Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/f8e67f-8dd1-4f2c-8de9-23064e21d14d/1/ahFzhyRvrVkBQ075hGs8Gg79F_k.roa
File: ahFzhyRvrVkBQ075hGs8Gg79F_k.roa (raw, json)
Hash identifier: gUlZUFZS4uQ+7+XQWnipQ61F1/7CXZ3s8XcMhEBrTas=
Subject key identifier: 6A:11:73:87:24:6F:AD:59:01:43:4E:F9:84:6B:3C:1A:0E:FD:17:F9
Certificate issuer: /CN=55b2059b748d6ddd5c5a0c1d35e975ef7ba88442
Certificate serial: 018D64E082AE72EBB9EBE1E62A41151286AA
Authority key identifier: 55:B2:05:9B:74:8D:6D:DD:5C:5A:0C:1D:35:E9:75:EF:7B:A8:84:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VbIFm3SNbd1cWgwdNel173uohEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/f8e67f-8dd1-4f2c-8de9-23064e21d14d/1/ahFzhyRvrVkBQ075hGs8Gg79F_k.roa
Signing time: Thu 01 Feb 2024 13:34:11 +0000
ROA not before: Thu 01 Feb 2024 13:34:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9145
IP address blocks: 193.30.76.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/f8e67f-8dd1-4f2c-8de9-23064e21d14d/1/VbIFm3SNbd1cWgwdNel173uohEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/f8e67f-8dd1-4f2c-8de9-23064e21d14d/1/VbIFm3SNbd1cWgwdNel173uohEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/VbIFm3SNbd1cWgwdNel173uohEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 04:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:64:e0:82:ae:72:eb:b9:eb:e1:e6:2a:41:15:12:86:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55b2059b748d6ddd5c5a0c1d35e975ef7ba88442
Validity
Not Before: Feb 1 13:34:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a117387246fad5901434ef9846b3c1a0efd17f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1b:52:8f:5b:96:ad:12:c2:14:7c:76:14:09:
6b:d6:e6:ec:1d:6c:69:39:c6:77:82:a1:23:16:f8:
07:c5:6a:69:d9:64:3d:d6:b3:22:23:9f:ae:b0:04:
b8:21:21:c6:1c:b1:ae:53:50:8e:06:2c:e0:fd:e8:
a6:29:41:08:76:25:6f:09:b2:02:d0:da:34:72:b9:
b3:f2:22:e2:3c:0e:c1:36:45:6d:67:16:d2:69:ca:
5e:1a:d7:6b:77:e0:d7:74:c5:2a:50:be:e5:1e:55:
6e:29:46:12:85:f5:32:ee:95:2a:7c:4f:6b:87:8e:
a3:26:45:61:0c:bd:77:63:4e:dd:a9:86:be:db:8a:
a3:30:8e:e8:58:f2:79:1e:f6:32:1c:f2:37:ce:65:
76:0d:41:bb:b8:e9:fd:3f:be:9e:65:f6:7d:9e:c8:
c0:fa:09:61:c1:3e:ec:a2:63:30:6d:70:78:ce:12:
d3:33:5f:c4:96:db:76:53:eb:75:da:59:5d:09:b8:
78:96:f6:be:50:e2:4b:d9:25:2f:69:0d:43:6f:b2:
7f:3d:ee:15:f8:6f:ff:f0:b8:1b:fa:89:9c:40:a0:
dc:0e:42:fd:27:5c:72:96:56:67:69:13:be:0d:39:
2f:d9:87:27:93:d1:bf:ee:31:36:87:9b:d4:ef:54:
de:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:11:73:87:24:6F:AD:59:01:43:4E:F9:84:6B:3C:1A:0E:FD:17:F9
X509v3 Authority Key Identifier:
keyid:55:B2:05:9B:74:8D:6D:DD:5C:5A:0C:1D:35:E9:75:EF:7B:A8:84:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VbIFm3SNbd1cWgwdNel173uohEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/f8e67f-8dd1-4f2c-8de9-23064e21d14d/1/ahFzhyRvrVkBQ075hGs8Gg79F_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/f8e67f-8dd1-4f2c-8de9-23064e21d14d/1/VbIFm3SNbd1cWgwdNel173uohEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.76.0/23
Signature Algorithm: sha256WithRSAEncryption
b9:62:07:8b:83:9e:be:b4:cf:4e:56:88:c1:28:f8:29:5c:d8:
77:a0:b6:ae:a2:0b:42:f5:27:43:88:a1:41:a5:4c:53:af:6d:
ec:a6:ec:24:ef:c6:46:e8:1d:b1:e1:5b:a2:7f:02:30:4c:92:
ce:68:53:13:b1:5f:3c:c3:3f:61:10:3c:2c:26:e1:b9:3b:cc:
5c:52:68:84:16:b6:bf:95:35:5b:58:4e:74:06:a2:27:d5:b9:
ab:79:94:13:bf:8a:6a:87:36:3f:5c:f9:d5:59:cc:cc:fb:f0:
3c:c9:c9:42:30:33:49:51:1f:81:65:4c:27:d9:b1:e0:c0:3a:
b2:27:9e:fa:ef:5e:1c:58:7a:06:bd:e3:ca:c7:bd:81:7a:cf:
30:2e:ea:dd:42:b1:45:cb:2d:87:aa:cf:dc:3e:de:a9:64:b7:
78:71:1d:a4:96:fb:a2:7c:79:1a:6f:0c:ed:d4:6d:22:da:a1:
7e:59:c6:52:3f:11:b2:13:69:f3:aa:c7:4f:14:82:49:38:02:
e2:b3:08:58:50:35:21:c7:ba:de:bb:52:8d:52:fe:cb:ed:45:
ce:cc:c9:17:ff:23:ea:83:14:81:fb:74:bc:18:e9:03:e3:58:
7d:bb:45:41:fa:b9:f5:65:59:ee:66:d2:89:c6:d4:ac:d3:d6:
2f:1e:4a:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 11:46:45 2024 by rpki-client on console-fra.rpki-client.org