Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/H26cVSUDVZSD0TGRTxBVUfCJ-cg.roa
File: H26cVSUDVZSD0TGRTxBVUfCJ-cg.roa (raw, json)
Hash identifier: ZpFBxqUXpqLt9AnMcqKiGwZRgs7z+iu/qe8kfr4OwLE=
Subject key identifier: 1F:6E:9C:55:25:03:55:94:83:D1:31:91:4F:10:55:51:F0:89:F9:C8
Certificate issuer: /CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355
Certificate serial: 018CC8713FF592697B14E1D1473E70D4C858
Authority key identifier: 83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/H26cVSUDVZSD0TGRTxBVUfCJ-cg.roa
Signing time: Tue 02 Jan 2024 04:31:54 +0000
ROA not before: Tue 02 Jan 2024 04:31:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207990
IP address blocks: 45.67.4.0/22 maxlen: 32
92.119.168.0/22 maxlen: 32
213.173.60.0/22 maxlen: 32
2.58.76.0/22 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/g5ka_NRV6xsXT8-J-OEOr39ws1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/g5ka_NRV6xsXT8-J-OEOr39ws1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 06:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:3f:f5:92:69:7b:14:e1:d1:47:3e:70:d4:c8:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355
Validity
Not Before: Jan 2 04:31:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f6e9c552503559483d131914f105551f089f9c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:23:66:a5:4d:ac:7a:7a:df:69:38:af:65:1c:
54:91:11:32:fd:57:a8:43:13:41:95:d2:bd:3e:b0:
3c:a3:c3:74:b4:1a:f1:da:eb:a3:82:a2:1f:b6:95:
68:ba:9e:14:14:cb:c0:93:40:cf:b4:bb:b7:60:2b:
3d:19:d8:f8:f3:77:33:1b:9d:41:64:44:af:b3:20:
0c:6f:6b:f6:e5:c0:bb:2d:d7:38:9c:d6:9e:aa:02:
b2:69:66:be:dd:fd:15:c0:d6:ec:11:50:42:34:1a:
f2:c0:ad:35:be:08:44:62:35:c5:6f:25:5b:a3:61:
d8:28:f3:cb:dd:4a:bf:4b:f8:3a:d2:65:60:98:9a:
a9:54:79:db:73:5b:ab:dc:71:bf:dd:96:be:0e:84:
9b:de:23:5e:9f:bd:c2:65:67:5d:a8:df:81:06:74:
31:f0:e4:8e:a2:2b:02:b7:5a:8e:04:60:89:2c:98:
d8:72:e1:68:7f:d4:e4:e4:a0:eb:35:f8:aa:35:3e:
e6:bf:4a:68:ad:02:d4:6e:33:b5:d9:b9:e2:03:8a:
70:e7:4c:2b:76:a6:dd:83:98:fa:6d:92:72:7f:f0:
c5:1c:0a:da:08:2f:23:be:a6:dd:ab:3b:6a:76:a1:
eb:55:18:03:64:3f:14:16:cc:63:1f:71:b2:e4:29:
38:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:6E:9C:55:25:03:55:94:83:D1:31:91:4F:10:55:51:F0:89:F9:C8
X509v3 Authority Key Identifier:
keyid:83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/H26cVSUDVZSD0TGRTxBVUfCJ-cg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/g5ka_NRV6xsXT8-J-OEOr39ws1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.76.0/22
45.67.4.0/22
92.119.168.0/22
213.173.60.0/22
Signature Algorithm: sha256WithRSAEncryption
50:ad:e7:a2:b8:da:87:ea:67:45:42:3f:53:62:30:36:2e:76:
0f:90:92:ac:e8:a1:09:47:9d:62:44:99:ee:83:9d:e7:63:37:
2d:6f:db:9a:09:7e:2e:e8:e7:d8:e8:88:7d:a3:ba:c7:53:f0:
d1:d5:a0:ec:a8:32:4e:ae:bd:5a:8f:9c:3a:93:89:b9:d6:fb:
90:82:29:b3:31:dc:63:a6:79:df:7d:b6:af:39:be:47:5f:07:
84:b7:3c:3f:0b:9d:fd:6f:9b:8a:15:d1:e2:e1:36:ae:20:8e:
d2:18:d1:8a:c2:48:1f:9b:f9:85:8a:36:15:64:9b:18:b6:a3:
d3:a6:b3:66:ce:aa:ef:4c:49:ae:43:2c:b4:37:83:54:23:2e:
26:16:8f:a7:7a:eb:cf:f0:65:d5:99:2a:f2:ce:14:ff:b2:d0:
e7:cb:c5:df:65:ab:a0:a9:f5:e6:0a:88:49:b5:79:3a:9d:ac:
f7:2d:ac:0c:5a:35:52:43:20:50:f1:52:6c:2a:cb:aa:66:cf:
21:67:b8:89:77:65:f1:57:a8:49:b2:a6:98:d4:f9:a3:bd:f2:
e1:5f:bb:2a:4d:49:84:8e:8a:41:75:da:f0:7e:dd:16:b7:71:
3f:56:9f:20:f0:cb:4c:4e:b7:5c:61:27:fd:8d:5c:32:fb:a8:
72:a5:ba:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 08:26:30 2024 by rpki-client on console-ams.rpki-client.org