Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0038cd-3975-4893-94f6-3e558ac2465e/1/LmrVdvCEqGKvraou1EURCluAFkg.roa
File: LmrVdvCEqGKvraou1EURCluAFkg.roa (raw, json)
Hash identifier: hjdK7yzOivFCFfJWjm/R+s/UDubSTKy3EHaVUixllZA=
Subject key identifier: 2E:6A:D5:76:F0:84:A8:62:AF:AD:AA:2E:D4:45:11:0A:5B:80:16:48
Certificate issuer: /CN=872076f188ea4a6ce5f7767f73176dd4a793941b
Certificate serial: 018CC26D4EA8288A56AB7212DFCC91956ED3
Authority key identifier: 87:20:76:F1:88:EA:4A:6C:E5:F7:76:7F:73:17:6D:D4:A7:93:94:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyB28YjqSmzl93Z_cxdt1KeTlBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0038cd-3975-4893-94f6-3e558ac2465e/1/LmrVdvCEqGKvraou1EURCluAFkg.roa
Signing time: Mon 01 Jan 2024 00:29:52 +0000
ROA not before: Mon 01 Jan 2024 00:29:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 85.193.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0038cd-3975-4893-94f6-3e558ac2465e/1/hyB28YjqSmzl93Z_cxdt1KeTlBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0038cd-3975-4893-94f6-3e558ac2465e/1/hyB28YjqSmzl93Z_cxdt1KeTlBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyB28YjqSmzl93Z_cxdt1KeTlBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 04:03:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:4e:a8:28:8a:56:ab:72:12:df:cc:91:95:6e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=872076f188ea4a6ce5f7767f73176dd4a793941b
Validity
Not Before: Jan 1 00:29:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e6ad576f084a862afadaa2ed445110a5b801648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:21:df:8f:8f:c3:79:38:98:11:13:2e:6c:b8:
2b:77:be:1f:a2:45:7e:bd:d6:1e:70:c0:0c:aa:08:
7c:f5:8d:5e:7a:a4:3f:f6:b6:c8:92:14:5d:94:b8:
2a:ef:04:c8:f6:df:71:85:09:c4:c5:86:b2:e4:f8:
62:fc:36:7c:3c:42:ce:bd:19:38:b5:fb:20:ef:8a:
ab:0d:e7:00:31:80:6d:1f:63:91:21:b3:0f:87:40:
0b:57:95:b9:52:4a:92:b5:a9:af:3e:cd:51:a0:f9:
80:2a:8d:31:bb:4e:4f:db:63:92:0c:71:68:02:5f:
14:fd:94:c5:0e:be:ef:da:bf:de:03:a2:7b:c2:e3:
5c:9e:72:fe:43:d1:2a:0c:ae:96:df:35:ee:a6:80:
fa:8c:25:02:3b:1d:eb:6c:b3:be:49:d4:12:85:68:
43:d3:98:b3:f0:72:a3:e6:40:f4:b0:d0:97:2e:d2:
40:2f:05:07:2d:d8:bd:84:41:4e:62:e4:35:72:4c:
5d:70:23:a7:01:96:50:b0:9f:18:e1:5b:6b:19:e4:
2c:71:f1:ab:5b:d6:08:1c:1f:45:3d:7b:93:6d:57:
20:27:ad:0a:a6:82:d5:b6:73:3f:e1:36:6f:cd:bf:
75:5e:8e:7d:fb:5e:85:4d:a8:3c:f8:9b:7c:94:24:
2f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:6A:D5:76:F0:84:A8:62:AF:AD:AA:2E:D4:45:11:0A:5B:80:16:48
X509v3 Authority Key Identifier:
keyid:87:20:76:F1:88:EA:4A:6C:E5:F7:76:7F:73:17:6D:D4:A7:93:94:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyB28YjqSmzl93Z_cxdt1KeTlBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0038cd-3975-4893-94f6-3e558ac2465e/1/LmrVdvCEqGKvraou1EURCluAFkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0038cd-3975-4893-94f6-3e558ac2465e/1/hyB28YjqSmzl93Z_cxdt1KeTlBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.193.77.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:f4:40:4b:d1:56:17:fc:e2:4b:7c:e1:c1:9c:12:95:15:a2:
74:10:8a:d0:34:dc:d7:64:bc:e6:0a:85:b2:53:0f:28:9b:be:
82:6e:5f:2c:99:c0:c8:48:44:ca:32:10:64:8f:93:da:de:bf:
50:31:7c:d2:3b:0b:e9:1a:a8:55:47:5f:68:59:dc:40:9c:ef:
36:00:65:3d:94:eb:f4:2e:fd:d0:b4:c7:3e:7f:71:54:ea:c0:
b9:79:a5:cc:b4:af:a7:dd:dd:ab:be:84:90:2e:1e:aa:ee:4f:
82:b6:ee:5b:1b:5f:fd:23:c1:af:3f:69:a4:e1:bd:9b:95:fc:
63:8a:24:d8:7b:0b:e5:f9:9c:20:0c:09:ed:21:8c:d5:e4:1c:
3e:20:9a:5d:a7:62:a9:ac:4d:06:de:3c:91:ce:cf:4a:fd:98:
59:f2:0b:40:c6:09:66:f0:00:25:ac:41:c5:f2:55:e7:0e:ad:
53:36:ea:82:2c:80:c8:9a:07:77:5c:2d:9d:e9:d6:32:b1:e4:
34:f5:56:5d:25:04:74:91:ca:83:10:1a:14:be:a7:aa:34:5f:
9f:ca:8f:87:e5:a2:b5:f2:19:3e:ab:08:82:6d:3b:ef:1a:6c:
65:8e:ed:97:23:ce:05:2a:b0:1a:24:12:e0:82:46:db:4a:4e:
48:f0:9c:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 09:02:13 2024 by rpki-client on console-ams.rpki-client.org