Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/t6IAGdMYir2LgQpV6jTSBTY26wM.roa
File: t6IAGdMYir2LgQpV6jTSBTY26wM.roa (raw, json)
Hash identifier: /qHDz6kshffYhX5Y0B9mg50N4ElUo87LuXqtoIfXEj0=
Subject key identifier: B7:A2:00:19:D3:18:8A:BD:8B:81:0A:55:EA:34:D2:05:36:36:EB:03
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0191FFE9F84F9A71758E7D80DB1912E1C144
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/t6IAGdMYir2LgQpV6jTSBTY26wM.roa
Signing time: Tue 17 Sep 2024 12:16:49 +0000
ROA not before: Tue 17 Sep 2024 12:16:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211277
IP address blocks: 91.92.70.0/24 maxlen: 32
93.123.20.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ff:e9:f8:4f:9a:71:75:8e:7d:80:db:19:12:e1:c1:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Sep 17 12:16:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b7a20019d3188abd8b810a55ea34d2053636eb03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:d8:8a:6f:a8:0c:04:3e:06:35:c9:46:c8:93:
26:97:74:80:b8:4a:58:56:c4:90:0d:a4:b4:b6:46:
fa:e5:3d:e6:a8:a1:64:fb:d0:27:08:d1:d7:b6:41:
da:ca:fb:ba:68:99:6b:b3:88:4c:d5:ac:f0:6e:56:
9a:ec:fb:a6:a3:c8:85:48:2f:b5:1d:de:0f:30:63:
b4:8c:ea:a1:71:98:c9:1d:2b:08:9c:45:1f:e0:1e:
5d:25:c5:15:89:a6:b1:fa:63:2f:8a:bf:80:cd:25:
c3:51:81:6f:85:db:10:b5:ab:94:c7:e5:8b:63:2d:
3d:9a:0b:7f:76:e6:ea:02:f4:81:93:67:b4:4d:44:
f7:cf:c2:8b:2b:b1:ee:04:6c:02:3a:fa:38:f9:c1:
de:6c:83:a3:55:06:e7:a6:82:b3:13:98:99:43:c3:
e1:9f:6b:3a:71:5f:07:c8:52:4b:1c:07:8b:42:0a:
15:e3:d9:1a:22:e4:f3:bd:1b:3e:e7:34:3e:98:4a:
55:3a:6a:6f:24:10:4d:84:8d:43:89:8c:c1:e4:86:
2a:f6:23:24:1b:cb:54:29:6c:4f:fd:23:6c:44:9b:
5a:82:7d:82:4e:f5:36:8a:9c:6e:b4:0a:3c:73:53:
be:a9:a2:22:53:92:c8:22:c4:77:1d:27:48:2a:cf:
e8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A2:00:19:D3:18:8A:BD:8B:81:0A:55:EA:34:D2:05:36:36:EB:03
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/t6IAGdMYir2LgQpV6jTSBTY26wM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.92.70.0/24
93.123.20.0/24
Signature Algorithm: sha256WithRSAEncryption
93:2d:f2:80:9b:b4:50:be:d6:80:42:07:7d:ea:cd:b0:90:e8:
62:ec:c1:2d:b9:59:46:cb:45:55:21:25:4f:50:89:2d:27:85:
53:44:b1:ac:36:be:30:76:16:19:f9:36:75:04:8c:a8:8a:e2:
5c:6a:44:46:d1:8e:5e:9c:98:77:7d:81:4a:34:70:85:cf:9e:
8e:a3:0d:4c:a5:f6:67:fb:d9:14:bc:1e:35:90:51:25:6d:bd:
ca:bf:4d:70:93:09:4c:b0:46:f4:ca:c3:68:97:fc:85:cb:9c:
f4:11:9e:2f:70:95:d5:9d:97:02:30:79:5c:6d:63:46:ac:c5:
fd:dd:18:86:61:ff:34:cf:4e:20:73:11:e7:f2:fb:55:6f:de:
33:4b:c3:1f:04:fc:22:79:fb:6a:d4:bc:73:a4:95:88:23:0b:
01:1f:e7:7a:84:32:19:50:fe:62:3a:5a:ba:ef:3a:b8:44:a8:
b5:9c:1f:41:d2:a2:35:e5:d2:8c:3b:7e:57:4e:e4:4c:dd:b2:
1d:c7:b5:db:e9:6f:18:63:11:8b:09:9e:d2:3a:6d:f4:aa:b8:
5b:87:37:c4:11:24:9d:ad:03:06:30:2d:e4:45:6b:cd:37:3f:
b9:c6:d3:8f:5c:8a:45:9f:b5:12:47:21:70:3e:0b:c9:19:89:
da:7d:79:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 18:05:58 2024 by rpki-client on console-fra.rpki-client.org