Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/OhrHNIZHwxbwnAGTngf_WXXnOMU.roa
File: OhrHNIZHwxbwnAGTngf_WXXnOMU.roa (raw, json)
Hash identifier: 2wvEmSoUIm5XyHOIQ+DJD2cezUj2O89D9GtsC2nFI9k=
Subject key identifier: 3A:1A:C7:34:86:47:C3:16:F0:9C:01:93:9E:07:FF:59:75:E7:38:C5
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018CC86FAFC3B461553114E13E455F8DA198
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/OhrHNIZHwxbwnAGTngf_WXXnOMU.roa
Signing time: Tue 02 Jan 2024 04:30:11 +0000
ROA not before: Tue 02 Jan 2024 04:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198468
IP address blocks: 93.185.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:af:c3:b4:61:55:31:14:e1:3e:45:5f:8d:a1:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 04:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a1ac7348647c316f09c01939e07ff5975e738c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6f:55:f8:e6:8d:e5:6b:29:7b:b9:8c:1f:2c:
80:00:cd:51:e9:d7:f0:96:0b:7a:94:2a:74:a4:ae:
cd:ab:c6:67:f6:a4:6d:8e:bb:0f:0b:48:a3:14:df:
b8:87:59:25:2c:9d:44:f7:f4:e9:ee:ea:5a:81:77:
33:f1:52:97:5b:f2:f9:fb:8b:2b:43:e3:55:5c:5b:
05:b8:b0:63:59:c6:09:12:98:36:92:15:f2:f5:25:
7d:ad:3a:17:1b:99:42:bb:b3:06:55:ba:be:bb:f8:
1a:44:19:7b:d6:02:fb:28:e6:24:70:5e:6d:47:30:
89:db:8d:70:1f:9a:c2:96:64:9a:94:4f:08:cf:a4:
83:7e:42:fc:0b:16:3c:b9:0f:4c:ae:98:09:85:e9:
ec:47:1b:46:64:34:5b:13:31:43:d0:ba:8b:ee:38:
c1:96:cd:c8:db:d5:4c:0c:7c:47:f6:5c:64:e1:56:
c8:0a:ed:15:ea:9b:3a:b2:7b:4f:bb:74:30:6d:04:
e9:72:70:57:8e:82:31:b9:b5:72:fa:99:01:15:42:
33:25:ac:3b:b1:1b:fe:db:8a:f8:20:3a:96:80:f6:
5e:b8:ea:6f:86:69:9c:39:fb:5a:b4:b3:9c:7c:71:
29:6c:9c:6e:92:f0:db:6d:d6:e2:ac:10:44:c0:c4:
73:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:1A:C7:34:86:47:C3:16:F0:9C:01:93:9E:07:FF:59:75:E7:38:C5
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/OhrHNIZHwxbwnAGTngf_WXXnOMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.185.163.0/24
Signature Algorithm: sha256WithRSAEncryption
86:ab:ef:e3:d6:9a:7f:d9:09:b7:65:31:17:aa:89:30:f0:80:
40:3c:d2:13:8d:d0:0e:72:e7:9c:dd:8c:96:dc:3b:d6:3a:f0:
79:82:9a:cd:a0:06:47:49:bf:de:c1:ab:45:92:46:55:22:8d:
1b:e5:b3:de:a4:f0:03:fe:22:2a:92:be:00:b6:3b:bc:82:c8:
ad:9b:12:f0:35:b2:2f:19:3e:cf:a3:02:02:3e:ef:d4:ae:73:
a0:63:5d:92:40:b4:6f:a1:c6:b7:72:30:e3:20:4e:c6:c5:52:
4b:ec:ff:f0:e8:ea:8b:f8:90:39:3c:f0:d4:69:bd:22:0a:a9:
be:97:90:c2:53:98:89:a4:5d:5b:04:37:d2:12:13:78:a7:95:
8b:2e:32:d6:64:94:5c:8a:f7:52:44:f5:22:3c:01:4f:ac:4d:
05:99:53:86:74:ac:62:3d:68:bf:21:e4:0e:57:05:ed:9c:30:
80:98:37:0e:25:fb:bd:13:eb:9e:f4:b5:22:7d:e4:6f:06:95:
95:78:2b:24:9a:84:01:bf:88:1d:ef:89:57:5c:ae:68:88:2b:
df:92:90:c8:f4:1a:4a:4a:ad:ad:75:da:88:c9:3d:93:ee:27:
f3:7e:a3:50:a4:62:f4:87:06:e0:98:a2:b1:13:fa:17:02:8d:
9a:c8:4c:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 07:38:34 2024 by rpki-client on console-ams.rpki-client.org