Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/64HlaXHTy3clBlQZlkFZu9u7VpY.roa
File: 64HlaXHTy3clBlQZlkFZu9u7VpY.roa (raw, json)
Hash identifier: qnfCoo1Vd7wDV2LStZZ4q3lu3WFCYo52MkWnIYOWpQo=
Subject key identifier: EB:81:E5:69:71:D3:CB:77:25:06:54:19:96:41:59:BB:DB:BB:56:96
Certificate issuer: /CN=45bbd2193642530a017f4f1cbe562e2170b3dfbd
Certificate serial: 018D5BA078DC2FD46848C11A9DC77B9414E7
Authority key identifier: 45:BB:D2:19:36:42:53:0A:01:7F:4F:1C:BE:56:2E:21:70:B3:DF:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RbvSGTZCUwoBf08cvlYuIXCz370.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/64HlaXHTy3clBlQZlkFZu9u7VpY.roa
Signing time: Tue 30 Jan 2024 18:27:39 +0000
ROA not before: Tue 30 Jan 2024 18:27:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 193.56.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/RbvSGTZCUwoBf08cvlYuIXCz370.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/RbvSGTZCUwoBf08cvlYuIXCz370.mft
rsync://rpki.ripe.net/repository/DEFAULT/RbvSGTZCUwoBf08cvlYuIXCz370.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 May 2024 12:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5b:a0:78:dc:2f:d4:68:48:c1:1a:9d:c7:7b:94:14:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45bbd2193642530a017f4f1cbe562e2170b3dfbd
Validity
Not Before: Jan 30 18:27:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb81e56971d3cb7725065419964159bbdbbb5696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:5b:d7:a3:77:4c:ef:c1:0a:6a:64:2a:29:79:
05:d4:db:49:66:31:cb:64:f1:fe:ad:e7:8d:cc:9e:
35:b7:2b:9b:9e:a4:1a:be:3b:13:3f:93:88:62:c5:
91:1b:08:20:65:6e:72:00:b8:3a:d0:52:56:38:87:
73:8b:03:51:79:97:d5:33:75:9e:2e:f8:01:08:05:
ae:b2:f4:bd:4c:f6:b8:9a:15:86:b6:23:6f:34:9e:
58:37:03:3e:ec:87:5f:fc:c5:75:7f:fb:e8:f3:12:
03:ae:69:ad:96:f2:7c:a6:45:08:93:7b:97:9f:b3:
e3:7c:b8:bf:f8:78:38:28:38:0e:f2:b8:0e:01:dd:
c6:77:98:0b:f3:d1:77:7c:77:08:cd:a7:55:8f:58:
1b:88:8e:43:87:95:0a:46:2c:3f:15:b0:da:91:77:
d6:97:d2:64:1a:1b:10:96:67:93:3c:42:b6:b9:ce:
80:1f:3b:ca:89:99:22:2e:d0:eb:e0:10:01:ee:5f:
d7:b4:e7:bb:51:28:16:20:70:19:e2:e7:2d:68:84:
0d:83:cd:22:be:d4:e2:25:b7:c8:c6:76:3b:31:19:
7f:a0:84:ea:14:c6:c1:35:04:60:6d:95:85:82:80:
17:34:2a:1d:a1:1e:40:5f:58:d0:da:5f:ce:50:31:
da:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:81:E5:69:71:D3:CB:77:25:06:54:19:96:41:59:BB:DB:BB:56:96
X509v3 Authority Key Identifier:
keyid:45:BB:D2:19:36:42:53:0A:01:7F:4F:1C:BE:56:2E:21:70:B3:DF:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RbvSGTZCUwoBf08cvlYuIXCz370.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/64HlaXHTy3clBlQZlkFZu9u7VpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/RbvSGTZCUwoBf08cvlYuIXCz370.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.117.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:3c:19:ec:45:8a:28:52:ff:16:94:92:4e:0e:e7:3a:23:0b:
38:71:0b:0e:97:d9:ec:b5:89:7d:bd:4f:9a:f0:b7:96:23:5f:
b0:a2:63:c0:8a:be:60:e7:de:65:e0:68:f0:17:6c:71:46:7d:
6f:0b:41:f1:3c:e7:6f:bf:e1:61:3d:b3:a1:fe:da:7b:d8:c9:
a1:2a:dd:4d:0b:c0:bc:f6:2b:5c:fb:73:cb:fc:e3:18:ea:87:
d5:26:f3:97:92:dc:a8:98:25:4a:67:39:14:80:63:88:67:12:
59:1b:d9:39:d1:35:75:37:f9:b3:b8:af:fa:fb:f1:ff:4f:af:
06:36:27:39:be:65:84:8a:e3:c9:b0:70:89:30:1d:5b:02:c8:
77:1d:f3:a5:c7:7d:ea:77:ed:6a:e4:48:06:74:93:68:ea:d0:
5d:8e:fc:54:b6:01:0c:ae:4b:85:77:c0:f2:3a:f9:d6:86:3c:
66:82:64:d0:18:c1:e5:bd:db:e4:3f:cf:8e:81:34:7e:70:08:
6d:86:40:c0:63:2e:d3:73:e2:22:fb:2a:e0:4c:97:4e:85:c8:
53:7c:e9:d0:14:e6:e2:1c:51:4a:6d:cb:ee:21:a0:49:7a:72:
bf:48:42:97:f8:b4:ac:01:c9:ef:93:a9:3f:03:90:61:1d:46:
37:de:39:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 16:25:51 2024 by rpki-client on console-fra.rpki-client.org