Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136392e302f32342d3234203d3e203432383331.roa
File: 3130392e3131302e3136392e302f32342d3234203d3e203432383331.roa (raw, json)
Hash identifier: dyylLp1AhxzFqSgfghzNA6NI3fmrL48u0n/SPmstY7U=
Subject key identifier: 31:E4:D7:95:B5:C6:5F:66:8C:92:D1:D3:52:DD:0C:84:B5:D1:6E:20
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 49010B2301E695D70972726D3AC354399DF95A08
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136392e302f32342d3234203d3e203432383331.roa
Signing time: Mon 14 Apr 2025 05:54:01 +0000
ROA not before: Mon 14 Apr 2025 05:49:01 +0000
ROA not after: Mon 13 Apr 2026 05:54:01 +0000
asID: 42831
IP address blocks: 109.110.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 11:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:01:0b:23:01:e6:95:d7:09:72:72:6d:3a:c3:54:39:9d:f9:5a:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Apr 14 05:49:01 2025 GMT
Not After : Apr 13 05:54:01 2026 GMT
Subject: CN=31E4D795B5C65F668C92D1D352DD0C84B5D16E20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:fa:9a:11:47:ba:c1:58:bc:bd:22:10:36:6d:
b8:3f:0f:41:0d:b1:1e:32:21:b9:4f:9b:67:07:31:
9c:f9:3f:1b:6b:68:2b:56:25:b2:0e:c3:1b:08:b5:
de:32:04:e6:80:79:ce:32:72:88:29:ba:dc:65:de:
dd:a7:13:ba:2d:ff:79:a3:8b:db:13:fb:35:95:2d:
c6:20:68:04:b6:ac:e8:52:70:33:fc:76:c0:ed:f4:
1f:18:0d:e8:70:a3:9d:38:ff:c6:47:5d:d8:77:b1:
6b:0b:8a:33:41:a1:1c:db:d4:d5:44:04:90:d2:f0:
50:e0:ab:f9:61:7b:3a:ac:47:57:14:cf:57:ac:59:
35:85:99:aa:20:32:38:a6:2b:1c:3d:17:d9:b2:4a:
80:e3:1c:aa:9e:5b:2c:b1:04:a6:36:e7:3b:33:57:
8c:df:0a:08:4d:4e:83:04:c3:a1:5c:33:10:c4:56:
c3:36:b6:6e:f0:e8:b0:00:58:ba:2d:ee:69:f4:43:
3d:f9:94:19:a7:3e:e0:68:c4:c5:01:6a:2d:ec:81:
88:d8:0b:a9:a6:fd:86:76:54:8b:cf:13:3e:30:0e:
60:20:de:96:94:f1:ee:cb:22:71:d1:a5:1f:de:ce:
01:c2:d8:3d:98:7a:17:4a:ad:d6:2c:81:c5:cd:ec:
56:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:E4:D7:95:B5:C6:5F:66:8C:92:D1:D3:52:DD:0C:84:B5:D1:6E:20
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136392e302f32342d3234203d3e203432383331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.169.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:9f:c7:0e:b3:cb:ed:ed:21:a4:0a:9d:05:a1:f7:89:8a:4d:
92:ce:eb:07:ea:09:80:21:66:ec:56:20:4b:8c:3c:16:b2:21:
1e:5a:55:99:a7:35:de:0e:b4:d0:09:e1:e1:2c:9a:ce:5c:da:
9b:e3:c3:72:76:69:65:d1:03:4c:15:4b:42:df:95:3a:75:8e:
69:fe:59:c6:41:05:f6:97:5a:63:01:48:82:b7:b6:9f:ca:62:
d6:ba:6a:c6:86:dc:fa:be:aa:ff:79:94:4b:b6:68:6b:81:02:
c8:de:b5:f2:ee:db:84:ea:7d:5d:22:90:c5:1c:67:6c:5f:35:
7f:6b:50:72:39:0a:41:f6:2f:22:17:3d:cb:8e:34:5c:df:bd:
9e:4e:cb:af:09:a8:34:ed:ee:ba:90:e1:c4:0c:4b:13:8d:05:
5f:7b:68:cc:60:ee:93:c3:d9:8f:5b:5d:4f:f6:d9:05:3d:2b:
70:0c:be:40:12:3a:31:be:0c:ad:55:fa:65:cd:9d:21:4d:29:
29:cc:7b:dd:1e:ae:9c:fb:ff:8b:d1:d4:c6:06:17:2b:e1:c1:
08:5f:1e:5d:b7:64:2e:6f:59:52:5f:0c:00:94:66:93:e8:20:
7a:ca:93:a3:4b:03:db:dc:c1:57:b1:ac:9c:b0:15:88:4a:21:
5f:e1:10:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:10:49 2025 by rpki-client