Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-yKtVIgoQ6T1aFZHamrtpLiznnw.roa
File: 1-yKtVIgoQ6T1aFZHamrtpLiznnw.roa (raw, json)
Hash identifier: cPxz5E4Nc/GIzcDfpT5yGLy4A5J6aiMWlMmEexrDI6U=
Subject key identifier: FB:22:AD:54:88:28:43:A4:F5:68:56:47:6A:6A:ED:A4:B8:B3:9E:7C
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018FBAB175E956534F37E480B69C833A9B64
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-yKtVIgoQ6T1aFZHamrtpLiznnw.roa
Signing time: Mon 27 May 2024 15:35:43 +0000
ROA not before: Mon 27 May 2024 15:35:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214834
IP address blocks: 194.48.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jul 2024 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ba:b1:75:e9:56:53:4f:37:e4:80:b6:9c:83:3a:9b:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 27 15:35:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fb22ad54882843a4f56856476a6aeda4b8b39e7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:05:4e:5a:6d:65:b2:e9:5b:da:1b:4c:e3:fa:
84:4a:45:ac:87:2b:77:53:7a:ce:a3:7b:79:8e:b2:
fd:6f:f6:0f:c2:54:c3:0c:01:b1:8f:71:ea:02:c8:
e6:cc:17:81:16:19:4e:36:d8:53:d6:05:52:21:d3:
cd:39:97:ff:49:7b:78:f6:f8:f3:1f:8f:68:a9:c6:
d5:92:75:78:a1:a0:8d:83:41:fa:28:93:85:64:20:
4d:9b:b7:fd:93:e9:aa:2e:0a:ea:eb:ff:dc:07:b2:
d2:ab:50:eb:2e:10:8d:89:13:bc:fc:30:cf:7d:1d:
05:b6:0c:29:de:c0:86:b8:9a:ea:2f:16:02:41:2a:
4f:fe:62:dc:3b:66:78:44:ef:41:71:28:25:cc:0c:
32:d1:71:c3:35:40:fe:98:08:f4:bf:9e:1f:5b:6e:
af:90:db:ce:69:ea:0e:a2:be:3d:34:77:84:44:72:
09:b1:66:0f:28:df:63:3c:86:62:af:1a:c5:dc:05:
5a:9a:4c:89:66:38:a8:10:00:a7:b3:a9:20:9e:58:
62:16:d4:1a:97:cf:d2:a3:88:92:db:ed:8a:27:30:
24:7b:ff:74:b1:b7:63:9e:b7:86:41:4f:f7:10:28:
38:19:48:78:ef:64:86:38:4d:4d:04:eb:98:06:ef:
a2:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:22:AD:54:88:28:43:A4:F5:68:56:47:6A:6A:ED:A4:B8:B3:9E:7C
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-yKtVIgoQ6T1aFZHamrtpLiznnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.251.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:d5:33:1d:ab:2b:a5:36:30:01:29:ad:8e:52:cd:73:84:a9:
58:89:aa:71:e8:d8:33:5d:29:5d:e0:3a:8f:69:15:f2:b7:3e:
59:39:57:af:cb:97:48:55:31:fc:b3:36:8b:59:57:48:70:cd:
ee:ea:0f:a8:bb:d0:67:16:ed:9a:5e:11:8e:d7:53:fd:be:05:
28:67:1c:6e:ff:60:9a:be:e8:7d:17:6d:a0:bd:c0:61:1f:f9:
e2:aa:0f:81:26:65:4a:35:b3:07:d1:73:7d:a9:00:b6:26:f1:
7a:de:55:de:a2:1c:bf:25:ca:f7:ac:5a:85:ed:64:3e:36:ee:
d2:a9:ab:2d:4c:9d:77:7e:7d:8f:88:d4:fa:57:8d:e8:b5:93:
bb:cf:9e:9a:40:81:af:d8:c5:4b:b2:8f:34:06:81:15:77:3f:
86:27:ea:c6:2c:30:e5:97:6e:6f:3e:55:9e:3d:5d:5d:91:50:
ec:a8:3d:a4:e2:ed:a4:bf:b7:fa:12:54:3e:d5:8a:6c:5f:8d:
f6:7a:8f:b8:7b:2d:39:3d:16:56:64:74:af:24:99:07:a2:4c:
20:43:5f:fa:28:41:5c:d1:30:02:43:f4:9f:32:c9:af:96:19:
e9:35:8f:31:f9:da:ed:24:60:31:0c:53:e3:af:0b:45:85:30:
0a:01:8c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 7 06:15:42 2024 by rpki-client on console-fra.rpki-client.org