Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/Qum9M6jcAGR8jINwo5M3If9YrXY.roa
File: Qum9M6jcAGR8jINwo5M3If9YrXY.roa (raw, json)
Hash identifier: VCZ5oJ3NTyVvDQNSYSSkASj4nkAab0E5rQWAzurFifg=
Subject key identifier: 42:E9:BD:33:A8:DC:00:64:7C:8C:83:70:A3:93:37:21:FF:58:AD:76
Certificate issuer: /CN=429c54be1da7e738e3c96ffb41f1ea3900a67be8
Certificate serial: 018CC80119987C6D746865AEA97584860892
Authority key identifier: 42:9C:54:BE:1D:A7:E7:38:E3:C9:6F:FB:41:F1:EA:39:00:A6:7B:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/Qum9M6jcAGR8jINwo5M3If9YrXY.roa
Signing time: Tue 02 Jan 2024 02:29:24 +0000
ROA not before: Tue 02 Jan 2024 02:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.91.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/QpxUvh2n5zjjyW_7QfHqOQCme-g.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/QpxUvh2n5zjjyW_7QfHqOQCme-g.mft
rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 16:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:19:98:7c:6d:74:68:65:ae:a9:75:84:86:08:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429c54be1da7e738e3c96ffb41f1ea3900a67be8
Validity
Not Before: Jan 2 02:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=42e9bd33a8dc00647c8c8370a3933721ff58ad76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:01:71:2b:5a:de:f2:03:8b:f9:2d:f1:98:4a:
b8:bf:cc:b2:3a:79:57:20:00:b7:62:be:d2:b9:8f:
71:22:db:b2:87:bb:6c:2f:7b:11:89:c9:13:36:d1:
8d:fa:13:aa:c8:8c:7a:25:e5:8a:3b:06:9f:ab:35:
5c:ee:c5:60:79:d7:51:c4:cf:1f:36:ea:04:bd:ba:
72:83:42:87:80:aa:28:67:36:2a:70:80:71:59:57:
b8:f8:fe:3e:8f:7a:ce:65:6b:af:ad:95:2d:1e:af:
ea:49:f2:b2:2c:99:79:df:73:ec:3e:be:d5:21:0a:
de:4e:a3:ad:8c:3f:94:06:d3:0d:8d:84:e1:22:3a:
67:f5:16:9e:9e:7b:c2:2f:81:b1:5d:29:b1:b3:3f:
95:b1:b2:61:c4:c1:1e:5e:69:cd:50:c8:c6:95:ee:
8e:82:a5:1c:ee:43:1b:9d:50:7b:fc:4a:3c:6c:bf:
e5:22:4b:ba:c2:c2:8b:bb:fa:c4:0c:fe:3b:87:ff:
4e:6c:fc:b7:cf:02:9a:78:47:48:0d:d3:95:82:1e:
cf:01:c4:06:d5:1c:22:2e:0d:0e:5a:65:c5:d1:79:
4e:2a:5c:f8:2d:9c:39:32:e6:ac:d1:ee:20:d9:d6:
7c:a1:b2:f9:7c:b8:d3:4b:39:aa:71:42:7c:20:aa:
d5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:E9:BD:33:A8:DC:00:64:7C:8C:83:70:A3:93:37:21:FF:58:AD:76
X509v3 Authority Key Identifier:
keyid:42:9C:54:BE:1D:A7:E7:38:E3:C9:6F:FB:41:F1:EA:39:00:A6:7B:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/Qum9M6jcAGR8jINwo5M3If9YrXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/QpxUvh2n5zjjyW_7QfHqOQCme-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.79.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:f6:9f:8e:b8:6b:ba:7d:53:d7:45:19:7c:6d:a8:c6:01:cd:
f6:7a:85:47:df:4b:69:31:9a:b5:5b:de:0c:81:bd:76:fc:5a:
08:28:ac:8f:c9:55:d5:21:30:50:48:66:92:ce:fd:b4:55:cf:
e0:b1:98:d0:c2:4e:72:7e:3f:53:9f:35:b8:93:85:6e:a5:8e:
3f:33:d1:5b:a2:52:13:84:db:e3:39:e2:44:e8:01:d6:23:9a:
b7:c9:29:36:6e:e6:5f:16:d9:ac:4c:a9:37:6e:b4:95:9b:1c:
a9:88:63:96:20:f5:15:13:9e:0f:91:ca:07:2b:99:3f:73:88:
19:11:16:7a:5a:18:b8:95:eb:0d:d5:e7:5a:8e:90:72:94:45:
0d:08:1b:e8:e9:0d:92:b0:ce:71:ae:5d:6c:ba:46:28:0c:0b:
26:16:b2:42:ad:c7:36:fe:5e:33:01:98:64:b5:cf:51:1b:ef:
6e:3b:ff:81:01:34:e3:80:fb:72:9d:31:d9:17:d6:f1:cd:ca:
6f:47:45:6b:59:a3:75:ce:6f:72:19:35:79:6a:99:b5:81:ae:
8c:99:10:d2:2b:8e:e1:85:e1:3c:70:47:5b:71:69:fc:e7:7c:
38:04:69:c5:78:a2:6c:1a:b2:1d:31:7d:ff:44:11:d3:43:51:
d0:eb:3d:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 21:22:36 2024 by rpki-client on console-ams.rpki-client.org