Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/sTxGhdcfBGr3LCyHUAtQASTQ58Y.roa
File: sTxGhdcfBGr3LCyHUAtQASTQ58Y.roa (raw, json)
Hash identifier: XsV3rfzcjs+NnpXGnfYMhQDhR0S+031hoSopDW0wgIM=
Subject key identifier: B1:3C:46:85:D7:1F:04:6A:F7:2C:2C:87:50:0B:50:01:24:D0:E7:C6
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018CC8DCD4A8596685DC395650737D459B84
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/sTxGhdcfBGr3LCyHUAtQASTQ58Y.roa
Signing time: Tue 02 Jan 2024 06:29:24 +0000
ROA not before: Tue 02 Jan 2024 06:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22356
IP address blocks: 185.219.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Apr 2024 09:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dc:d4:a8:59:66:85:dc:39:56:50:73:7d:45:9b:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 2 06:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b13c4685d71f046af72c2c87500b500124d0e7c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c7:2d:90:a9:2f:d9:aa:c6:9c:69:64:a4:c4:
2b:3d:14:91:66:4c:69:6b:9d:68:1e:3d:1a:79:fb:
9d:4f:72:60:e8:10:73:80:d9:ec:c9:28:75:c8:6f:
ad:97:c2:9e:93:14:9d:f6:ed:d1:da:78:e7:b0:4b:
b3:ca:92:63:e0:f7:12:76:cf:cd:24:24:90:e9:9a:
3f:13:69:87:df:41:15:01:f8:b4:12:17:09:62:6d:
cf:7f:0c:f4:d8:a1:0c:78:fc:53:44:8f:d9:ff:0b:
fc:17:0a:11:e6:87:36:7d:c5:b1:8d:9b:fd:c7:75:
90:64:1f:c9:eb:35:37:22:76:51:2e:89:3a:05:1a:
5d:b8:c4:76:d7:73:83:61:9a:42:82:11:fb:3d:b0:
98:b7:b8:0b:b2:f2:64:fd:d4:2d:53:7c:07:19:fc:
b6:ed:85:6a:4d:3f:3b:b0:35:f5:cc:59:ba:ec:d0:
f5:31:3b:95:e1:9c:3a:2e:c0:aa:e6:85:94:5d:f9:
cc:3d:f1:ac:3b:0a:68:d3:92:57:63:48:08:d9:7a:
6e:a4:06:fd:a6:78:37:5f:04:cf:37:77:58:c6:af:
40:a0:77:19:16:1d:99:c0:87:91:61:75:73:ed:5c:
be:4e:a8:54:9c:2a:51:07:82:89:2f:fb:35:e8:1f:
10:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:3C:46:85:D7:1F:04:6A:F7:2C:2C:87:50:0B:50:01:24:D0:E7:C6
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/sTxGhdcfBGr3LCyHUAtQASTQ58Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.124.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:47:97:9c:42:91:fd:d1:97:4a:e5:56:80:4a:8f:fe:8d:ca:
7f:5f:e5:a8:a0:f7:e2:79:71:e8:f5:06:ec:ba:9f:72:ec:a0:
0b:47:07:3a:6f:1d:93:15:c0:ed:dd:4f:3b:43:3e:ec:ac:9b:
6b:6e:0b:be:a5:13:ed:07:09:dd:22:8a:9c:2e:ed:5f:39:ec:
3e:e4:83:d0:7a:bb:f9:c5:87:d2:fc:62:2b:7f:d2:24:61:05:
71:3c:9a:ae:96:a6:5f:56:50:e8:15:7f:c2:e5:25:a8:b7:41:
cb:01:34:6e:0a:40:5a:4f:32:03:3f:94:7a:3f:ce:71:14:3c:
0e:02:e4:f8:18:e1:e3:93:7b:a0:9c:69:24:ac:3f:ef:73:14:
07:46:05:b7:af:e2:df:de:7c:7b:f9:f7:ef:46:17:b4:67:9e:
44:07:ba:be:92:06:8e:22:fd:f8:c0:1f:82:22:5b:17:10:4b:
ea:7b:35:38:c0:05:14:1a:a0:3f:4e:e4:67:16:f8:51:05:77:
66:b6:10:8c:96:cc:cf:f3:f9:cc:f4:ac:21:1f:3e:3a:e9:cf:
82:22:a4:ed:62:18:4d:86:e2:77:80:24:14:2f:1d:e9:f1:90:
0a:35:aa:68:e8:87:4f:02:7a:22:69:aa:bf:d7:95:fa:01:ff:
3a:79:66:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 16:19:05 2024 by rpki-client on console-fra.rpki-client.org