Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/I1tN2r1B9MM0dcBHLGMO_MUEbyI.roa
File: I1tN2r1B9MM0dcBHLGMO_MUEbyI.roa (raw, json)
Hash identifier: /5eG+aEOaxUf/3vI8hiQ+V6Ahtmfz9CJp1Zey18lHDo=
Subject key identifier: 23:5B:4D:DA:BD:41:F4:C3:34:75:C0:47:2C:63:0E:FC:C5:04:6F:22
Certificate issuer: /CN=b39ecd24f321988deb7c19dca052a4e3c49b60ea
Certificate serial: 018E892100353B2FDA21641824FDB34149F2
Authority key identifier: B3:9E:CD:24:F3:21:98:8D:EB:7C:19:DC:A0:52:A4:E3:C4:9B:60:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/I1tN2r1B9MM0dcBHLGMO_MUEbyI.roa
Signing time: Fri 29 Mar 2024 07:33:45 +0000
ROA not before: Fri 29 Mar 2024 07:33:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 178.248.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/s57NJPMhmI3rfBncoFKk48SbYOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/s57NJPMhmI3rfBncoFKk48SbYOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 May 2024 13:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:89:21:00:35:3b:2f:da:21:64:18:24:fd:b3:41:49:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b39ecd24f321988deb7c19dca052a4e3c49b60ea
Validity
Not Before: Mar 29 07:33:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=235b4ddabd41f4c33475c0472c630efcc5046f22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ee:4a:00:9e:0e:3e:15:3e:0f:56:5a:8d:9e:
7a:c8:ed:03:d7:d0:e9:e6:36:6e:3f:d8:c0:54:12:
bb:8d:85:fa:01:4f:49:4f:28:58:fb:2f:4a:df:8e:
e9:5e:06:69:f7:32:8b:b5:79:92:66:69:8d:6a:ad:
a8:0f:ef:d4:7d:aa:f6:85:d1:60:76:83:18:e1:ef:
cf:c3:2f:98:5b:70:62:a6:a1:5a:4d:ab:2e:b3:f7:
54:89:8d:58:e2:23:f7:fa:0a:07:73:69:0b:6f:21:
b4:7b:8a:44:80:08:c8:80:25:9d:2e:69:a9:5f:42:
8a:a0:6e:7c:06:0f:19:b4:8a:35:0c:79:f3:74:b9:
de:71:f9:b8:80:92:89:d4:dc:75:99:08:d8:23:b1:
d6:d8:34:83:11:e0:c3:f7:32:8d:37:f9:15:85:69:
82:68:62:f2:ba:dd:86:b8:fc:8c:2f:aa:a7:bf:ca:
e1:a4:97:dd:03:43:07:0e:22:03:cb:58:b6:ed:a2:
5f:03:8f:db:79:ff:28:c2:60:52:5d:23:0b:d6:d5:
02:62:82:34:5f:6e:78:2d:d8:ba:e2:33:34:4d:8b:
c3:5e:25:f7:1c:21:d2:e5:a9:20:b5:c1:13:76:05:
19:c9:33:95:44:bd:91:8e:e4:45:e4:19:a5:7d:c7:
cf:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:5B:4D:DA:BD:41:F4:C3:34:75:C0:47:2C:63:0E:FC:C5:04:6F:22
X509v3 Authority Key Identifier:
keyid:B3:9E:CD:24:F3:21:98:8D:EB:7C:19:DC:A0:52:A4:E3:C4:9B:60:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/I1tN2r1B9MM0dcBHLGMO_MUEbyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/s57NJPMhmI3rfBncoFKk48SbYOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.79.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:a1:4c:4b:e2:d1:47:fa:dc:07:e3:1e:27:1e:fe:e4:22:b2:
fe:84:e6:92:bf:ca:3d:b8:f2:0b:17:bf:e3:76:02:81:6d:f2:
77:e8:f4:c1:f2:e7:73:b8:bc:ec:f7:d7:a0:ed:d6:6f:15:31:
7b:1a:d8:07:6d:54:82:d5:26:3c:52:ba:74:95:c4:37:b3:ad:
06:5b:ee:26:78:76:6d:ad:27:4d:fa:18:77:fd:a0:5a:12:99:
14:42:cc:74:93:9e:64:15:eb:cc:7a:ca:25:a1:10:ec:6a:ec:
71:80:88:8d:95:34:f4:d6:71:5b:c5:8c:d5:74:a7:cb:d6:9c:
bf:b0:cf:a7:21:19:3d:8e:31:67:44:35:ec:0c:4d:d2:36:95:
00:a2:05:98:6e:1e:f2:ee:71:e8:16:15:94:18:39:14:23:fd:
d4:49:b9:e8:11:90:31:d5:b1:70:68:3d:0c:03:6e:51:b8:52:
b2:55:15:e9:0b:0e:a3:30:c1:a2:ec:0a:e8:9e:f8:25:d3:6d:
b8:74:f9:fa:02:9b:0e:07:12:ba:0e:ec:da:b3:9c:33:8c:20:
85:60:06:a1:2b:64:d8:08:84:d8:40:ca:20:63:a1:d8:1c:c9:
5f:41:1d:90:69:e6:03:a4:40:82:02:29:65:ef:96:ca:ac:d6:
17:60:4f:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 16:27:15 2024 by rpki-client on console-fra.rpki-client.org