Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/0zyA9IKs4pAShtQ6a185txQRreo.roa
File: 0zyA9IKs4pAShtQ6a185txQRreo.roa (raw, json)
Hash identifier: oUEW8VARHCfB9d76CDG+sgkZEH/yJe5zC4Tr0XpBKsQ=
Subject key identifier: D3:3C:80:F4:82:AC:E2:90:12:86:D4:3A:6B:5F:39:B7:14:11:AD:EA
Certificate issuer: /CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Certificate serial: 018F4CA6E3A8F50B9E126FBA7DB2B88916B8
Authority key identifier: D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/0zyA9IKs4pAShtQ6a185txQRreo.roa
Signing time: Mon 06 May 2024 06:45:56 +0000
ROA not before: Mon 06 May 2024 06:45:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 193.178.52.0/24 maxlen: 24
193.178.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 04:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4c:a6:e3:a8:f5:0b:9e:12:6f:ba:7d:b2:b8:89:16:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Validity
Not Before: May 6 06:45:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d33c80f482ace2901286d43a6b5f39b71411adea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ee:8d:15:64:52:c5:2b:ce:40:97:da:c1:39:
0a:a2:4f:55:65:5f:a8:0b:ed:45:f2:77:4a:0d:d4:
75:c1:6c:10:9f:07:c8:9c:5f:55:3a:09:bf:1d:b9:
cc:53:5c:76:23:c1:11:56:ef:3c:ac:1a:48:a8:67:
74:2e:1e:7b:3d:99:8f:4b:43:48:b4:8b:4b:30:7c:
b7:ae:fc:76:5d:2a:20:48:14:7e:14:78:f9:bb:cc:
c7:1d:98:d3:5f:61:83:f0:9b:99:03:15:d8:3c:a2:
a9:1f:85:e3:8c:60:f3:1c:ca:c5:bb:fd:f9:e6:0e:
b6:6d:46:e5:27:8f:1c:cd:aa:03:4a:a3:9a:b5:6f:
f9:37:35:54:d5:60:f7:9b:c9:eb:52:e6:0c:a9:60:
8e:aa:cb:1d:45:ac:b6:1b:34:41:46:49:38:13:75:
f5:00:e6:ed:97:6e:ee:19:d0:b2:99:66:4c:0d:23:
b0:26:3f:05:33:f5:86:b3:cb:ab:7e:b6:63:fa:39:
0a:ca:88:64:4d:71:70:10:2d:be:50:7b:9d:db:e0:
39:3b:00:95:68:e7:9a:ee:06:ba:23:4a:20:cd:5e:
5e:b6:ef:50:fb:21:a2:eb:cd:75:75:10:a6:44:09:
48:4b:29:9e:f3:bc:0f:10:9a:b0:36:97:37:36:11:
ac:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:3C:80:F4:82:AC:E2:90:12:86:D4:3A:6B:5F:39:B7:14:11:AD:EA
X509v3 Authority Key Identifier:
keyid:D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/0zyA9IKs4pAShtQ6a185txQRreo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.52.0/24
193.178.115.0/24
Signature Algorithm: sha256WithRSAEncryption
55:03:53:52:ec:0b:99:22:35:6f:d4:71:36:4a:b2:08:40:f9:
89:19:a4:ea:f1:da:f1:cc:d7:1a:08:59:da:4c:eb:8e:61:1b:
75:69:bf:0b:65:f3:95:25:16:8c:c2:9e:dd:69:3e:cd:5a:01:
2a:64:69:fe:9b:9d:e8:03:78:03:6a:7f:27:17:ee:ee:2c:2c:
0a:1d:58:2d:3e:76:c6:3f:c5:f9:a1:4f:bf:dd:da:8e:3a:1b:
cb:6a:94:8a:0c:a7:44:3d:37:52:ba:d5:c2:4f:0d:ef:ee:aa:
0a:36:0f:51:c5:1d:bd:fe:79:d3:db:6a:c4:21:5c:7c:ef:4b:
c6:fc:1d:9b:41:ed:4d:1a:17:18:73:fc:e9:c2:09:82:81:4f:
f6:a6:e5:8d:72:41:0d:7d:70:0c:1f:c6:6a:aa:cf:db:54:bd:
ed:fe:5d:6f:8e:06:9b:6b:74:68:97:9f:35:41:ae:02:85:e8:
b4:7d:66:5b:55:15:24:0e:5b:1d:08:20:1d:cc:57:09:59:94:
ac:29:96:47:24:df:6a:7b:3f:2f:2c:4b:07:49:43:8b:2d:b6:
ed:a8:c1:62:f9:fc:58:85:2f:d5:64:10:5e:6d:c9:e3:53:8d:
44:ea:b7:fe:95:e8:56:a9:04:18:d0:41:14:19:43:96:e0:79:
17:ba:be:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 07:11:28 2024 by rpki-client on console-fra.rpki-client.org