Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138352e302f32342d3234203d3e203530333030.roa
File: 3130392e3131302e3138352e302f32342d3234203d3e203530333030.roa (raw, json)
Hash identifier: emWIWRX7oheEjal+dkasAmBR23qaWjCpl6/pzbS+4OA=
Subject key identifier: B5:A6:03:6E:C7:AB:57:49:A4:60:32:7D:79:EA:7A:9E:BC:0B:2F:69
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 25507D2DFFC5D9EEA73686B0F18D5947F1831FFF
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138352e302f32342d3234203d3e203530333030.roa
Signing time: Thu 21 Mar 2024 10:30:10 +0000
ROA not before: Thu 21 Mar 2024 10:25:10 +0000
ROA not after: Thu 20 Mar 2025 10:30:10 +0000
asID: 50300
IP address blocks: 109.110.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:50:7d:2d:ff:c5:d9:ee:a7:36:86:b0:f1:8d:59:47:f1:83:1f:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Mar 21 10:25:10 2024 GMT
Not After : Mar 20 10:30:10 2025 GMT
Subject: CN=B5A6036EC7AB5749A460327D79EA7A9EBC0B2F69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:00:48:98:b7:f3:53:48:22:c3:bb:b0:ed:ad:
a2:1b:13:96:38:08:0f:b9:80:10:22:11:35:82:ab:
cc:2f:d5:fe:25:08:25:33:35:a9:e0:18:22:79:9d:
5a:da:d1:77:9f:d7:35:d0:82:69:ed:0a:60:9c:6f:
0f:91:cf:04:17:89:4c:af:4c:de:8a:6a:e5:56:27:
80:03:e1:66:54:44:97:33:3e:e7:1d:80:cf:28:01:
02:b8:25:ae:b3:af:15:72:ff:bc:02:a5:1f:61:22:
91:3c:7b:fa:84:ca:fe:d6:21:a8:bc:66:da:cf:f9:
e4:37:e9:f3:39:1d:49:fd:3b:d4:45:18:ea:e2:1e:
20:a1:e5:42:1e:9a:9b:8e:64:6d:3a:4c:80:81:59:
5a:83:ce:3d:23:02:6c:59:e8:5d:11:1d:50:14:e4:
4e:26:8b:0b:46:26:38:34:9b:f4:fc:14:66:82:03:
29:68:8e:73:08:78:cb:c1:01:6e:43:f9:99:2c:db:
36:f0:d1:83:28:c5:b0:be:11:0a:40:d0:fc:c3:53:
7b:3f:e6:6a:2a:24:c1:43:6d:24:af:ed:c6:1e:0c:
1b:87:e8:ba:ed:8b:10:a4:bc:17:ae:42:11:8e:50:
61:70:c7:95:6b:b9:ca:10:02:1e:e7:e7:81:d8:4b:
c0:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A6:03:6E:C7:AB:57:49:A4:60:32:7D:79:EA:7A:9E:BC:0B:2F:69
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138352e302f32342d3234203d3e203530333030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.185.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:aa:41:79:67:dc:f6:23:0b:14:61:94:d2:85:1a:b6:f2:1f:
c5:1a:07:35:e2:49:68:25:80:0b:78:86:cf:7f:2c:8e:64:2c:
1d:d2:c0:88:74:54:ed:cd:2e:2c:92:d7:2b:7a:da:95:ce:bc:
54:52:d2:27:f1:5b:27:78:6b:2d:f6:8a:80:b8:55:37:a8:e6:
59:f9:bc:03:05:52:4c:f8:4f:0b:f8:8c:4f:1f:7e:97:c5:18:
73:e8:c5:13:05:97:c8:95:7d:d6:d5:4b:bf:76:b9:7c:12:65:
da:cb:fb:35:90:32:3e:b7:d4:f7:77:7d:b8:fa:59:e4:aa:5a:
a2:88:5e:69:ea:69:14:c9:1e:a9:94:be:39:e9:70:13:ea:30:
67:2a:c4:70:1c:34:4f:03:c7:7c:3b:ba:91:0a:89:a1:df:c3:
5d:1c:10:5a:33:4b:33:34:4e:a6:1f:08:04:18:ce:b6:fb:68:
bf:d5:4b:ce:e0:9e:d9:05:70:29:8b:af:df:02:57:fb:0d:24:
77:92:cb:b1:43:8c:a1:d6:9f:76:c0:85:24:cc:ee:db:28:49:
49:09:01:d1:16:1f:71:39:1b:5e:c2:e9:13:88:6a:32:6c:b5:
31:2b:06:16:e5:70:79:a8:07:03:a6:65:a4:4e:b1:73:92:35:
df:dc:ec:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org