Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/LFvuCS1TGpFTbHzBxyKB-ALYFWU.roa
File: LFvuCS1TGpFTbHzBxyKB-ALYFWU.roa (raw, json)
Hash identifier: W9JEp1BAfkWx29T/wQIQUBQi2J+7HWHTfPyyQe8Xv3E=
Subject key identifier: 2C:5B:EE:09:2D:53:1A:91:53:6C:7C:C1:C7:22:81:F8:02:D8:15:65
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 018CC5004032DF5010AB3353CA0A43D2D26E
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/LFvuCS1TGpFTbHzBxyKB-ALYFWU.roa
Signing time: Mon 01 Jan 2024 12:29:37 +0000
ROA not before: Mon 01 Jan 2024 12:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200019
IP address blocks: 194.110.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 14 May 2024 20:27:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:40:32:df:50:10:ab:33:53:ca:0a:43:d2:d2:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Jan 1 12:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2c5bee092d531a91536c7cc1c72281f802d81565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5b:5a:80:5e:e0:20:a3:2f:89:79:81:53:b4:
c8:12:99:ca:24:34:77:a1:5b:9f:4d:c2:77:cc:74:
e2:bb:af:fb:79:db:b5:e8:8d:67:89:a1:57:28:89:
03:59:42:09:d8:2f:04:a5:21:18:6e:62:62:79:23:
cc:d5:b3:80:46:7b:ce:7d:04:0c:55:b0:af:c2:aa:
61:6c:79:6d:5e:e8:b2:e8:4e:37:e2:cd:9b:6d:7f:
a8:50:7a:83:2a:bd:a1:7c:24:44:f9:5c:aa:77:a7:
d5:e1:3b:3d:b6:ea:5b:12:da:af:0c:f4:01:69:c0:
26:82:c6:b7:64:c5:27:91:0d:a1:ed:47:e9:b4:2e:
37:7e:cd:45:a9:52:94:cf:ed:24:dd:f0:a8:dd:d0:
79:e8:9e:68:51:60:e4:5f:4f:49:02:6b:05:c8:03:
1b:65:87:34:84:80:f5:71:f6:a0:c5:16:40:62:3a:
bd:77:a3:9b:35:a8:43:d0:e9:0f:cc:a9:e6:ae:5f:
25:07:f2:37:03:26:9c:60:ce:d9:0c:b2:cd:16:3c:
e8:56:cc:c1:99:ad:9b:f1:19:51:04:dc:76:8c:77:
2d:2c:26:d3:42:c0:63:e4:be:c4:22:d7:d8:f5:19:
36:68:c4:ce:2a:8f:f4:13:83:04:2e:d3:ee:75:55:
67:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:5B:EE:09:2D:53:1A:91:53:6C:7C:C1:C7:22:81:F8:02:D8:15:65
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/LFvuCS1TGpFTbHzBxyKB-ALYFWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.247.0/24
Signature Algorithm: sha256WithRSAEncryption
33:46:f2:d8:11:5e:00:74:3d:17:b1:f1:56:98:c7:8c:ea:09:
05:df:1e:7d:8f:86:45:84:45:c5:56:5f:14:2f:9c:34:01:5a:
e1:a2:9d:76:6b:06:94:80:80:5b:bc:16:bd:38:4a:2e:f4:2d:
53:94:ce:9a:d2:65:70:7b:b8:68:5a:e8:3c:2c:fc:f3:10:a5:
c7:16:3f:db:81:68:08:3b:35:81:07:9c:79:8c:59:92:c8:0a:
e1:cd:90:aa:55:dd:ba:51:5d:ce:28:f6:d6:4a:d9:41:2e:5d:
65:b6:86:3e:d5:2f:54:1f:15:72:00:ee:03:6b:14:9f:08:c8:
fe:02:9d:a6:c4:05:cd:f6:73:37:14:88:9d:08:b8:04:6e:a0:
26:c1:f2:8e:23:cf:a5:27:a3:d3:40:d8:86:ac:61:e8:c5:95:
15:d7:e3:1a:ce:4e:c1:74:d6:c9:f3:a0:38:c0:39:6b:cb:e5:
c6:41:89:c6:69:75:07:8e:a1:49:68:60:10:be:7a:b9:3c:65:
e4:a0:e0:68:76:ad:ab:d5:2d:db:4d:43:ca:41:a8:23:63:2c:
de:c8:ff:e5:db:aa:dd:89:35:33:84:20:8c:44:dc:96:4c:3a:
b8:bb:86:99:0b:b4:9c:99:d3:94:d0:44:f1:3f:f7:4a:98:2b:
ec:74:25:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 14 01:11:43 2024 by rpki-client on console-fra.rpki-client.org