Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/B3eavuVh9OTv66hV4c6VfI70EFw.roa
File: B3eavuVh9OTv66hV4c6VfI70EFw.roa (raw, json)
Hash identifier: bXXhzz/XRqn3nkiySWwq+2FXVeLD7zLG+Pqlj1dHTPQ=
Subject key identifier: 07:77:9A:BE:E5:61:F4:E4:EF:EB:A8:55:E1:CE:95:7C:8E:F4:10:5C
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 018CC86FE8FB46B75900D537093419008BE6
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/B3eavuVh9OTv66hV4c6VfI70EFw.roa
Signing time: Tue 02 Jan 2024 04:30:26 +0000
ROA not before: Tue 02 Jan 2024 04:30:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24667
IP address blocks: 176.235.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.mft
rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 06:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:e8:fb:46:b7:59:00:d5:37:09:34:19:00:8b:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 2 04:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07779abee561f4e4efeba855e1ce957c8ef4105c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c2:c6:7f:c5:fb:6b:8a:00:91:ac:78:7a:aa:
a7:10:73:39:9e:5f:27:2e:5d:1c:7b:a6:77:61:30:
aa:a0:f1:b4:c8:e9:9a:5a:12:2d:34:6f:7d:ad:06:
00:44:c7:24:43:29:87:b6:27:38:85:36:95:b7:1f:
f0:5a:0c:49:a5:39:9e:f4:d6:41:c2:a6:f1:06:f6:
8b:68:a2:b3:36:d7:2c:bc:1d:97:1b:5f:ee:9f:5b:
32:f7:d7:68:6e:e9:b5:20:40:3b:79:4e:49:47:ee:
eb:bd:6f:a7:ef:ce:4e:4e:6b:0e:6f:03:24:48:52:
4a:2f:bf:de:47:19:37:1a:e1:22:be:f4:b5:f2:0a:
95:da:29:96:24:36:87:d6:c7:5f:fc:53:30:7b:85:
1c:c1:c1:af:dc:09:8d:9a:7b:0a:d2:83:be:f2:0e:
56:77:ba:ee:a9:0a:19:e5:c9:96:0a:14:cf:07:df:
6a:1e:35:03:7c:23:a4:4a:8e:45:6c:cd:bc:ad:cb:
e2:50:94:eb:b7:a7:50:d5:c7:98:e9:0a:c4:14:93:
88:be:e0:5b:7c:fc:db:cd:1e:82:7e:af:b5:90:92:
2f:5e:4d:dd:6e:0c:9c:01:63:7c:9f:83:7d:ef:0d:
1f:50:23:fc:a3:03:6c:3c:6b:eb:87:f7:dc:7b:ae:
5e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:77:9A:BE:E5:61:F4:E4:EF:EB:A8:55:E1:CE:95:7C:8E:F4:10:5C
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/B3eavuVh9OTv66hV4c6VfI70EFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.235.122.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:d3:3b:ec:72:7b:76:50:44:30:1f:39:b0:76:94:49:53:f0:
8c:df:38:a4:10:44:49:c8:24:d8:7c:41:54:e1:fa:92:5c:3e:
3e:70:f7:a2:a6:2b:16:65:47:83:61:dc:13:57:76:e1:f9:79:
c7:63:0d:51:7c:73:b7:0b:7d:91:d9:db:ce:93:b1:e8:dc:ec:
bb:a0:a4:fe:77:15:b7:a0:10:d3:a6:77:2a:6a:74:92:66:af:
33:bf:81:a8:24:26:28:8d:5d:cc:9a:6f:09:1f:3e:a2:1c:d0:
09:14:4f:e3:e4:1f:a8:ef:9d:c6:87:a3:a3:5d:23:05:1f:04:
38:be:80:3b:09:dd:69:ec:b3:32:25:83:ff:37:b7:bb:02:32:
7d:32:57:ac:91:2c:60:f4:58:13:cc:9c:12:3a:80:c3:bd:51:
85:c1:f5:06:93:a7:91:bd:3d:b5:d6:4d:ea:95:6a:25:bc:d2:
36:95:f9:bf:c1:6a:3f:8b:f1:17:24:02:74:f9:33:a0:5c:15:
a4:06:82:3e:fb:1e:8d:c9:56:b0:18:29:e4:fb:4e:aa:7c:c7:
a9:46:3b:8d:c5:e4:9d:6a:cb:31:f0:06:7c:68:a2:9f:40:fa:
2a:9c:88:df:d9:d2:57:8e:53:c7:06:61:19:88:d0:3f:08:72:
bf:9a:2d:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 13:04:38 2024 by rpki-client on console-fra.rpki-client.org