Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/t8AOqiiVLrqHOmbMV2EgnMXdJF0.roa
File: t8AOqiiVLrqHOmbMV2EgnMXdJF0.roa (raw, json)
Hash identifier: uX4fzT84Go7utu7L4w2u81tugcSvjA5inHY211Hu2oA=
Subject key identifier: B7:C0:0E:AA:28:95:2E:BA:87:3A:66:CC:57:61:20:9C:C5:DD:24:5D
Certificate issuer: /CN=a26fa7ee30ada35ab1fc04f340fedf647a9f8162
Certificate serial: 018CCA29FD5659642290D0BEB88AE7932D59
Authority key identifier: A2:6F:A7:EE:30:AD:A3:5A:B1:FC:04:F3:40:FE:DF:64:7A:9F:81:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/om-n7jCto1qx_ATzQP7fZHqfgWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/t8AOqiiVLrqHOmbMV2EgnMXdJF0.roa
Signing time: Tue 02 Jan 2024 12:33:18 +0000
ROA not before: Tue 02 Jan 2024 12:33:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60111
IP address blocks: 193.27.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/om-n7jCto1qx_ATzQP7fZHqfgWI.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/om-n7jCto1qx_ATzQP7fZHqfgWI.mft
rsync://rpki.ripe.net/repository/DEFAULT/om-n7jCto1qx_ATzQP7fZHqfgWI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 22 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:fd:56:59:64:22:90:d0:be:b8:8a:e7:93:2d:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a26fa7ee30ada35ab1fc04f340fedf647a9f8162
Validity
Not Before: Jan 2 12:33:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b7c00eaa28952eba873a66cc5761209cc5dd245d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:68:c6:e7:a5:d4:16:e1:e0:90:0a:8d:79:9b:
07:b7:80:0d:a5:de:66:b1:59:c6:db:07:a2:b8:12:
94:b5:ec:f9:f3:3b:ad:40:2c:77:3a:d5:81:fe:a3:
a0:0f:de:87:49:ce:08:2d:f7:c1:af:fd:45:02:0d:
91:dd:9a:2b:6e:db:7b:d0:6d:a5:66:f6:0c:b6:27:
5f:e0:c5:06:f1:8f:1c:6d:4a:c1:89:26:fd:b8:25:
d0:be:f9:1b:89:46:0f:19:2d:3d:3a:2a:be:9a:71:
fb:84:b1:d9:53:67:69:b2:bc:ab:80:94:7c:ab:8d:
7e:de:1f:f0:13:64:33:a2:79:69:99:95:1f:4c:29:
7a:38:f3:b2:de:b0:4a:67:de:1f:ba:59:4a:dd:95:
93:cf:49:8b:b2:0d:2c:7f:b8:96:6b:fa:31:c0:e1:
00:d2:f9:40:17:8f:44:df:80:28:c1:69:c0:47:a2:
ed:9e:cf:74:66:5c:df:75:46:79:01:4d:92:58:6a:
7c:21:93:eb:2e:4b:aa:b7:bd:65:9e:9a:b5:93:2d:
38:af:ca:2a:f1:d5:39:5e:ce:91:18:e0:ea:4b:1c:
cb:e2:91:6c:69:74:d5:b7:cc:cc:36:a9:e1:21:49:
3d:18:70:39:0f:24:71:ce:c7:1f:9d:19:c2:d0:28:
51:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:C0:0E:AA:28:95:2E:BA:87:3A:66:CC:57:61:20:9C:C5:DD:24:5D
X509v3 Authority Key Identifier:
keyid:A2:6F:A7:EE:30:AD:A3:5A:B1:FC:04:F3:40:FE:DF:64:7A:9F:81:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/om-n7jCto1qx_ATzQP7fZHqfgWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/t8AOqiiVLrqHOmbMV2EgnMXdJF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/om-n7jCto1qx_ATzQP7fZHqfgWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.27.44.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:14:c6:f2:7f:3e:76:b0:b5:3b:ed:fb:87:36:24:0a:4d:f2:
45:e4:87:63:25:84:02:5c:63:df:dc:0a:9b:30:b0:82:3e:8c:
41:f8:bb:2c:7e:20:8d:e5:60:5d:7a:bb:6e:2e:04:ea:51:85:
60:10:84:3e:72:17:d7:4d:e4:34:8e:8c:3a:4c:8a:10:4b:e9:
72:87:82:5a:f6:f3:c5:66:ef:c1:e6:f6:e8:51:93:1c:e5:08:
f8:9b:d7:b9:4f:f4:bf:12:eb:e5:be:96:40:5e:81:2b:2d:8d:
48:76:e5:65:56:0a:11:b1:c7:af:cb:c3:c4:5b:38:33:f8:7e:
e1:21:b1:20:c2:d8:fd:42:5f:1d:16:06:d9:89:12:00:c2:b9:
69:53:09:26:3d:d7:77:7f:55:09:62:6e:fa:c7:83:47:7a:9c:
7c:7f:5e:a2:64:56:b4:c4:90:fe:f2:ab:6e:84:54:da:5a:bc:
df:49:03:f6:d8:69:e5:c4:40:c9:a3:1c:85:7d:f2:21:b5:a5:
b6:40:98:1d:f8:b3:51:30:fc:70:73:f2:0d:bc:5d:6c:b6:7a:
f1:4f:b0:85:81:43:cb:6e:96:54:2c:27:12:4e:6c:8e:b4:0f:
fc:7a:3a:d3:39:af:c7:68:60:a4:b9:b1:ed:53:d1:9a:06:e9:
8f:2f:46:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 05:28:58 2024 by rpki-client on console-fra.rpki-client.org