Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/0ab167-3094-4103-8131-064414d0340f/1/Bo6KC96n6jwXQXyXuc9vZsaItKw.roa
File: Bo6KC96n6jwXQXyXuc9vZsaItKw.roa (raw, json)
Hash identifier: +jhpezPZHZDbqy+edCNhEg2g4YO3PFhg5/SJTUrCSA0=
Subject key identifier: 06:8E:8A:0B:DE:A7:EA:3C:17:41:7C:97:B9:CF:6F:66:C6:88:B4:AC
Certificate issuer: /CN=1232303d1638e0735240491aaa9e42b1887adaca
Certificate serial: 018CC348DE8C7886C233010A189CC3ECF0DC
Authority key identifier: 12:32:30:3D:16:38:E0:73:52:40:49:1A:AA:9E:42:B1:88:7A:DA:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EjIwPRY44HNSQEkaqp5CsYh62so.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/0ab167-3094-4103-8131-064414d0340f/1/Bo6KC96n6jwXQXyXuc9vZsaItKw.roa
Signing time: Mon 01 Jan 2024 04:29:41 +0000
ROA not before: Mon 01 Jan 2024 04:29:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197708
IP address blocks: 185.7.120.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/0ab167-3094-4103-8131-064414d0340f/1/EjIwPRY44HNSQEkaqp5CsYh62so.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/0ab167-3094-4103-8131-064414d0340f/1/EjIwPRY44HNSQEkaqp5CsYh62so.mft
rsync://rpki.ripe.net/repository/DEFAULT/EjIwPRY44HNSQEkaqp5CsYh62so.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 20:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:de:8c:78:86:c2:33:01:0a:18:9c:c3:ec:f0:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1232303d1638e0735240491aaa9e42b1887adaca
Validity
Not Before: Jan 1 04:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=068e8a0bdea7ea3c17417c97b9cf6f66c688b4ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d6:d1:cc:cc:37:2c:93:44:c4:0c:ce:9a:af:
21:44:33:19:88:e4:43:cd:fc:98:55:8e:aa:f1:2d:
bf:02:51:e2:20:6f:8f:fe:1e:62:1b:76:8a:bd:88:
f0:29:83:2b:8a:e5:78:70:7a:88:eb:57:47:b8:d8:
07:92:a2:77:8b:9e:89:17:4e:9e:39:b1:48:8a:01:
ef:39:ea:95:ac:58:46:ef:b0:5f:ef:3a:23:d8:48:
57:aa:ea:15:66:5c:a7:19:61:04:a7:97:d5:7b:19:
38:95:79:af:9c:fd:12:8f:9b:61:6b:c4:ab:b4:36:
c6:14:2e:1a:10:08:7f:7f:ad:d7:7f:55:0b:d2:12:
38:01:da:f7:18:33:6a:26:e4:a4:d4:b1:fe:a4:8f:
e9:8e:b9:d6:22:bd:87:89:16:51:5f:c0:f2:56:c6:
b5:11:c5:2d:ff:f3:56:b0:ac:bd:82:7a:67:ae:ef:
08:7a:35:1b:bb:92:2f:c7:9a:49:fc:35:81:ad:30:
bb:8a:88:45:b8:a2:cf:c0:44:c7:56:0e:7f:87:34:
f3:d4:41:ce:9c:95:c3:74:6e:ed:1f:0e:e9:2c:a1:
50:5e:ff:0e:16:c2:d5:91:34:98:8f:be:4b:de:9d:
85:64:bd:e4:65:de:c0:b7:3f:fa:1b:af:63:54:64:
cf:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:8E:8A:0B:DE:A7:EA:3C:17:41:7C:97:B9:CF:6F:66:C6:88:B4:AC
X509v3 Authority Key Identifier:
keyid:12:32:30:3D:16:38:E0:73:52:40:49:1A:AA:9E:42:B1:88:7A:DA:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EjIwPRY44HNSQEkaqp5CsYh62so.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/0ab167-3094-4103-8131-064414d0340f/1/Bo6KC96n6jwXQXyXuc9vZsaItKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/0ab167-3094-4103-8131-064414d0340f/1/EjIwPRY44HNSQEkaqp5CsYh62so.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.120.0/24
Signature Algorithm: sha256WithRSAEncryption
29:9c:fa:d5:b0:00:e8:e2:dd:e7:18:25:6f:2d:88:74:bd:c5:
9e:d7:4b:4d:a4:3c:ce:2a:3f:a0:3d:68:77:3f:00:3a:5b:70:
32:53:e9:1b:4d:5e:b5:ac:96:ce:bc:0b:11:7f:47:93:a6:b7:
64:98:fe:ae:ea:10:69:49:2d:51:03:5f:33:45:cf:80:5a:1a:
c4:b6:f5:d0:0e:85:39:36:9d:c0:3b:b1:34:0b:6d:0f:51:08:
18:8b:5e:c6:ee:42:68:a7:0d:2e:c3:d0:eb:61:74:07:11:58:
55:e6:ba:29:da:6d:26:6d:80:cb:64:93:4e:42:28:be:9e:77:
86:5f:28:8a:95:cb:d3:a7:5b:4e:ce:57:59:50:85:34:7c:f5:
d6:2e:83:5d:12:5e:ec:6e:f1:d8:7b:24:c5:fd:b7:7e:b0:e7:
df:b2:32:82:9e:84:63:23:17:2c:ca:1d:fa:22:b7:b3:7d:08:
12:70:ba:32:7f:d2:b1:fb:39:13:ea:86:4c:ca:60:53:7a:ab:
1d:c5:22:a4:34:ad:73:27:d5:c5:a4:c4:cb:ec:05:da:65:ec:
c1:12:e0:78:d0:10:9d:0b:28:67:8c:7b:30:d7:12:4d:40:76:
5f:2a:04:b8:e6:f2:fa:56:24:01:5c:33:f0:d4:4a:61:c6:7e:
c0:58:ef:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 05:34:44 2024 by rpki-client on console-fra.rpki-client.org