Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138342e302f32342d3234203d3e203136323736.roa
File: 3130392e3131302e3138342e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: GN5s2u+NkAitBkgancoZw8cHrngbjSockBVe3NIgPn4=
Subject key identifier: 94:2B:75:B8:6A:0B:48:1F:FB:BA:27:71:B0:C8:5E:FC:02:9F:43:8F
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 2C38CC9F022BA56DAB70C5C7B8D50E185B9E0CAB
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138342e302f32342d3234203d3e203136323736.roa
Signing time: Fri 23 Feb 2024 21:09:09 +0000
ROA not before: Fri 23 Feb 2024 21:04:09 +0000
ROA not after: Fri 21 Feb 2025 21:09:09 +0000
asID: 16276
IP address blocks: 109.110.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:38:cc:9f:02:2b:a5:6d:ab:70:c5:c7:b8:d5:0e:18:5b:9e:0c:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Feb 23 21:04:09 2024 GMT
Not After : Feb 21 21:09:09 2025 GMT
Subject: CN=942B75B86A0B481FFBBA2771B0C85EFC029F438F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b3:87:17:49:b5:73:f5:89:db:4e:75:7c:e3:
2d:09:e0:92:e3:39:51:ef:01:49:31:ea:65:a9:2b:
18:d4:ca:9a:7c:52:ba:8d:c9:a4:d5:af:0f:87:74:
72:2c:3d:a3:6f:06:e8:ff:5a:0f:71:37:21:a0:c7:
eb:ac:d3:78:0f:92:fc:d1:c0:42:a8:70:22:7c:d5:
84:4b:b8:28:b3:ec:51:0e:71:ed:f2:e5:68:0d:d4:
3c:02:c0:29:c5:7b:17:86:9b:21:69:c9:5f:2a:8a:
17:2a:14:8f:19:82:6e:b7:e3:0b:c4:9a:ac:2e:21:
6a:dc:b1:d2:7d:af:c9:ac:11:e1:80:04:9b:ff:20:
6d:be:f4:2d:98:bd:9c:f4:ab:a1:12:a4:57:7f:e4:
c5:89:3d:6f:26:9a:08:e3:22:cf:e4:f1:6e:a2:9e:
2f:f0:3c:0a:09:76:4a:ce:50:86:7e:a8:6c:be:b3:
42:b4:e3:ec:bc:4e:07:a5:f3:fd:98:71:a0:03:40:
b5:2b:81:ab:5d:d9:ec:a7:41:96:44:57:2b:d2:fa:
46:6a:ad:25:dc:7b:c3:a1:e7:c7:0f:c6:25:76:91:
ea:e8:cf:e0:b1:80:59:e0:c9:bf:c2:88:62:00:6c:
bd:3c:ab:a2:d6:39:58:68:ba:ad:c4:f2:29:42:86:
01:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:2B:75:B8:6A:0B:48:1F:FB:BA:27:71:B0:C8:5E:FC:02:9F:43:8F
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138342e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.184.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:01:1b:80:f4:09:30:42:45:8d:03:6a:44:0a:1d:5c:2a:fb:
13:23:70:42:b9:fc:51:04:a8:be:1a:c2:dc:f9:ba:8f:4b:57:
ee:f0:1f:41:b5:f8:2a:0b:ed:f0:ec:b9:b9:6d:b6:8a:b7:81:
72:bc:f6:8f:b4:48:d6:2a:55:3b:ea:ff:f3:e4:87:24:5c:43:
b7:28:ef:80:ab:bb:21:c6:c2:5b:2c:f8:23:73:17:df:b9:92:
7e:18:45:49:27:f2:0a:9e:c8:09:6b:0b:be:fc:59:03:e6:50:
d4:6c:0c:27:a6:fc:22:71:50:0d:7a:d0:af:e3:1d:e1:5a:fd:
00:3b:01:d3:ee:e9:ad:d7:9d:a3:6c:e3:12:f1:d8:ad:06:a6:
1d:3b:08:90:8f:2f:04:77:78:32:01:37:0e:ef:d5:80:47:5b:
ca:b1:0a:f9:e9:7c:67:52:bb:f2:de:0e:7c:ba:8a:37:c4:df:
51:d1:f0:e2:53:cf:6f:6a:49:7b:ac:dd:eb:fe:b0:c1:e1:da:
d0:bc:ee:9d:1a:ea:c0:78:9e:b4:7d:ac:47:a3:33:ea:97:03:
49:70:cd:df:97:2b:33:f1:dd:aa:4f:73:ec:1f:8e:60:c1:05:
a1:d3:4b:60:2d:70:b8:7d:16:9e:2c:42:f5:ab:02:27:71:e1:
9f:6d:4a:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org