Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/0Izh8eSRvcGefAe68M5PamiUaDE.roa
File: 0Izh8eSRvcGefAe68M5PamiUaDE.roa (raw, json)
Hash identifier: JGLLMS0VY94koGobpRtNI4gh1h3RS8r0aKr9uhe62EU=
Subject key identifier: D0:8C:E1:F1:E4:91:BD:C1:9E:7C:07:BA:F0:CE:4F:6A:68:94:68:31
Certificate issuer: /CN=e85b83c87c4a3d8315025379f72987520bb5d046
Certificate serial: 018CC2DB0780C2773CD646203777AD411B11
Authority key identifier: E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/0Izh8eSRvcGefAe68M5PamiUaDE.roa
Signing time: Mon 01 Jan 2024 02:29:43 +0000
ROA not before: Mon 01 Jan 2024 02:29:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210817
IP address blocks: 37.148.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.mft
rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:07:80:c2:77:3c:d6:46:20:37:77:ad:41:1b:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e85b83c87c4a3d8315025379f72987520bb5d046
Validity
Not Before: Jan 1 02:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d08ce1f1e491bdc19e7c07baf0ce4f6a68946831
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:c4:0b:72:e0:7a:c8:a1:0d:48:b6:39:89:52:
dc:6e:32:a1:e3:40:4a:13:2f:a5:c3:5a:cf:3a:4d:
4d:7f:99:75:bd:d2:60:d2:43:62:6d:10:94:5a:e4:
3e:28:1b:ba:b5:82:b5:59:62:4f:8d:4f:8d:0b:ca:
3f:bb:72:22:0a:93:af:2a:27:cd:08:c6:e8:b3:7f:
06:c2:32:41:ea:22:db:c7:b1:0c:e6:ce:b3:ef:8d:
78:af:23:0e:89:d4:6b:e9:99:97:92:62:7d:14:01:
eb:ed:28:f4:e6:02:64:fd:f5:2e:65:b7:ad:5c:27:
68:ac:6f:a7:9e:46:96:fb:f2:b0:22:40:9e:89:30:
b1:40:51:14:c9:88:da:d1:be:b6:48:0c:50:dd:86:
e6:c1:df:e0:fd:4a:76:4e:1e:a6:df:5a:e4:f2:5b:
c3:a2:9c:8e:08:d5:30:1e:42:04:b4:5c:2f:81:43:
50:5a:31:92:4b:0e:ae:35:95:34:89:62:3a:1b:2d:
ba:5b:f4:78:cf:2c:a7:d9:86:65:06:1e:36:20:0e:
fe:79:58:22:fd:20:f3:57:73:8a:ce:af:04:02:83:
b0:ef:3d:b0:df:f5:a5:de:f3:d4:c2:59:29:31:16:
4c:0c:fa:40:a9:eb:e0:bd:0c:a4:a8:bd:41:59:14:
ec:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:8C:E1:F1:E4:91:BD:C1:9E:7C:07:BA:F0:CE:4F:6A:68:94:68:31
X509v3 Authority Key Identifier:
keyid:E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/0Izh8eSRvcGefAe68M5PamiUaDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.172.0/24
Signature Algorithm: sha256WithRSAEncryption
62:5c:e4:b6:f2:c0:72:23:9f:8b:ac:3c:9b:a0:11:ca:a4:00:
98:92:aa:05:1a:1f:24:62:bc:f1:d6:f6:68:4e:ec:ea:df:9a:
de:ba:11:21:81:fc:81:1d:ff:26:ce:d3:be:1b:a0:96:1c:44:
78:54:70:79:3c:8e:2f:23:59:a7:84:63:39:21:ee:b7:4e:58:
e8:a3:a1:f9:04:84:05:c0:ab:dd:30:64:9a:d3:9e:2b:04:03:
6e:5a:f4:da:a5:74:05:33:6d:ae:47:88:77:bc:14:c4:48:98:
a2:69:40:c2:33:7b:39:ca:c7:8c:63:9f:ca:d7:84:75:39:d0:
2e:19:56:29:ff:bb:7c:6a:7e:06:9a:e8:5f:a5:2b:88:5e:95:
17:e4:39:da:39:aa:fc:1e:d5:e5:f2:9f:e1:c4:05:9d:31:bd:
b6:2e:f5:5d:c7:19:49:7f:51:a6:97:70:a8:de:39:7c:62:55:
78:b9:e7:af:08:80:8f:e6:e7:8a:51:4a:f0:43:2b:ec:53:be:
1a:9e:74:b7:8f:c5:c7:90:c2:61:2d:46:4c:8c:69:15:09:df:
b2:4e:5d:db:fe:61:93:0e:f8:60:a1:29:94:b4:f2:c3:03:3a:
7a:ba:21:be:69:ea:20:04:d8:02:af:e0:88:99:90:25:c8:41:
af:d3:cc:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 07:10:09 2024 by rpki-client on console-fra.rpki-client.org