Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/q33QRvzty8QJXzB3z-qOc2cslrI.roa
File: q33QRvzty8QJXzB3z-qOc2cslrI.roa (raw, json)
Hash identifier: DgSG67MJQ4dH3pw/gd9rfZfw8b6Z/WOG3uzApAVVe+0=
Subject key identifier: AB:7D:D0:46:FC:ED:CB:C4:09:5F:30:77:CF:EA:8E:73:67:2C:96:B2
Certificate issuer: /CN=f0fb0d0be296dc1b719d2440fb6ad9c75d08e2e2
Certificate serial: 018CC94D3ED71433BB3287FACE1A8CFF5D94
Authority key identifier: F0:FB:0D:0B:E2:96:DC:1B:71:9D:24:40:FB:6A:D9:C7:5D:08:E2:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/q33QRvzty8QJXzB3z-qOc2cslrI.roa
Signing time: Tue 02 Jan 2024 08:32:11 +0000
ROA not before: Tue 02 Jan 2024 08:32:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2119
IP address blocks: 195.177.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 14:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:3e:d7:14:33:bb:32:87:fa:ce:1a:8c:ff:5d:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0fb0d0be296dc1b719d2440fb6ad9c75d08e2e2
Validity
Not Before: Jan 2 08:32:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab7dd046fcedcbc4095f3077cfea8e73672c96b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:de:69:d9:cc:be:07:93:5e:ac:14:63:78:49:
ca:47:5d:6e:9d:00:b7:ff:24:49:7f:a5:94:9d:13:
ca:03:ae:90:d5:e4:f4:2d:b7:5a:4e:b0:c3:d9:85:
f1:e0:4a:0d:4c:0d:7b:dd:a0:6a:ce:61:10:83:43:
a9:a7:1b:02:5c:1d:7e:25:4f:29:e1:71:77:ad:01:
44:f4:de:ed:b6:cf:26:ce:f2:5a:30:a4:a1:b9:a8:
cf:57:d0:9f:23:e0:f3:01:cb:1f:59:25:9b:86:cb:
6c:cf:f4:a7:d5:8e:98:97:a4:e5:a4:54:1e:9e:0f:
3e:6c:a9:3b:9f:dd:21:2c:3a:81:f4:c8:43:2f:42:
a8:2a:4f:38:ed:d3:14:b2:ec:ac:a1:62:de:54:d3:
7c:c3:57:6c:61:ad:91:6f:25:af:48:98:9f:a9:0d:
93:b9:8b:40:d5:9f:fe:32:48:03:ee:e9:87:88:6e:
69:0e:5e:f2:48:ca:3e:f0:30:8b:d4:44:bc:22:cf:
e7:79:17:77:a6:6e:24:05:fd:18:5e:a1:1e:a6:fc:
d8:eb:c7:75:c4:cf:9a:08:77:f8:01:79:ef:40:9b:
c9:44:ec:80:f0:c6:20:0b:7d:7c:42:f7:1f:af:3f:
79:57:68:30:4c:72:52:a0:3c:7a:e0:a8:a8:87:4b:
b9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7D:D0:46:FC:ED:CB:C4:09:5F:30:77:CF:EA:8E:73:67:2C:96:B2
X509v3 Authority Key Identifier:
keyid:F0:FB:0D:0B:E2:96:DC:1B:71:9D:24:40:FB:6A:D9:C7:5D:08:E2:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/q33QRvzty8QJXzB3z-qOc2cslrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.98.0/24
Signature Algorithm: sha256WithRSAEncryption
38:4b:00:aa:0b:f8:39:28:c9:d5:9a:7c:ed:5b:c3:3a:d3:45:
35:0c:bd:0e:83:61:f9:3c:7b:4d:5b:15:cd:f3:33:fa:93:de:
49:2b:0a:fa:31:0a:ea:0e:dd:22:c8:e8:43:33:62:f8:77:d8:
8c:a4:68:70:c0:a0:54:38:a3:6a:55:00:dc:e7:0a:1d:18:e9:
0f:ab:b3:1c:cf:fa:d5:9f:20:80:6c:87:28:dc:05:14:60:ff:
73:ef:69:4e:8a:bf:a1:56:f7:cc:38:57:e4:86:f8:ff:9e:a6:
7e:0a:76:4f:6c:bb:68:ee:4c:f9:32:4f:dd:eb:15:2c:dc:84:
42:af:32:8b:49:54:bf:b6:46:4f:3f:7e:bb:c1:74:b5:bd:8d:
d7:b4:47:eb:9e:0d:0d:b8:4d:77:24:39:1d:0a:a7:0e:4a:ef:
0c:8d:92:ee:f5:85:d1:c4:0c:d2:bd:f0:dc:7a:44:11:67:e9:
4d:32:ab:fd:a2:97:05:8a:7a:c3:5a:a5:54:ba:1d:e0:1f:5b:
28:1b:94:60:48:10:56:4f:4a:0a:b3:a4:45:e4:a2:44:36:49:
81:a3:f1:38:0c:32:ac:37:f6:1d:03:cb:e7:ea:46:d1:1b:f0:
23:00:f4:ee:da:59:e6:b8:9d:22:71:c5:d9:0b:3b:72:7c:1b:
c7:c8:e4:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 18:07:09 2024 by rpki-client on console-fra.rpki-client.org