Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3139302e302f32332d3234203d3e20323732393632.roa
File: 3130392e3131302e3139302e302f32332d3234203d3e20323732393632.roa (raw, json)
Hash identifier: LzRTfqRBWKVVjFt+CqC3XKU7/1S0KeGA2PkCUg5UA6Y=
Subject key identifier: 18:1A:DC:7C:59:46:39:03:C7:EE:C6:44:A7:88:92:06:26:0D:58:BD
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 7CB7E45EA40CD9CCE879D58F8E234ACD55332850
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3139302e302f32332d3234203d3e20323732393632.roa
Signing time: Sun 14 Apr 2024 10:19:23 +0000
ROA not before: Sun 14 Apr 2024 10:14:23 +0000
ROA not after: Sun 13 Apr 2025 10:19:23 +0000
asID: 272962
IP address blocks: 109.110.190.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:b7:e4:5e:a4:0c:d9:cc:e8:79:d5:8f:8e:23:4a:cd:55:33:28:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Apr 14 10:14:23 2024 GMT
Not After : Apr 13 10:19:23 2025 GMT
Subject: CN=181ADC7C59463903C7EEC644A7889206260D58BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5b:e5:ec:1e:78:c9:8d:a8:77:95:85:c9:81:
3c:fa:13:65:e8:ad:81:63:c4:40:49:13:76:62:45:
1f:a2:ca:e2:64:2d:49:23:ba:c4:0f:2d:49:f0:f6:
18:ae:84:3e:08:d1:f1:b7:f0:7d:27:08:c7:9f:64:
8d:ab:f9:e0:e3:42:06:45:f6:02:8a:e4:87:a7:7e:
0d:1b:7d:c4:56:3b:c1:48:3f:37:67:9e:8d:18:0a:
05:44:06:dd:2b:fb:ef:12:06:02:47:61:31:3c:8a:
d4:24:20:a0:11:28:26:4e:d4:2b:d5:51:de:13:a1:
a5:cd:71:41:46:92:f1:21:5d:a8:5a:00:3a:a6:25:
f4:aa:60:4d:0a:bb:fd:49:f7:03:3f:b7:56:c9:6d:
39:22:f8:2e:6a:12:01:46:2c:40:ad:76:7a:2e:ff:
ed:3a:f9:5a:4b:f0:5a:33:62:41:23:89:a5:d0:33:
33:da:a6:99:f4:7b:e3:7f:f5:ee:0a:4c:8c:63:43:
d0:75:8e:11:4d:b8:e8:26:8f:ac:49:c2:0e:01:ca:
1a:25:15:e4:6e:f6:39:4d:6e:b8:0c:fd:0c:a3:0d:
38:20:81:27:56:78:01:a2:1c:0a:75:59:1c:53:a7:
41:1e:cf:56:95:ea:d9:0a:96:a1:92:75:79:f0:ad:
33:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:1A:DC:7C:59:46:39:03:C7:EE:C6:44:A7:88:92:06:26:0D:58:BD
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3139302e302f32332d3234203d3e20323732393632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.190.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:19:b3:8e:6b:37:97:e2:f7:16:38:6e:c4:a5:cc:e1:7f:b5:
12:98:52:b0:d0:8f:4f:e0:ec:0c:b3:cb:2a:8a:6a:1c:0c:68:
29:3f:00:90:db:a1:07:ff:1a:1b:55:ce:42:61:d7:5e:b2:f2:
0c:06:0b:70:d5:5b:36:8c:6c:1c:96:4a:0d:ab:fa:e8:95:2b:
a7:bc:54:89:33:cf:2e:0f:af:33:91:0a:a4:b9:f4:92:e2:7f:
39:c9:55:a1:22:f2:3e:cb:1f:18:b5:04:27:72:b1:8d:ea:81:
97:0e:93:7d:02:35:7c:bc:6d:1c:cf:27:92:63:b6:a3:ec:00:
bf:c5:ec:18:de:d7:5d:f7:ed:07:44:73:52:5e:bd:2b:fd:a9:
cd:c3:e9:7c:5c:37:78:fd:e3:5e:70:98:6a:53:18:cb:0d:41:
e8:ef:07:46:62:ef:93:08:40:57:4c:69:d2:c6:2f:be:24:d6:
b5:d6:76:7e:ec:1d:43:38:b6:93:e8:23:ce:dd:ff:02:c2:99:
54:c6:12:e0:a0:d3:98:83:ca:34:7a:0e:85:c1:eb:24:b0:ed:
8a:12:b6:28:72:f5:11:5b:58:f8:7d:86:29:cc:07:07:ee:f8:
d2:0f:a8:3e:b8:f4:84:4f:4f:89:fe:32:58:a8:6a:b1:b3:36:
26:f8:26:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org