Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/RKSmI2hjHkWeHzEasF5cmK3fQg8.roa
File: RKSmI2hjHkWeHzEasF5cmK3fQg8.roa (raw, json)
Hash identifier: VPCpAno6Jmm/pkx/r02iRxewjiPTWTho2yfymA6yFVc=
Subject key identifier: 44:A4:A6:23:68:63:1E:45:9E:1F:31:1A:B0:5E:5C:98:AD:DF:42:0F
Certificate issuer: /CN=8e626c909eb4951154bcee8221e43951b4257624
Certificate serial: 018CC9BC3D3A350B79859D9F550F5F9A5E62
Authority key identifier: 8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/RKSmI2hjHkWeHzEasF5cmK3fQg8.roa
Signing time: Tue 02 Jan 2024 10:33:25 +0000
ROA not before: Tue 02 Jan 2024 10:33:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211043
IP address blocks: 46.244.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/jmJskJ60lRFUvO6CIeQ5UbQldiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/jmJskJ60lRFUvO6CIeQ5UbQldiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 16:02:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:3d:3a:35:0b:79:85:9d:9f:55:0f:5f:9a:5e:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e626c909eb4951154bcee8221e43951b4257624
Validity
Not Before: Jan 2 10:33:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44a4a62368631e459e1f311ab05e5c98addf420f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:85:39:81:b5:1a:90:8a:b5:ab:ac:4d:d2:51:
a2:e5:32:47:62:d3:30:00:3c:cb:13:38:a2:62:1c:
60:2d:f5:2b:ba:83:21:35:c9:36:64:41:b7:61:f7:
a7:56:cd:57:f9:9a:75:6d:eb:99:24:4b:5c:43:f1:
92:3d:65:7c:aa:60:97:ef:d9:c5:a7:7d:c5:6d:d4:
f9:78:0e:ab:1f:93:2a:e6:40:52:04:60:90:0f:93:
d0:05:fa:07:02:bd:61:6b:cb:70:8c:b4:c4:a7:f4:
00:e8:17:c9:82:4e:5e:7a:1f:c7:ad:60:4c:ff:d1:
56:1f:b6:e5:b0:b1:cd:c6:4c:49:d9:b2:5c:34:e2:
83:68:62:01:90:12:fd:f4:40:4e:14:ca:16:45:b4:
41:56:2c:03:25:f2:7a:1c:3f:ec:67:39:fe:78:20:
03:d2:2e:0e:7c:2a:1d:59:0f:7b:6e:b2:ee:7e:63:
84:fc:90:e2:e7:92:7c:e6:c7:48:b9:f5:43:68:16:
3e:49:3d:5b:f3:a7:c3:76:85:4d:87:dd:a3:74:10:
a1:86:9d:64:2e:61:3f:c3:b0:18:d6:bd:1e:5c:73:
bc:62:7c:0b:01:58:c3:21:68:3d:69:58:c5:04:51:
7c:a6:89:aa:4d:ac:43:99:2e:fc:1f:eb:f0:8d:34:
05:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:A4:A6:23:68:63:1E:45:9E:1F:31:1A:B0:5E:5C:98:AD:DF:42:0F
X509v3 Authority Key Identifier:
keyid:8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/RKSmI2hjHkWeHzEasF5cmK3fQg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/jmJskJ60lRFUvO6CIeQ5UbQldiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.244.99.0/24
Signature Algorithm: sha256WithRSAEncryption
92:14:b2:7f:24:64:31:f3:2b:69:a0:a6:65:c4:c4:82:f8:35:
d4:f4:e6:0d:f3:2a:41:e7:0e:77:c7:b1:08:d0:43:bb:c4:a1:
6b:dc:f5:07:3e:f1:64:8e:af:34:e8:16:42:fe:29:03:2e:f0:
ec:f2:fb:53:da:13:8c:fe:0e:af:aa:2a:e5:7a:79:82:18:ff:
19:0b:b1:1b:ff:f3:80:a8:13:65:f2:9d:3c:98:32:d4:a6:40:
00:79:80:e4:79:bf:ec:6e:38:7f:d8:68:59:46:48:3c:9b:d8:
39:31:e6:2c:49:9e:f6:4c:3d:78:9f:60:33:87:e7:1e:b9:4c:
3e:70:d6:37:b2:50:53:71:a2:05:d8:44:b4:49:be:0e:39:dc:
3c:4f:67:90:e1:59:8f:62:32:2d:c8:54:14:9a:eb:b5:84:e5:
38:a5:a7:01:14:1c:66:9e:81:07:9c:36:ba:02:75:97:da:9b:
44:91:bc:b1:fb:b3:8d:ca:ee:f3:9b:b1:24:f3:d9:f5:dc:11:
50:36:c9:ea:e7:72:ea:9c:c3:e3:04:20:10:be:7c:fe:e5:b1:
39:5d:32:e3:34:81:1b:39:44:fd:22:27:5a:7c:3b:60:de:d0:
a2:14:07:0d:7c:db:ff:68:35:ea:63:20:25:1b:3b:e6:41:00:
aa:2a:4f:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 19:10:02 2024 by rpki-client on console-ams.rpki-client.org