Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/V56CUzwEbXwdhxKuKq7_aeIW4a8.roa
File: V56CUzwEbXwdhxKuKq7_aeIW4a8.roa (raw, json)
Hash identifier: oMLkjC8v31eoDe4TK9/sZYdgR+R71LK0sgXKkDmUTDc=
Subject key identifier: 57:9E:82:53:3C:04:6D:7C:1D:87:12:AE:2A:AE:FF:69:E2:16:E1:AF
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018DF566759301FB9BE75A9A197825453511
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/V56CUzwEbXwdhxKuKq7_aeIW4a8.roa
Signing time: Thu 29 Feb 2024 15:05:49 +0000
ROA not before: Thu 29 Feb 2024 15:05:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200105
IP address blocks: 87.121.124.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 06:47:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f5:66:75:93:01:fb:9b:e7:5a:9a:19:78:25:45:35:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Feb 29 15:05:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=579e82533c046d7c1d8712ae2aaeff69e216e1af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8c:e8:72:70:e2:af:0d:18:10:e9:93:da:8a:
1d:b4:30:bf:d4:36:a3:a8:b3:6e:49:05:1b:2f:d9:
22:1f:28:5c:82:d8:94:16:65:89:3e:aa:f2:5b:44:
a3:e2:21:dc:ba:ac:c9:47:e6:f2:ef:a4:8c:9e:f0:
9c:2f:dc:c2:dd:5b:3a:9f:3d:ca:61:ab:0e:3a:05:
df:16:e6:f0:89:5b:e8:be:50:8c:21:34:3d:84:44:
36:08:64:ab:75:ef:c4:fc:c5:94:c1:9e:f5:4f:a7:
46:e6:d0:77:d6:d5:9b:6c:49:9d:0b:ec:09:eb:cc:
b0:58:61:43:4a:25:88:67:f2:7d:00:d0:d6:46:ba:
8f:56:92:12:dc:d8:79:43:27:2f:ff:d1:03:6a:21:
2d:08:34:91:5a:00:d2:22:52:bd:68:08:97:8d:f9:
29:8c:4b:79:da:1d:7c:13:3f:b6:85:fb:86:7e:52:
43:0c:2c:c5:dc:6c:0a:4b:50:b7:ad:ed:bc:a2:58:
88:d3:95:28:89:40:ab:b9:00:c3:19:31:25:f3:47:
fc:98:e5:85:cb:14:91:c3:6f:de:b4:a4:1b:b7:14:
77:22:0c:c6:e2:10:ae:fc:06:b3:9f:a9:79:a5:6d:
8d:4d:b7:84:c7:fb:9e:ed:b9:b7:ff:5d:47:1d:ad:
db:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:9E:82:53:3C:04:6D:7C:1D:87:12:AE:2A:AE:FF:69:E2:16:E1:AF
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/V56CUzwEbXwdhxKuKq7_aeIW4a8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.121.124.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:df:63:23:74:59:3c:75:fa:c1:01:84:81:91:70:1c:d2:fd:
d2:6f:f0:7b:12:67:92:25:9d:6c:77:79:20:25:6c:38:fc:86:
ad:d9:0a:ef:59:29:f2:37:4d:04:88:ef:77:98:ea:31:4e:2d:
6d:1d:28:f0:20:6f:98:b0:61:bd:85:aa:a2:3a:6d:59:9e:10:
5d:25:3a:82:4d:ce:72:a0:f9:3a:d0:0f:1e:2f:5b:e7:1d:3a:
42:ee:ed:55:a6:13:c3:aa:62:9f:06:dd:ad:3d:0d:c5:a8:f5:
0c:4b:59:0a:1f:f2:cd:92:39:4d:ef:1c:e3:91:ea:9d:89:25:
50:1d:1e:5e:a6:40:72:73:89:aa:23:e1:77:22:9d:87:82:3d:
b7:6d:cc:db:95:bd:5f:19:5e:c3:ef:12:c4:24:11:45:b6:7b:
6c:d6:7c:a4:0d:6b:74:4e:5a:6b:28:0f:69:71:5a:d4:48:d9:
0b:a1:44:55:d7:5e:e6:21:50:12:67:c8:c8:94:a3:74:70:71:
b3:d2:56:c6:11:ae:f0:8d:aa:dd:11:bf:e9:71:87:d3:4e:d3:
69:f3:61:02:d1:b2:58:84:f1:ac:be:d8:b3:f7:77:1e:30:c3:
32:03:81:c6:a9:54:ac:13:a0:b5:d9:27:40:84:db:44:39:1a:
c6:cb:04:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 15:37:22 2024 by rpki-client on console-ams.rpki-client.org