd:14:ed:e9:65:6e:ca:35:62:0a:
0d:ec:c4:61:57:c2:ac:fe:9a:a3:25:70:51:f2:ff:
5d:54:74:62:c0:2c:e5:03:75:4f:f5:ed:17:9d:d7:
eb:3c:6f:15:41:ee:3b:b1:09:3d:cf:7d:92:9c:cf:
5e:7b:6b:3b:e0:63:3f:6d:e1:cf:d5:ee:f0:1c:b6:
46:89:07:b7:f8:5f:05:a6:29:1e:6f:21:e1:71:3a:
53:83:f7:30:fd:54:1f:51:ac:76:1b:ad:b0:21:dd:
43:46:50:c3:b4:73:1d:54:f1:06:b8:85:64:f5:fa:
17:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:E7:80:48:74:51:B0:2B:EE:1B:96:62:E2:77:05:AD:BE:75:61:34
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138332e302f32342d3234203d3e203634323637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.183.0/24
Signature Algorithm: sha256WithRSAEncryption
af:f4:11:ff:76:61:d8:5b:d7:22:1d:ab:a9:fb:45:2c:ba:bd:
df:a7:b8:b0:3b:2e:74:e3:83:64:7e:f1:25:ca:ed:ce:70:08:
91:ea:18:2c:5a:b1:7c:11:43:b5:e6:62:2c:5c:63:84:dd:fd:
e0:6d:95:8b:a2:64:a2:d5:e0:fb:54:e2:f0:c1:28:fa:a5:ea:
c3:cd:bb:f7:0f:02:1f:98:b0:54:b4:13:b2:73:56:a5:56:7f:
9c:ce:1c:dd:e8:58:9b:71:94:25:df:f0:e6:18:92:15:ae:1e:
36:02:20:c1:89:8a:8d:88:e8:32:70:ba:9e:86:2b:d9:a0:45:
ac:a5:3c:39:58:b8:86:ee:44:7a:4a:83:7e:d2:b4:46:92:58:
40:25:a0:dd:67:af:25:5b:7a:32:95:cd:8c:01:29:b0:88:60:
3b:5b:40:28:56:ba:85:e7:57:89:b2:e7:17:b5:56:d2:bc:49:
80:48:3e:ef:80:2f:f2:91:c4:20:b4:03:0e:78:bb:23:a2:d9:
86:fa:0d:cf:7c:87:73:6b:33:c9:f6:58:c6:4a:0f:01:a6:e5:
19:df:dc:74:c5:b9:42:bc:10:c9:83:a3:fd:87:77:87:5d:de:
51:e4:6a:ea:54:62:60:12:36:58:7c:0c:03:d6:e8:5c:45:1d:
99:29:a6:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org