Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/OxTDOKryOfHQZKGJrLmqEnfx5lA.roa
File: OxTDOKryOfHQZKGJrLmqEnfx5lA.roa (raw, json)
Hash identifier: n0YDeNz4ETosL3Wv1CzkHaTAyDmZ1WZIUPBMwEGWWJI=
Subject key identifier: 3B:14:C3:38:AA:F2:39:F1:D0:64:A1:89:AC:B9:AA:12:77:F1:E6:50
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018CC6B8D9A8F80A91E27C43D108D75892D1
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/OxTDOKryOfHQZKGJrLmqEnfx5lA.roa
Signing time: Mon 01 Jan 2024 20:30:52 +0000
ROA not before: Mon 01 Jan 2024 20:30:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61190
IP address blocks: 185.0.30.0/24 maxlen: 24
2001:7f8:11c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:d9:a8:f8:0a:91:e2:7c:43:d1:08:d7:58:92:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 20:30:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3b14c338aaf239f1d064a189acb9aa1277f1e650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f9:f2:40:67:35:92:6a:bf:72:f8:52:6b:fc:
ff:cb:6f:2f:b7:8e:6b:a7:c0:9a:bd:a1:ae:84:ef:
90:29:e3:da:61:3a:08:4b:76:27:f4:24:f8:c5:47:
d6:c4:af:aa:ec:f2:28:0e:61:c0:0a:62:46:f5:ea:
af:82:fd:34:12:0e:bb:8e:39:a0:4f:13:58:23:c2:
f0:67:e1:66:2a:ef:df:c0:8a:44:bc:09:ff:d3:1b:
34:75:92:d2:58:86:36:23:11:1c:4b:21:d2:ad:d3:
0d:17:76:5a:00:6e:45:a0:e0:c8:cf:4a:cf:67:3c:
61:54:37:a1:a1:27:08:c7:e8:f2:f4:18:a3:b9:e3:
50:db:47:23:1f:44:c6:60:4c:5e:90:b7:a0:43:cb:
0f:3c:2c:0a:c7:fd:d4:c0:25:88:25:74:f6:57:e8:
a7:6b:19:80:51:d8:d0:c3:43:e5:0a:98:88:99:08:
23:52:2c:f6:d5:9b:38:b2:8b:52:bb:0a:54:3d:40:
5d:1e:9d:85:90:ab:57:03:0b:78:6f:12:45:75:b0:
ec:bd:cf:71:e0:51:53:de:ec:0c:65:0c:d0:f8:ff:
e9:f8:d4:28:3e:e0:0c:a4:0c:4b:79:ec:6f:75:ae:
f3:aa:91:e3:4b:84:6f:f1:29:52:4e:a0:2f:e8:37:
5e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:14:C3:38:AA:F2:39:F1:D0:64:A1:89:AC:B9:AA:12:77:F1:E6:50
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/OxTDOKryOfHQZKGJrLmqEnfx5lA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.0.30.0/24
IPv6:
2001:7f8:11c::/48
Signature Algorithm: sha256WithRSAEncryption
ce:c3:a4:eb:76:37:9b:aa:bf:f5:a1:9f:a0:07:f1:a2:17:97:
27:b5:bf:61:5c:3b:22:fa:7b:86:94:4e:a8:5f:8b:c7:ac:31:
0d:7b:e6:17:b6:27:7d:9b:7b:ff:05:11:c8:ac:21:f9:7c:70:
2d:00:c8:c3:0b:6e:59:ea:6c:1a:e5:d0:3a:08:16:7c:fb:a8:
8b:9b:22:16:cf:1c:e4:52:c0:58:12:17:b4:74:4b:65:fe:61:
44:54:3f:e4:28:91:cf:33:27:5f:69:c3:44:28:e1:64:fe:3b:
26:22:f8:ef:73:3e:41:ea:95:82:65:82:81:ab:09:11:09:7d:
40:f2:6e:e2:d1:ff:ee:66:45:d2:b4:1a:72:4a:d6:15:7f:15:
e8:60:c6:35:52:34:db:b5:24:23:5c:64:97:e4:df:0a:c0:3c:
c0:2c:0a:66:d4:88:fd:5d:7e:31:30:12:67:41:84:9a:ce:23:
bf:5c:94:73:16:66:bd:e7:e5:0f:8f:90:9c:90:d8:af:81:af:
22:e1:c3:d9:93:d8:36:4c:0d:60:a0:29:40:03:70:58:78:8a:
48:ca:92:fa:a2:8f:2d:68:96:4d:f8:2f:4e:ba:12:ca:7f:4b:
43:74:c7:ec:04:5c:05:09:04:7f:04:b6:65:5b:f4:cf:01:fb:
d1:5a:c4:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 04:45:39 2024 by rpki-client on console-ams.rpki-client.org