Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138352e302f32342d3234203d3e203530333030.roa
File: 3130392e3131302e3138352e302f32342d3234203d3e203530333030.roa (raw, json)
Hash identifier: IwuPJur+Z6OBSOBG26MLI19UODUCubSUwQhvtqSaVoY=
Subject key identifier: 43:99:42:1D:06:05:E6:F8:D6:8D:C3:48:4E:33:72:66:E5:49:E8:82
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 467086FC76D04544836BEDA5996B7102C2B99D52
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138352e302f32342d3234203d3e203530333030.roa
Signing time: Mon 18 Nov 2024 21:15:59 +0000
ROA not before: Mon 18 Nov 2024 21:10:59 +0000
ROA not after: Mon 17 Nov 2025 21:15:59 +0000
asID: 50300
IP address blocks: 109.110.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:70:86:fc:76:d0:45:44:83:6b:ed:a5:99:6b:71:02:c2:b9:9d:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Nov 18 21:10:59 2024 GMT
Not After : Nov 17 21:15:59 2025 GMT
Subject: CN=4399421D0605E6F8D68DC3484E337266E549E882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:27:d0:15:30:43:cf:2e:3a:fb:02:43:7f:f8:
8f:8f:ec:43:ed:36:df:6a:4f:7c:d1:63:f3:21:97:
c1:cd:fb:47:6d:61:c7:8f:64:b3:2a:62:04:b9:8a:
27:d9:0f:a5:6e:3d:33:f5:78:73:8a:b9:b6:64:3f:
2d:93:f8:0c:75:ec:01:da:c6:d2:1a:b8:c0:bb:d9:
19:cc:52:18:ea:9d:66:5d:ec:f4:89:84:9d:60:e9:
29:60:bf:9c:51:b3:ff:1c:bc:1b:da:72:2a:d7:13:
49:c0:a9:44:62:de:7f:a4:72:c3:54:4c:db:b9:8f:
28:e6:34:28:78:29:fc:65:12:cc:40:de:71:02:a9:
52:20:f1:2e:dd:c1:d6:6a:6a:50:52:0c:bc:dd:27:
5d:1f:58:bc:fb:74:d6:df:c8:7d:54:e3:40:71:5e:
ca:a5:2b:c4:87:7e:f8:a4:88:ba:b8:1c:61:61:72:
6f:9c:a5:47:56:16:e8:1d:bf:53:ba:28:db:c2:4c:
fd:26:63:11:04:ba:d1:cf:04:0c:be:66:c3:59:65:
95:2f:da:60:1c:bc:c5:97:a7:00:c0:75:c9:9b:a7:
63:0c:b1:c2:3c:ff:84:56:7f:ed:32:3e:10:84:e5:
c7:64:07:9f:3a:db:1d:cc:c3:22:26:bf:9d:f1:5a:
72:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:99:42:1D:06:05:E6:F8:D6:8D:C3:48:4E:33:72:66:E5:49:E8:82
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138352e302f32342d3234203d3e203530333030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.185.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:e0:0e:3b:a3:35:3e:a1:72:4c:12:f7:c8:0d:4e:30:11:74:
19:3a:af:4a:b8:24:20:a5:1d:e4:3c:41:12:02:74:dd:9a:24:
25:da:19:c7:9e:c1:3b:bf:b1:fd:7d:a0:98:a8:ff:06:6d:e8:
58:d8:0b:4a:97:b5:a1:1d:95:a1:6f:bc:3b:e5:6d:8c:27:2f:
6d:19:64:f1:31:f8:d3:43:c8:0f:34:6d:8c:a8:48:5a:20:4a:
a7:26:67:87:ff:f6:84:0a:b1:16:4a:f5:62:8b:98:02:62:bb:
31:b9:46:6e:0e:67:a0:d0:13:90:a2:fa:2a:1a:d8:98:cb:66:
35:79:8c:67:90:31:06:3c:5c:f5:01:96:01:69:44:61:b1:39:
2a:4f:4d:72:ee:93:6e:bd:05:f3:92:16:83:5f:c2:4b:e1:07:
4f:70:05:e6:11:d2:c0:3f:7c:af:ec:59:dc:98:4b:35:3a:5b:
62:11:6e:a2:ca:46:ae:9d:b6:3d:13:5c:21:2e:2a:71:36:66:
14:35:76:0d:11:8a:ad:8a:09:f2:a8:b3:b2:35:9a:56:32:f5:
8d:14:e0:5c:85:05:18:0c:e2:ac:eb:45:6a:25:9b:47:ef:df:
1d:b5:25:af:e7:3d:96:4e:af:0d:b2:f2:6a:75:44:ba:2e:d2:
e7:56:57:ef
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIURnCG/HbQRUSDa+2lmWtxAsK5nVIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl
ODZlMGVmYzAeFw0yNDExMTgyMTEwNTlaFw0yNTExMTcyMTE1NTlaMDMxMTAvBgNV
BAMTKDQzOTk0MjFEMDYwNUU2RjhENjhEQzM0ODRFMzM3MjY2RTU0OUU4ODIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkJ9AVMEPPLjr7AkN/+I+P7EPt
Nt9qT3zRY/Mhl8HN+0dtYcePZLMqYgS5iifZD6VuPTP1eHOKubZkPy2T+Ax17AHa
xtIauMC72RnMUhjqnWZd7PSJhJ1g6Slgv5xRs/8cvBvacirXE0nAqURi3n+kcsNU
TNu5jyjmNCh4KfxlEsxA3nECqVIg8S7dwdZqalBSDLzdJ10fWLz7dNbfyH1U40Bx
XsqlK8SHfvikiLq4HGFhcm+cpUdWFugdv1O6KNvCTP0mYxEEutHPBAy+ZsNZZZUv
2mAcvMWXpwDAdcmbp2MMscI8/4RWf+0yPhCE5cdkB5862x3MwyImv53xWnJvAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUQ5lCHQYF5vjWjcNITjNyZuVJ6IIwHwYDVR0j
BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi
MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo
dUR2dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt
OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzMDM5MmUzMTMxMzAyZTMx
MzgzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM1MzAzMzMwMzAucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BABtbrkwDQYJKoZIhvcNAQELBQADggEBAGvgDjujNT6hckwS98gNTjARdBk6r0q4
JCClHeQ8QRICdN2aJCXaGceewTu/sf19oJio/wZt6FjYC0qXtaEdlaFvvDvlbYwn
L20ZZPEx+NNDyA80bYyoSFogSqcmZ4f/9oQKsRZK9WKLmAJiuzG5Rm4OZ6DQE5Ci
+ioa2JjLZjV5jGeQMQY8XPUBlgFpRGGxOSpPTXLuk269BfOSFoNfwkvhB09wBeYR
0sA/fK/sWdyYSzU6W2IRbqLKRq6dtj0TXCEuKnE2ZhQ1dg0Riq2KCfKos7I1mlYy
9Y0U4FyFBRgM4qzrRWolm0fv3x21Ja/nPZZOrw2y8mp1RLou0udWV+8=
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org