Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/zUIsfSA3l_N0FmxeasoyYdSuuUA.roa
File: zUIsfSA3l_N0FmxeasoyYdSuuUA.roa (raw, json)
Hash identifier: jl7snd80Gy6jgh8RIdAdW1avk0sccbnh5WnYBamAv7U=
Subject key identifier: CD:42:2C:7D:20:37:97:F3:74:16:6C:5E:6A:CA:32:61:D4:AE:B9:40
Certificate issuer: /CN=3027a631bb6738eb68bb6ea6c424ef4a7d14c3cb
Certificate serial: 018CC26D01A294618737D8A74B581BA70AD0
Authority key identifier: 30:27:A6:31:BB:67:38:EB:68:BB:6E:A6:C4:24:EF:4A:7D:14:C3:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCemMbtnOOtou26mxCTvSn0Uw8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/zUIsfSA3l_N0FmxeasoyYdSuuUA.roa
Signing time: Mon 01 Jan 2024 00:29:32 +0000
ROA not before: Mon 01 Jan 2024 00:29:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48663
IP address blocks: 188.246.192.0/23 maxlen: 23
193.108.199.0/26 maxlen: 26
2a03:9800:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/MCemMbtnOOtou26mxCTvSn0Uw8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/MCemMbtnOOtou26mxCTvSn0Uw8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/MCemMbtnOOtou26mxCTvSn0Uw8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:01:a2:94:61:87:37:d8:a7:4b:58:1b:a7:0a:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3027a631bb6738eb68bb6ea6c424ef4a7d14c3cb
Validity
Not Before: Jan 1 00:29:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd422c7d203797f374166c5e6aca3261d4aeb940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:75:1d:cf:5d:9c:c8:aa:d8:5f:16:0d:28:6a:
76:d2:c0:1d:b8:8b:0b:4f:b5:b6:ab:0f:b6:c9:71:
9e:d2:6a:77:5f:16:af:cf:41:be:a8:35:14:4f:39:
d9:46:60:8f:a8:46:db:3f:5d:c0:bb:83:9d:cd:c3:
42:d3:33:e1:f6:ce:23:bc:d2:29:75:fa:57:4c:eb:
b9:2f:a4:a2:39:0f:b2:7f:1a:a4:f4:c7:ba:42:c1:
21:19:03:7d:9f:1e:3c:df:94:10:96:66:8d:5b:f8:
24:33:22:66:da:a6:41:d4:ab:07:1b:34:37:94:c8:
73:f7:d3:10:0a:06:76:ae:3c:6f:b7:89:ba:b8:8d:
01:88:72:a5:f9:a6:31:81:a8:e0:11:1b:ce:56:e8:
18:60:7b:14:81:e5:da:44:19:0e:bc:91:07:11:9d:
b3:c7:d7:8c:b7:9b:da:18:8a:f7:71:61:f9:c5:6e:
74:f3:6a:eb:a3:cf:00:da:3c:7b:a9:dd:9c:2d:a1:
8e:0a:55:7e:5b:67:be:11:f2:b3:a1:17:66:5d:fb:
7f:88:a1:17:d8:14:60:82:d3:dc:8b:77:35:e7:ce:
2a:4d:fa:b9:cd:19:41:fc:79:83:d3:45:52:18:a8:
eb:99:43:f2:78:f0:87:eb:03:b5:1a:30:90:01:51:
c0:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:42:2C:7D:20:37:97:F3:74:16:6C:5E:6A:CA:32:61:D4:AE:B9:40
X509v3 Authority Key Identifier:
keyid:30:27:A6:31:BB:67:38:EB:68:BB:6E:A6:C4:24:EF:4A:7D:14:C3:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCemMbtnOOtou26mxCTvSn0Uw8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/zUIsfSA3l_N0FmxeasoyYdSuuUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/MCemMbtnOOtou26mxCTvSn0Uw8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.246.192.0/23
193.108.199.0/26
IPv6:
2a03:9800:1::/48
Signature Algorithm: sha256WithRSAEncryption
97:82:81:ef:cd:97:14:c2:18:56:a6:c7:2b:88:19:a7:35:83:
cd:fb:1a:14:21:fc:53:96:09:92:5e:a8:f8:f9:1e:80:3d:35:
a1:e6:c6:21:59:04:0a:ec:dc:24:c5:8c:27:35:08:53:ff:2c:
24:d7:48:3e:5b:f0:63:5b:4a:e8:3d:9e:bd:33:21:bc:40:5e:
45:2c:f6:47:75:bd:e6:e7:13:19:58:d9:bc:00:3a:39:a2:9b:
00:c5:fe:8e:c2:78:16:20:b1:d1:52:4d:b9:ca:9e:a6:ba:30:
8c:70:63:87:b1:3a:fb:62:81:ed:56:61:41:47:6a:75:83:6e:
58:e6:38:9e:4e:8b:87:32:b4:e1:0c:e5:73:56:d4:32:91:26:
5e:11:6b:d4:67:5d:38:34:62:99:bb:de:2c:bc:58:cd:7c:43:
be:de:79:88:fb:b3:a4:79:fb:df:04:4f:ab:e7:95:f9:0e:b7:
40:5c:c8:e5:6d:85:d3:69:ce:fb:ac:ce:65:7a:e0:d3:b4:8e:
7b:f8:e2:88:3e:aa:ff:2a:11:75:a1:32:a3:2a:c7:3a:ae:06:
73:5e:f0:74:99:23:2f:12:7b:d6:df:29:31:b7:11:52:af:25:
6e:b9:f4:f8:8f:d8:45:7f:ff:fb:06:21:40:ea:28:09:fd:0c:
af:c0:af:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 04:59:49 2024 by rpki-client on console-fra.rpki-client.org