Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/2x8ErJ2LTZa7GSWqXs27_tiAvp4.roa
File: 2x8ErJ2LTZa7GSWqXs27_tiAvp4.roa (raw, json)
Hash identifier: FkE8Q1cBNHAvYO64FW6+y4894NUGvGPUq4RVBscMVcw=
Subject key identifier: DB:1F:04:AC:9D:8B:4D:96:BB:19:25:AA:5E:CD:BB:FE:D8:80:BE:9E
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018CC80306DE5612D2F0EE8F854CD546CA89
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/2x8ErJ2LTZa7GSWqXs27_tiAvp4.roa
Signing time: Tue 02 Jan 2024 02:31:30 +0000
ROA not before: Tue 02 Jan 2024 02:31:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208822
IP address blocks: 194.68.172.0/24 maxlen: 24
194.103.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 22:35:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:03:06:de:56:12:d2:f0:ee:8f:85:4c:d5:46:ca:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 02:31:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db1f04ac9d8b4d96bb1925aa5ecdbbfed880be9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:75:f6:70:b9:85:5a:d6:4e:1d:8c:57:e0:f1:
bb:30:24:81:9b:f9:32:07:61:68:5e:17:5e:09:4c:
cd:d6:42:d0:a0:bb:56:a2:87:1a:70:25:06:c6:ba:
8d:f2:b5:28:02:e2:3a:1c:d1:38:7a:05:a7:65:b0:
54:e9:34:f5:5f:06:c0:cd:21:73:43:53:f8:76:3a:
f5:33:ac:b9:74:8f:30:96:3e:c6:38:1f:f4:7b:66:
ce:1f:e3:ba:60:e7:2b:53:53:3f:18:10:4d:af:b2:
fb:d4:f4:39:d8:df:4c:55:17:03:b0:27:51:fc:7d:
bd:57:0c:51:43:e0:c1:a7:3f:41:16:56:6c:e7:de:
ee:74:5c:51:c0:81:53:43:c7:5a:cd:a8:b6:13:57:
57:dd:81:3b:7e:a3:b0:0e:77:e0:2f:b9:3a:f0:35:
00:d5:86:a0:a3:cc:01:e5:e2:a0:0e:ba:75:25:04:
89:7e:8c:c6:53:eb:de:c5:78:d6:e1:58:39:f1:fd:
80:4e:a4:af:3d:6e:fc:3f:20:45:a4:5e:9f:aa:9c:
66:63:42:e1:35:6f:3e:fe:78:69:bf:f1:f3:cd:ad:
27:a4:7a:06:e3:77:24:1b:e9:2a:6e:a3:bd:10:7a:
9f:27:51:85:17:93:cb:b8:58:f0:51:74:8e:34:ca:
20:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:1F:04:AC:9D:8B:4D:96:BB:19:25:AA:5E:CD:BB:FE:D8:80:BE:9E
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/2x8ErJ2LTZa7GSWqXs27_tiAvp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.68.172.0/24
194.103.196.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:84:e4:97:12:f7:8a:a9:01:36:14:aa:a7:2a:28:70:15:6a:
c3:60:61:c9:88:14:d2:36:67:f8:8b:12:d8:7b:e7:6e:ff:a7:
94:a7:d5:4b:c8:0e:01:89:d8:19:06:d6:ca:9c:c3:fc:44:ce:
f3:80:5a:4f:2b:a9:c9:61:fa:f3:83:0e:0a:1c:8b:cd:ed:c1:
ab:04:ed:50:51:19:e1:10:0a:a1:d9:f4:cc:80:ff:c9:86:ed:
59:46:06:8f:84:8b:7d:03:22:5b:d9:99:4e:26:58:bf:13:1b:
cc:b7:5e:52:e1:40:ed:a2:4e:f7:8a:8b:10:27:4f:59:5d:3e:
78:af:da:da:2c:1d:2d:e2:13:30:ac:09:2b:df:c8:1c:8e:50:
43:14:c4:62:da:fb:42:b0:42:e8:1e:ae:59:a6:7b:35:6d:26:
ec:ad:79:d5:3d:db:3a:69:f9:a4:0f:4f:f0:73:8a:7a:78:34:
1c:3b:ad:7e:59:bc:ee:52:f4:1d:98:ad:6b:04:81:6a:71:d6:
7d:00:28:66:1c:34:fb:6d:e4:ad:cb:21:cb:bb:13:c6:31:81:
46:5c:73:4e:4a:8e:15:e0:59:61:c5:12:3f:53:1c:6b:db:d2:
b7:6c:db:67:b9:51:45:77:33:7d:76:22:3b:4e:0f:0d:25:94:
6a:df:d3:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 01:56:11 2024 by rpki-client on console-fra.rpki-client.org