Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/74cf3b-9f5c-4f5e-96c4-2926d281b514/1/nKFRdFKHdKrcHgMrXWnjKTW47GQ.roa
File: nKFRdFKHdKrcHgMrXWnjKTW47GQ.roa (raw, json)
Hash identifier: e9o2f/UUy+WppCIS2bjxtBejfsTc2krGHi/DdTGwtTQ=
Subject key identifier: 9C:A1:51:74:52:87:74:AA:DC:1E:03:2B:5D:69:E3:29:35:B8:EC:64
Certificate issuer: /CN=653f55629121b60fb19c97f99c75dd6f015dd6e8
Certificate serial: 018CC726DEE9F24A6F97C4D48199F467E0C3
Authority key identifier: 65:3F:55:62:91:21:B6:0F:B1:9C:97:F9:9C:75:DD:6F:01:5D:D6:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZT9VYpEhtg-xnJf5nHXdbwFd1ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/74cf3b-9f5c-4f5e-96c4-2926d281b514/1/nKFRdFKHdKrcHgMrXWnjKTW47GQ.roa
Signing time: Mon 01 Jan 2024 22:31:02 +0000
ROA not before: Mon 01 Jan 2024 22:31:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197832
IP address blocks: 146.101.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/74cf3b-9f5c-4f5e-96c4-2926d281b514/1/ZT9VYpEhtg-xnJf5nHXdbwFd1ug.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/74cf3b-9f5c-4f5e-96c4-2926d281b514/1/ZT9VYpEhtg-xnJf5nHXdbwFd1ug.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZT9VYpEhtg-xnJf5nHXdbwFd1ug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 13:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:de:e9:f2:4a:6f:97:c4:d4:81:99:f4:67:e0:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=653f55629121b60fb19c97f99c75dd6f015dd6e8
Validity
Not Before: Jan 1 22:31:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9ca15174528774aadc1e032b5d69e32935b8ec64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ce:f6:2d:ad:3c:4a:50:ae:28:08:78:d1:3a:
f1:49:04:ed:68:bd:1d:ae:0e:79:e8:2b:de:9c:d4:
72:f4:8a:ef:5b:c6:b3:d2:b7:09:0a:d4:48:01:1e:
50:92:1b:e0:1a:a4:85:12:fe:16:c0:a4:f9:d2:b7:
09:43:ac:0b:e6:7b:a7:d7:55:e2:07:54:19:50:d0:
6f:8a:b7:55:82:67:e3:14:22:a7:4b:14:92:88:72:
25:30:59:f0:e6:b1:42:1a:91:e4:ab:d8:b1:9a:fd:
e1:8a:3c:f2:b4:3e:f2:f0:ce:cd:70:b5:bb:cf:b8:
20:13:72:cb:db:98:2f:ab:54:c0:4f:7f:fe:6f:78:
6f:4c:dc:2c:54:ad:6a:af:10:12:c4:8b:d7:a7:0d:
53:7c:df:8e:85:12:cf:00:82:0b:46:5b:25:80:f3:
a1:91:c1:2d:dc:8a:c3:bb:c0:ae:18:5e:75:46:81:
c7:76:cc:0b:d6:6f:aa:7e:6d:65:20:2d:a3:49:86:
6a:ef:70:12:61:1e:53:b6:f0:f4:aa:f6:a0:c3:0a:
ae:a3:5a:e6:a3:a9:3e:72:49:1f:6b:11:95:a5:76:
cc:bc:7f:c9:b7:cb:95:00:89:c6:b3:f2:89:08:77:
71:d4:8f:49:85:cc:ad:05:e1:0a:a5:ac:31:38:5c:
e6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:A1:51:74:52:87:74:AA:DC:1E:03:2B:5D:69:E3:29:35:B8:EC:64
X509v3 Authority Key Identifier:
keyid:65:3F:55:62:91:21:B6:0F:B1:9C:97:F9:9C:75:DD:6F:01:5D:D6:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZT9VYpEhtg-xnJf5nHXdbwFd1ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/74cf3b-9f5c-4f5e-96c4-2926d281b514/1/nKFRdFKHdKrcHgMrXWnjKTW47GQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/74cf3b-9f5c-4f5e-96c4-2926d281b514/1/ZT9VYpEhtg-xnJf5nHXdbwFd1ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.101.79.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:68:dd:e7:53:60:d8:6b:de:bc:23:11:0a:fe:50:b1:68:f1:
e3:bf:4a:f6:85:0f:52:dc:e2:1c:2a:bc:e2:f0:02:8e:52:d1:
0d:67:de:be:e0:dd:2c:97:0c:f5:00:7d:cf:ba:b1:f9:61:53:
02:b3:9d:46:76:70:90:34:d9:36:d7:da:d3:4b:87:03:fd:47:
cd:5a:1f:ca:c1:dc:9c:38:a2:36:e1:1c:d4:f3:d4:ac:ba:e0:
0b:f6:40:57:42:c5:5c:0c:3c:b2:9e:8d:f7:52:14:f2:04:80:
9b:9f:bb:c2:bf:51:b5:33:4b:4b:9e:54:b5:42:fa:b4:88:29:
14:e8:1d:c6:72:dc:ff:39:81:01:16:da:54:f2:a8:ee:0e:ff:
2e:99:d3:a4:23:4f:86:96:e1:1e:4d:ff:10:6c:8a:12:73:f4:
a7:a8:48:69:a2:3d:4e:46:b2:2f:13:b8:fe:64:5d:4a:cc:38:
86:3b:fa:cf:b4:70:fd:6c:10:85:1a:cf:3e:5b:24:3b:48:ac:
59:e6:b5:f8:cc:51:a8:2a:f5:21:18:a7:48:e0:9c:94:77:e4:
02:95:73:a1:d0:ce:d1:3b:d2:f7:ab:d9:fb:15:23:5e:a9:65:
9d:3d:7c:12:b8:ca:59:34:37:a5:bc:ba:a9:e1:0c:eb:59:00:
cd:1a:52:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 15:26:42 2024 by rpki-client on console-fra.rpki-client.org