Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/79ed04-be11-4388-a66a-482ec7d6872e/1/0_Gu-CBTX3b09sLF_GTq520cJfI.roa
File: 0_Gu-CBTX3b09sLF_GTq520cJfI.roa (raw, json)
Hash identifier: dJs4E2o5e31rpvOC5ZRr5e+YDb4scutcb1yIK2v0TBk=
Subject key identifier: D3:F1:AE:F8:20:53:5F:76:F4:F6:C2:C5:FC:64:EA:E7:6D:1C:25:F2
Certificate issuer: /CN=8d992719191a894d068dba8d0a1006e9feadaa68
Certificate serial: 018FB516D16FD5EB082C3804B0832E7EEADE
Authority key identifier: 8D:99:27:19:19:1A:89:4D:06:8D:BA:8D:0A:10:06:E9:FE:AD:AA:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jZknGRkaiU0GjbqNChAG6f6tqmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/79ed04-be11-4388-a66a-482ec7d6872e/1/0_Gu-CBTX3b09sLF_GTq520cJfI.roa
Signing time: Sun 26 May 2024 13:28:42 +0000
ROA not before: Sun 26 May 2024 13:28:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202316
IP address blocks: 185.63.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/79ed04-be11-4388-a66a-482ec7d6872e/1/jZknGRkaiU0GjbqNChAG6f6tqmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/79ed04-be11-4388-a66a-482ec7d6872e/1/jZknGRkaiU0GjbqNChAG6f6tqmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/jZknGRkaiU0GjbqNChAG6f6tqmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 14:49:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b5:16:d1:6f:d5:eb:08:2c:38:04:b0:83:2e:7e:ea:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d992719191a894d068dba8d0a1006e9feadaa68
Validity
Not Before: May 26 13:28:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d3f1aef820535f76f4f6c2c5fc64eae76d1c25f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f8:11:28:ea:a3:9a:22:b2:41:19:5b:1f:7d:
68:97:fb:d9:db:b4:e3:5d:53:88:ff:3c:43:30:5c:
b1:c3:26:9c:79:eb:7c:85:dd:a4:3c:eb:b4:0c:7e:
12:30:03:fa:19:ab:fa:85:47:55:f3:74:1a:ec:92:
a0:8c:eb:e1:8a:5b:e6:42:5c:c7:ac:d6:ab:9c:51:
d3:10:d1:f5:22:58:f1:b5:9a:ae:99:89:b0:b2:07:
dc:a5:18:2a:83:39:1d:37:02:a7:8c:25:7a:1f:6b:
1d:bc:b3:9a:9b:00:e3:4e:a5:b2:2d:31:f3:71:4c:
6f:0b:37:b1:10:f6:ac:48:73:8b:9e:28:1b:81:32:
50:77:00:4a:19:7a:39:f9:53:60:f2:65:8b:2c:ec:
d4:bd:0a:19:03:07:db:5a:af:38:9b:7f:5c:b5:53:
ca:95:03:9c:e4:6b:f6:e4:65:c8:e7:e5:8d:c6:55:
d8:d3:e5:e0:5a:5f:4b:0d:38:c3:eb:b0:35:4b:2a:
26:72:74:e4:35:78:b9:ee:67:ab:c8:d3:ee:96:b6:
6a:5b:30:0f:1e:54:f3:ac:f1:2c:16:ee:6c:79:e9:
87:f6:d5:51:72:1d:82:7d:a2:20:3c:27:86:e6:45:
bb:9e:81:c4:5d:b3:b1:5b:c5:ff:d0:98:e8:bc:8a:
0b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:F1:AE:F8:20:53:5F:76:F4:F6:C2:C5:FC:64:EA:E7:6D:1C:25:F2
X509v3 Authority Key Identifier:
keyid:8D:99:27:19:19:1A:89:4D:06:8D:BA:8D:0A:10:06:E9:FE:AD:AA:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jZknGRkaiU0GjbqNChAG6f6tqmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/79ed04-be11-4388-a66a-482ec7d6872e/1/0_Gu-CBTX3b09sLF_GTq520cJfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/79ed04-be11-4388-a66a-482ec7d6872e/1/jZknGRkaiU0GjbqNChAG6f6tqmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.85.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:bc:75:95:f7:a9:cd:d8:8d:89:f0:43:ca:7e:5a:fc:57:3d:
ce:41:14:f7:10:52:fa:54:7a:8a:88:fa:dc:fd:68:fa:e4:54:
21:25:9a:c6:db:35:07:0d:ad:13:af:3c:ba:a8:3f:5c:5c:67:
13:5d:86:34:3f:f5:2e:78:c7:c9:89:50:6b:8c:3b:57:8b:41:
ba:cb:13:6e:be:d6:0c:46:b8:26:17:3a:20:28:88:5d:1c:a2:
35:73:35:6a:e7:3b:a3:d1:4b:56:cf:0c:d4:a3:c6:33:d4:cf:
77:7e:15:be:70:ca:17:27:8b:d1:73:f7:73:ed:3e:75:88:20:
5f:8c:33:e6:ce:3f:b1:ad:fa:0d:a9:ab:22:20:6a:86:20:5a:
85:69:a3:0a:f1:67:4f:f1:17:4b:92:43:e6:eb:ed:25:e2:19:
47:4a:0f:c0:b1:de:40:a5:78:ca:bf:70:b7:6d:91:ee:e1:71:
6f:44:e5:99:c2:12:a3:e6:18:df:80:45:4f:46:4d:73:94:84:
63:f2:4f:e5:ef:4f:8b:a8:e8:9f:cb:32:56:d7:44:32:48:1d:
2f:d1:fc:b7:42:7e:bf:bd:08:70:a2:cf:52:c0:3e:7f:fb:82:
18:d7:8b:89:a9:1d:60:71:0d:1d:59:a1:75:5d:5a:c2:e6:66:
d2:84:f4:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 17:30:49 2024 by rpki-client on console-ams.rpki-client.org