Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232322e302f32342d3234203d3e20323032363536.roa
File: 3138352e342e3232322e302f32342d3234203d3e20323032363536.roa (raw, json)
Hash identifier: /oJ9gv6LIdyoDE08LVIm3wqF+65PvZEQe2xq6/E3Onw=
Subject key identifier: 10:7A:F1:14:47:0D:9F:D1:23:2F:E0:FF:3F:62:4C:FF:A8:36:3C:AE
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 2801E04E938A9E1663B63B63145EACC3643662D3
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232322e302f32342d3234203d3e20323032363536.roa
Signing time: Thu 17 Oct 2024 07:44:13 +0000
ROA not before: Thu 17 Oct 2024 07:39:13 +0000
ROA not after: Thu 16 Oct 2025 07:44:13 +0000
asID: 202656
IP address blocks: 185.4.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:01:e0:4e:93:8a:9e:16:63:b6:3b:63:14:5e:ac:c3:64:36:62:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Oct 17 07:39:13 2024 GMT
Not After : Oct 16 07:44:13 2025 GMT
Subject: CN=107AF114470D9FD1232FE0FF3F624CFFA8363CAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:d2:17:d8:fd:9d:5a:d2:55:f9:b4:d0:67:7f:
5e:d7:0a:a4:13:14:88:60:fd:75:28:ec:b8:3c:a9:
75:b3:09:11:5e:8d:59:b4:8a:a7:21:7d:f1:c0:1c:
73:60:78:9e:f6:d6:05:b1:f7:2a:c8:40:5d:75:ca:
03:46:53:17:87:e6:12:83:fa:5a:79:37:6f:21:e7:
43:08:db:84:04:fc:7e:b0:ad:6b:d6:40:d7:7a:02:
dd:26:fc:5a:b3:3f:51:cc:1b:18:cb:df:43:d0:4b:
71:0f:16:d0:df:04:0a:14:36:01:54:a1:65:51:cc:
aa:25:b4:7f:6f:fd:08:27:98:6a:51:9d:da:d5:b5:
c9:4c:bc:af:ed:1b:80:23:c9:16:40:f9:ce:b5:f4:
a4:44:b6:48:c5:08:9a:5f:0b:03:f0:50:53:32:62:
c4:09:cc:4a:b1:f1:a7:76:6f:46:6e:76:e8:83:b0:
ab:71:02:06:57:08:8c:c6:28:19:b5:fd:58:ef:79:
f0:34:06:70:15:6d:d7:10:1a:ca:71:4d:83:0a:76:
61:88:26:0f:6b:37:a2:5e:eb:77:a2:5a:f6:3c:5d:
c6:d2:ae:41:41:02:ef:e3:8f:b8:6d:98:a8:82:f3:
a4:8e:b7:92:2f:2b:ce:c5:73:58:b8:e5:d1:1a:a7:
89:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:7A:F1:14:47:0D:9F:D1:23:2F:E0:FF:3F:62:4C:FF:A8:36:3C:AE
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232322e302f32342d3234203d3e20323032363536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.222.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:66:87:26:89:72:50:16:22:29:09:9d:5a:60:1b:ee:19:04:
9b:09:f9:af:59:f0:4c:63:dc:d6:75:be:76:6f:1d:db:fa:ab:
d1:b7:24:1e:bc:0f:3a:ed:c3:43:40:22:1f:fe:ed:06:a8:1b:
59:d8:63:93:10:5c:3f:87:72:d7:cc:5e:4b:0e:92:7c:5c:10:
b8:1b:25:43:b9:e0:19:81:01:50:b7:37:93:0b:6b:32:6f:31:
69:34:f8:75:f4:17:8f:47:b4:59:10:45:3e:dd:68:71:64:5a:
ed:26:f4:38:0b:fa:a5:56:a5:90:7a:7a:c1:c2:47:35:53:84:
0f:5b:b4:a2:56:dc:b5:0a:6d:60:2d:5c:d6:5b:4f:7a:bb:a3:
a0:91:33:fd:2e:f1:3e:0d:f6:f0:72:b0:49:62:b8:cf:cd:76:
c0:81:ab:dc:8e:14:2f:3e:ce:ee:f4:a1:ee:9a:0f:2e:d8:78:
ed:a2:ad:1f:64:76:25:89:71:46:95:18:96:eb:63:fa:1d:cf:
58:a6:9b:ef:ee:d7:09:8b:50:24:54:9d:c8:d1:b0:f2:6b:ab:
f7:c2:92:6f:7d:b7:de:17:4c:ea:22:24:88:69:10:2a:06:d8:
8f:b0:41:49:a8:d1:46:2d:a9:41:3b:4c:2e:2b:a1:8d:9f:28:
8e:db:99:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org