Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/IrR9aKzmb0v3MHFOG0VGjorEu24.roa
File: IrR9aKzmb0v3MHFOG0VGjorEu24.roa (raw, json)
Hash identifier: Nr57rhtqvgt1+bPBDhAYR82+5XNNqbzFaNbB4FEDRTY=
Subject key identifier: 22:B4:7D:68:AC:E6:6F:4B:F7:30:71:4E:1B:45:46:8E:8A:C4:BB:6E
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 0191744A7613514E3C6B19F8C68288DF2604
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/IrR9aKzmb0v3MHFOG0VGjorEu24.roa
Signing time: Wed 21 Aug 2024 09:35:22 +0000
ROA not before: Wed 21 Aug 2024 09:35:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 80.93.192.0/24 maxlen: 24
80.93.206.0/24 maxlen: 24
80.93.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 16:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:74:4a:76:13:51:4e:3c:6b:19:f8:c6:82:88:df:26:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Aug 21 09:35:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22b47d68ace66f4bf730714e1b45468e8ac4bb6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c0:63:76:2d:c6:f5:f6:37:30:24:1b:53:59:
0e:5d:ff:36:0e:8b:92:49:83:58:2d:46:1d:2a:e0:
5c:16:5a:6e:f8:46:f5:4c:05:2a:8b:98:a5:87:5e:
d3:63:0d:10:fa:c3:62:2a:9b:e5:8d:34:3d:d0:9c:
02:54:c8:55:0b:b7:1f:3c:7e:c8:2f:41:70:ca:02:
57:fd:a5:db:bb:46:44:1a:e3:12:8a:91:58:bc:70:
df:2c:94:79:a9:60:c9:89:29:f3:9b:2a:0a:20:6f:
9e:c2:db:97:17:39:b2:ee:b0:a9:a7:fc:79:04:08:
73:3d:66:b5:1b:b8:49:32:dd:45:49:9b:7d:ec:6f:
be:98:41:fe:19:ce:72:60:48:46:c2:fa:65:07:8f:
bb:b5:ca:e9:f0:40:e6:8f:e1:85:bf:53:e5:3c:fc:
c0:73:fe:f7:c4:a9:f7:83:1a:73:e3:4e:61:3f:55:
4b:56:2c:08:ab:51:52:11:3c:2f:e1:a7:90:fa:26:
19:de:a5:3d:db:02:c0:92:ae:de:6f:7c:73:0e:84:
3a:e7:50:43:a6:05:a7:db:6f:43:f1:a9:1d:a1:5b:
f4:14:f6:97:3a:01:86:de:f5:d5:7c:dd:90:1a:77:
30:97:16:bb:13:b1:2a:87:3e:d7:93:b1:31:ee:2e:
1d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:B4:7D:68:AC:E6:6F:4B:F7:30:71:4E:1B:45:46:8E:8A:C4:BB:6E
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/IrR9aKzmb0v3MHFOG0VGjorEu24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.93.192.0/24
80.93.206.0/23
Signature Algorithm: sha256WithRSAEncryption
81:16:a4:e3:9a:92:c7:38:46:20:62:c7:f1:04:36:a4:0b:31:
f8:29:0f:45:a5:e3:4a:a9:3b:b9:33:a4:7c:33:c4:5f:e3:14:
0d:93:b4:6f:26:08:89:5a:b2:34:45:ad:28:1f:4b:d3:1f:fe:
a2:2e:5b:1a:98:a2:2a:82:0a:bd:7b:9e:d0:a7:e5:c2:87:87:
17:c0:01:05:dd:0f:4e:c8:af:26:d3:b1:a9:eb:bc:57:1a:f7:
8a:7f:2a:a5:e3:3b:ec:c8:ea:8d:6c:bd:5a:16:de:45:cf:34:
7b:eb:20:2d:99:3e:7c:a9:93:85:d5:07:7c:b8:19:8d:cb:47:
f0:97:6f:9b:8f:2e:40:21:be:92:8a:b2:87:61:d0:d7:50:ec:
9f:53:16:4b:06:d0:7b:f9:84:06:6c:0c:7e:c9:fb:e3:b9:69:
1a:89:e7:63:a0:33:a1:54:aa:71:82:cb:b1:a9:c4:f1:74:6c:
01:1f:fa:49:b6:8f:18:fd:59:5b:82:ae:84:9f:1f:56:9b:50:
c0:93:40:2d:05:42:96:cd:a6:f7:80:ec:5e:ac:ab:e7:21:de:
3f:f1:53:aa:ca:e6:35:e3:61:94:72:d1:2f:81:4d:67:db:44:
cf:94:60:0b:c4:9e:9c:0a:e9:47:c9:cc:f5:0c:da:8b:c8:af:
74:14:ba:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 29 00:31:22 2024 by rpki-client on console-fra.rpki-client.org