Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/SCmyyA3QeG8ivlM691kU5-Gs2eQ.roa
File: SCmyyA3QeG8ivlM691kU5-Gs2eQ.roa (raw, json)
Hash identifier: o0JJ77e2P1ancFOdwDW6izQf0wwkK177XzR0lSDNcdI=
Subject key identifier: 48:29:B2:C8:0D:D0:78:6F:22:BE:53:3A:F7:59:14:E7:E1:AC:D9:E4
Certificate issuer: /CN=c3fb403a241883e58fced52d39d80eabd52bb36f
Certificate serial: 018CC726E9FAE3223D5463F6FD9DA4E870B2
Authority key identifier: C3:FB:40:3A:24:18:83:E5:8F:CE:D5:2D:39:D8:0E:AB:D5:2B:B3:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w_tAOiQYg-WPztUtOdgOq9Urs28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/SCmyyA3QeG8ivlM691kU5-Gs2eQ.roa
Signing time: Mon 01 Jan 2024 22:31:05 +0000
ROA not before: Mon 01 Jan 2024 22:31:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15461
IP address blocks: 213.174.29.0/24 maxlen: 32
194.44.38.0/23 maxlen: 32
194.44.179.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/w_tAOiQYg-WPztUtOdgOq9Urs28.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/w_tAOiQYg-WPztUtOdgOq9Urs28.mft
rsync://rpki.ripe.net/repository/DEFAULT/w_tAOiQYg-WPztUtOdgOq9Urs28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:e9:fa:e3:22:3d:54:63:f6:fd:9d:a4:e8:70:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3fb403a241883e58fced52d39d80eabd52bb36f
Validity
Not Before: Jan 1 22:31:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4829b2c80dd0786f22be533af75914e7e1acd9e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b8:6e:0a:21:d6:38:9a:73:8e:47:97:41:5e:
a4:68:09:5a:dc:38:7f:71:2c:5f:63:ec:d6:2e:15:
ca:66:9b:9c:18:7a:8f:61:d5:be:a4:b5:37:41:40:
2b:95:ea:c8:97:5e:83:30:08:f8:77:e0:8e:a6:33:
6c:ff:4f:65:83:e8:2a:2c:21:cb:94:f7:c8:2c:17:
47:0d:e4:f7:8b:cb:d6:54:3a:2d:97:bd:06:36:10:
87:fc:9c:ea:07:8f:fe:46:13:e9:e8:ba:5e:3f:79:
a7:42:73:87:5d:6c:ce:4b:d4:bd:02:83:ed:f3:93:
f6:2a:db:5f:f8:c6:47:a4:25:03:8d:13:5d:04:b8:
39:3f:0c:4f:b6:70:8d:a5:20:68:1d:6f:68:5b:05:
95:41:31:17:5c:3c:77:88:2c:56:d1:46:85:34:8d:
c5:57:03:fd:b5:62:6d:00:32:78:62:61:38:76:22:
57:53:36:f8:0f:15:30:f9:e7:71:6d:9e:79:e7:87:
77:67:88:b9:92:d8:b0:b3:4b:5d:97:be:e0:b9:31:
95:43:2f:96:2f:70:f0:ea:94:46:8f:dc:83:37:7a:
be:fb:cb:4c:22:ed:34:bb:15:e3:7d:8b:b9:c9:c2:
aa:2f:11:e5:d0:04:40:01:fd:d6:28:33:ef:9c:3f:
f6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:29:B2:C8:0D:D0:78:6F:22:BE:53:3A:F7:59:14:E7:E1:AC:D9:E4
X509v3 Authority Key Identifier:
keyid:C3:FB:40:3A:24:18:83:E5:8F:CE:D5:2D:39:D8:0E:AB:D5:2B:B3:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w_tAOiQYg-WPztUtOdgOq9Urs28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/SCmyyA3QeG8ivlM691kU5-Gs2eQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/w_tAOiQYg-WPztUtOdgOq9Urs28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.44.38.0/23
194.44.179.0/24
213.174.29.0/24
Signature Algorithm: sha256WithRSAEncryption
27:15:b4:5f:32:01:fa:d3:13:4c:05:e5:b4:91:a2:1b:62:b9:
3c:db:3e:e2:4a:8f:10:17:09:52:f1:95:b1:a5:12:04:e1:7e:
3b:c4:73:2c:b7:15:94:8d:95:4c:ad:2e:d3:74:a7:9f:5e:72:
62:10:9c:49:2c:a5:e6:04:9f:3f:a8:bc:39:4e:4c:d4:3a:6c:
cc:0a:a6:10:05:98:fc:92:6e:05:be:11:91:0d:d2:c8:bd:bb:
a5:09:11:97:eb:57:10:6e:6c:80:b1:b5:49:97:51:a4:1d:ee:
46:a7:10:53:18:5a:bf:3d:03:a6:3a:5a:e6:92:06:91:3f:f4:
9e:15:45:00:bc:6b:60:76:2f:0d:33:88:ae:33:5b:cf:db:73:
b4:d0:6a:30:ef:db:b1:1a:81:8c:cc:f4:e0:43:4c:b7:4d:60:
15:01:9b:24:0e:eb:6e:66:1e:81:29:0d:80:8d:dd:51:17:fc:
3f:23:16:8f:5a:98:a4:dd:15:75:2a:e1:c8:2a:3a:21:a3:22:
86:c0:e0:aa:cf:88:e0:0d:d7:66:40:65:e1:72:c4:0c:4e:d2:
13:8e:90:b8:32:ab:13:81:72:5d:65:49:b8:e1:87:c6:d4:86:
df:96:43:8d:82:f0:1e:a8:1d:e7:25:aa:b5:50:6a:2e:3a:e9:
21:9f:e1:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:50:34 2024 by rpki-client on console-fra.rpki-client.org