Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/esVnkw7eFcHn__c16jeO3eGmZg4.roa
File: esVnkw7eFcHn__c16jeO3eGmZg4.roa (raw, json)
Hash identifier: 08e/mOdq4B+eHH6VbZN9natDa4MeA3Djq+mTQB+mnjA=
Subject key identifier: 7A:C5:67:93:0E:DE:15:C1:E7:FF:F7:35:EA:37:8E:DD:E1:A6:66:0E
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018CC80305D2F3FFB631A4CFFD28ADC146C2
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/esVnkw7eFcHn__c16jeO3eGmZg4.roa
Signing time: Tue 02 Jan 2024 02:31:30 +0000
ROA not before: Tue 02 Jan 2024 02:31:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208639
IP address blocks: 193.180.56.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Jun 2024 14:36:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:03:05:d2:f3:ff:b6:31:a4:cf:fd:28:ad:c1:46:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 02:31:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ac567930ede15c1e7fff735ea378edde1a6660e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:81:f2:e1:dd:e5:e0:72:03:14:a9:d4:88:ce:
33:ee:5c:fc:e9:29:fb:39:4e:2e:a0:73:9c:78:0c:
b0:44:44:20:cf:28:9e:cb:d8:ec:6f:a3:f7:d5:bc:
db:97:25:a4:96:54:c7:d4:1e:07:35:d4:4f:ca:14:
19:da:a5:c5:fa:8e:20:b7:36:64:ad:73:fe:f4:ee:
a9:01:67:7b:c5:2a:d4:bc:ed:86:58:7f:b3:e5:8e:
dd:f2:21:37:af:57:a6:2f:61:e4:2e:45:3c:2e:69:
9e:44:10:57:fa:12:76:b9:9f:ba:f6:d9:96:a3:d4:
13:76:d4:05:c5:3d:eb:f3:d3:a3:8a:03:51:ff:70:
2b:1a:38:15:ee:5a:58:e6:66:6e:4b:97:03:a5:a0:
93:ee:81:cd:42:45:3e:59:5e:43:fb:c9:68:18:70:
0c:92:0c:37:33:9c:73:f7:78:0e:75:56:55:47:ac:
94:9e:fe:e3:1f:41:95:ef:b0:0b:19:46:f3:3f:07:
84:5a:1a:5a:30:22:28:84:f6:4b:f0:6f:df:c2:94:
00:3b:e0:34:9d:c3:45:80:3c:30:8f:2a:c8:74:8e:
01:ac:b0:ae:fb:6d:09:67:9b:8a:a3:07:8c:57:ca:
78:3d:88:98:f2:b1:28:b8:26:05:cf:98:8b:0a:6c:
7f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:C5:67:93:0E:DE:15:C1:E7:FF:F7:35:EA:37:8E:DD:E1:A6:66:0E
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/esVnkw7eFcHn__c16jeO3eGmZg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.180.56.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:fc:0e:fc:a0:10:25:db:8e:36:70:3a:79:ac:a6:5e:c0:fd:
73:a4:0e:c7:06:83:30:3b:c0:c9:dc:b2:42:65:04:63:cc:e5:
3e:bb:63:56:80:12:e8:7d:24:77:5a:e8:b6:48:5c:12:29:71:
12:c2:6b:9c:a4:15:cf:df:97:99:50:2c:06:36:31:e9:a6:00:
a8:53:3b:59:f3:03:08:74:3b:ce:27:f4:7d:de:3b:d3:a4:0f:
d1:aa:6d:42:78:cf:1b:e3:fb:d8:f0:30:dd:76:f7:38:16:d7:
12:1e:14:56:00:48:6c:5d:bf:69:9c:11:ad:4a:99:98:f4:0b:
97:a6:6a:85:0e:3e:c6:d2:97:64:ef:50:20:05:9f:a1:1b:21:
84:ed:e7:05:9e:e8:35:1f:a3:30:2e:f6:5c:a3:64:94:e5:fb:
36:08:dc:e2:29:f6:d3:43:bf:f1:03:3b:e5:a2:b4:bb:5f:94:
3a:31:90:6c:4f:44:5b:90:2f:7f:42:f6:02:22:e8:2e:17:b8:
c7:b3:df:3c:b2:e4:26:da:cc:ea:95:e3:45:b2:97:23:77:bb:
b9:d8:b6:9b:51:89:aa:93:fb:ab:96:fc:c2:ab:0b:a4:4b:34:
37:5e:fe:37:75:6b:25:a5:75:df:d3:cd:ec:9d:45:a7:dd:87:
18:a8:0c:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 20:52:16 2024 by rpki-client on console-fra.rpki-client.org