Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/jnireA9zHaSPsYqlucfg5xYkgWs.roa
File: jnireA9zHaSPsYqlucfg5xYkgWs.roa (raw, json)
Hash identifier: 62A1OXlTmUSuixvcxPZ4xyWr1/13yxfD2sCIylZLPDQ=
Subject key identifier: 8E:78:AB:78:0F:73:1D:A4:8F:B1:8A:A5:B9:C7:E0:E7:16:24:81:6B
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 018CC725B144B694B8B223D8872FD94C1828
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/jnireA9zHaSPsYqlucfg5xYkgWs.roa
Signing time: Mon 01 Jan 2024 22:29:45 +0000
ROA not before: Mon 01 Jan 2024 22:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 195.191.102.0/23 maxlen: 24
37.148.220.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.mft
rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:b1:44:b6:94:b8:b2:23:d8:87:2f:d9:4c:18:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Jan 1 22:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8e78ab780f731da48fb18aa5b9c7e0e71624816b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:dd:90:a3:12:e7:f1:ea:ae:ce:72:1e:1f:d2:
c7:1b:2a:5e:64:65:8d:07:4d:16:76:ce:39:26:1b:
82:ab:ae:14:c4:42:6f:1b:34:fa:b3:b4:f3:73:d5:
4d:f9:1b:e4:6e:17:0b:04:8d:41:c6:42:af:a7:03:
15:ec:bc:d0:6a:a8:6b:06:15:ab:40:2c:ce:7a:88:
94:39:a1:de:a5:05:50:b9:f5:6b:29:17:5e:dd:97:
63:c2:fe:6f:4e:db:00:1d:84:30:10:b8:b4:aa:5b:
2f:61:80:7d:73:5b:b7:b4:92:41:cf:79:6a:19:02:
a9:87:94:30:4c:17:bc:80:75:d5:80:cb:cc:fa:13:
70:b1:c8:e0:0c:98:df:8d:9f:4e:aa:5c:42:a0:e3:
8a:fa:77:92:8f:c0:1f:01:4f:5f:d6:fd:3d:45:39:
eb:73:0b:0e:9a:61:60:d2:2f:df:4b:94:19:63:bd:
73:1d:a1:46:38:40:91:0a:c3:b0:2d:0e:2f:d9:a1:
f3:99:16:aa:81:b6:14:3a:91:d3:c4:b4:a2:7c:d6:
16:80:c5:70:d0:36:11:0b:d6:a4:78:8a:d1:36:8f:
43:93:f3:50:98:c3:9c:9f:71:f0:2c:f1:e1:47:f1:
28:1d:dd:1d:67:72:2f:c8:5d:37:53:0d:36:da:1b:
91:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:78:AB:78:0F:73:1D:A4:8F:B1:8A:A5:B9:C7:E0:E7:16:24:81:6B
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/jnireA9zHaSPsYqlucfg5xYkgWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.220.0/23
195.191.102.0/23
Signature Algorithm: sha256WithRSAEncryption
39:8d:0e:41:f1:06:3d:a9:60:6a:a7:e3:f3:76:11:a2:58:e2:
c9:8b:4b:58:25:98:46:4f:c3:9b:ab:26:eb:fb:3a:25:2b:16:
93:56:0b:1a:61:f1:1e:35:76:13:c0:d8:14:73:9c:ab:19:35:
8f:3d:80:26:4f:bd:4f:29:f6:47:2c:53:b2:00:79:54:41:73:
fe:e5:f6:9c:05:cf:0b:63:e5:00:8d:8b:f8:6a:cd:75:2a:83:
79:0e:41:bd:36:eb:a4:86:46:bf:3e:ab:7a:77:f7:6a:e5:72:
4e:2c:4a:20:98:ea:7a:cc:b2:cc:fd:aa:78:ac:e0:25:9c:94:
37:e6:a6:34:01:71:09:f3:2c:7d:a0:d3:c8:d7:06:85:73:97:
b0:4f:86:40:d8:01:7e:f5:0f:98:51:c9:28:f6:d5:9d:c8:a2:
a2:33:9d:c2:06:81:2f:1b:6c:a2:6b:50:c9:da:cf:16:31:8a:
b1:5c:f2:bd:d4:8d:e8:d9:93:4e:16:af:43:51:26:34:63:e4:
b0:9a:0f:f7:02:c8:cf:f3:19:1b:07:00:66:b1:b2:99:2a:56:
ff:fc:42:b4:9e:e7:9e:8b:7a:1a:81:17:fa:b8:66:0a:da:05:
2d:0c:fb:7b:98:e1:fa:be:c4:32:d7:35:74:e6:4b:fd:71:a3:
d1:7a:38:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 02:16:15 2024 by rpki-client on console-ams.rpki-client.org