Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/RLS1isuDZ2Q_9Zi0ARaB9g2UU6I.roa
File: RLS1isuDZ2Q_9Zi0ARaB9g2UU6I.roa (raw, json)
Hash identifier: A3M1t1uzu6sHac9OcyNLH04j9BWOPBs5Oi4krCAyW5k=
Subject key identifier: 44:B4:B5:8A:CB:83:67:64:3F:F5:98:B4:01:16:81:F6:0D:94:53:A2
Certificate issuer: /CN=a85310f503137ae8b35d4f329f46f069dd703815
Certificate serial: 0190070CC022BB7BB13E1A18786DD930EF75
Authority key identifier: A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/RLS1isuDZ2Q_9Zi0ARaB9g2UU6I.roa
Signing time: Tue 11 Jun 2024 11:26:34 +0000
ROA not before: Tue 11 Jun 2024 11:26:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41327
IP address blocks: 193.42.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 11:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:07:0c:c0:22:bb:7b:b1:3e:1a:18:78:6d:d9:30:ef:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85310f503137ae8b35d4f329f46f069dd703815
Validity
Not Before: Jun 11 11:26:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44b4b58acb8367643ff598b4011681f60d9453a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:19:6a:00:ee:05:d7:74:1f:9a:a8:5e:02:57:
fc:c3:9c:4d:8f:b9:15:20:88:21:ca:50:79:06:72:
f3:8c:f0:1f:3c:69:24:cf:3e:37:66:14:b9:6f:22:
08:ed:8b:d6:75:b0:cc:e4:af:50:d6:34:94:ac:81:
74:0b:af:43:97:70:58:23:5e:d7:7c:10:11:50:de:
23:4c:e2:7f:5c:ea:c1:82:61:ea:cd:69:32:4d:e0:
3c:a8:ac:a0:59:8a:9a:04:51:d3:00:29:6d:95:5d:
6c:47:d9:3c:2c:d1:f2:08:48:4b:48:d1:9e:ac:be:
2f:2e:6e:eb:be:01:b1:2b:a3:1f:48:1f:ab:ed:76:
72:9b:01:e6:af:06:86:66:2c:9d:b7:c8:26:ca:da:
2d:23:65:cf:16:97:37:0d:c7:a2:0a:9e:76:71:9b:
2d:c2:5c:7c:0d:ac:56:a8:98:3d:92:ee:db:13:c1:
82:68:de:01:f8:b9:30:8d:ca:be:45:23:7c:49:70:
04:1d:33:cd:15:f3:d7:a0:d3:b1:e8:80:6b:b2:af:
ba:26:66:1a:d9:71:63:e9:2c:8d:b8:35:16:73:c9:
cf:ac:4a:d9:1d:77:62:b9:e7:85:31:6f:c7:34:7d:
f3:f2:4b:bd:6e:86:2b:43:48:33:11:cf:7a:e0:5c:
f3:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B4:B5:8A:CB:83:67:64:3F:F5:98:B4:01:16:81:F6:0D:94:53:A2
X509v3 Authority Key Identifier:
keyid:A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/RLS1isuDZ2Q_9Zi0ARaB9g2UU6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.217.0/24
Signature Algorithm: sha256WithRSAEncryption
10:16:ac:a2:24:63:1f:0f:7b:29:d4:2c:1c:1e:12:79:be:49:
04:48:7a:e0:82:ab:ff:cc:ae:27:67:dc:3c:9f:15:71:4a:55:
15:44:e4:61:3d:4d:3a:08:ad:d5:c5:5e:7e:01:49:42:6e:50:
55:89:ed:db:7c:55:41:02:d9:98:48:70:71:53:d8:96:0c:dd:
cb:12:a3:c9:ad:d0:62:5b:f3:23:71:52:08:e2:f2:67:7d:cd:
7f:4d:0d:30:58:fa:bd:1c:33:75:66:88:af:40:cb:36:77:22:
35:be:ed:3f:31:1a:3d:e2:80:4a:30:3f:ac:31:a9:1d:e1:38:
1c:3f:b9:cd:71:4c:4c:4c:8e:27:27:e8:f3:91:b7:e3:09:ca:
73:45:e0:fd:23:b9:22:ef:31:e4:fb:06:5a:40:2b:14:41:2f:
3c:21:7a:50:91:af:4a:66:d3:65:35:75:7a:2a:9a:b2:fe:27:
f0:e9:3f:7b:01:b2:38:b6:38:f0:2c:58:04:a8:04:0d:b4:bd:
9b:f7:d5:6c:a7:16:f7:82:ca:45:a9:e2:cd:58:ce:8e:8f:cf:
95:95:5d:6f:2c:ab:1a:b3:bd:24:92:39:c0:77:ee:f9:f4:1d:
a7:97:5c:59:5a:04:7d:6b:77:ef:7d:a8:4c:17:9c:49:d5:bf:
20:a5:ee:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 19:00:04 2024 by rpki-client on console-ams.rpki-client.org