Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/1-yJE_mLdP3zV6VKGgc3fiY3e59Q.roa
File: 1-yJE_mLdP3zV6VKGgc3fiY3e59Q.roa (raw, json)
Hash identifier: zwBC+Qe+wvJPGNxCEFtfgujTsOnivE3Cgh1zaNIrsZQ=
Subject key identifier: FB:22:44:FE:62:DD:3F:7C:D5:E9:52:86:81:CD:DF:89:8D:DE:E7:D4
Certificate issuer: /CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Certificate serial: 018CC86F5C7571ED3B5B1A1F2C8272581AC0
Authority key identifier: 2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/1-yJE_mLdP3zV6VKGgc3fiY3e59Q.roa
Signing time: Tue 02 Jan 2024 04:29:50 +0000
ROA not before: Tue 02 Jan 2024 04:29:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 195.234.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/KwUe8jBg61G_2MeXlfak2vSKOqA.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/KwUe8jBg61G_2MeXlfak2vSKOqA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 13:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:5c:75:71:ed:3b:5b:1a:1f:2c:82:72:58:1a:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Validity
Not Before: Jan 2 04:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fb2244fe62dd3f7cd5e9528681cddf898ddee7d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:15:3b:ef:7b:a6:d1:e5:8b:cb:dc:de:f8:a3:
00:39:71:eb:b3:17:90:e2:c2:d9:44:d5:63:5d:4f:
93:69:bb:11:23:a2:c2:e0:b3:4a:4c:f7:7f:de:6a:
b9:94:5c:6f:3a:82:06:ad:7e:4b:81:16:12:86:38:
ef:7a:86:40:d9:f5:0a:bc:4c:95:1f:be:18:3d:eb:
a7:25:a8:dc:ac:7e:9c:33:42:c6:96:21:62:4b:8a:
23:ae:9d:2a:cc:63:78:59:ba:42:90:81:c5:4f:8c:
8a:40:c7:e1:44:07:ef:75:c3:75:a4:c7:9a:ef:30:
60:e1:75:4a:d1:83:5c:4e:a1:80:0d:e7:b5:e4:d7:
b1:be:20:e3:dd:92:10:30:00:f2:19:9d:bf:74:07:
f8:13:8d:7b:25:aa:82:cf:fe:58:79:0c:84:0d:56:
75:c3:a4:b4:b5:4d:40:b7:39:92:b3:8a:d9:e1:39:
66:c1:ea:88:9f:76:3b:2d:66:08:19:1e:d5:f8:87:
7e:3a:3c:48:07:73:4f:d5:87:78:d2:bd:20:24:55:
99:11:b5:42:e9:4d:43:bf:de:f3:73:d0:6e:7e:39:
06:b2:b0:6e:e0:d6:e1:ef:93:60:37:58:66:f5:fa:
06:dc:22:26:8c:96:50:94:ec:be:aa:82:c0:f7:23:
9d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:22:44:FE:62:DD:3F:7C:D5:E9:52:86:81:CD:DF:89:8D:DE:E7:D4
X509v3 Authority Key Identifier:
keyid:2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/1-yJE_mLdP3zV6VKGgc3fiY3e59Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/KwUe8jBg61G_2MeXlfak2vSKOqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.153.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:ed:47:4c:32:2f:a2:f1:86:91:27:01:1e:41:64:44:fe:8e:
45:fb:72:06:26:08:01:e9:18:4a:e2:80:87:ec:cc:38:de:2d:
d2:34:d9:48:69:b6:f1:16:e8:2e:c6:e5:84:23:82:90:91:96:
00:e9:00:9e:a6:12:56:ac:75:7e:d2:91:0d:36:55:61:d8:d8:
9d:60:9c:e2:88:d7:64:d8:f7:ae:f5:47:2a:bc:91:17:0e:a0:
0f:b5:9e:0c:60:5a:e9:59:bd:53:9e:49:15:28:ae:9b:42:c9:
4c:4a:ed:eb:86:d3:10:57:10:bd:f3:bc:07:e1:e1:c9:9b:0e:
3f:d5:3f:b1:8a:aa:13:7a:27:b1:92:67:90:26:32:47:08:d3:
4b:d0:77:92:3e:e6:54:5d:ed:9a:82:b5:6a:03:ce:57:66:36:
88:13:ae:5f:a6:d1:13:50:4b:08:2a:81:76:59:c8:e4:d3:26:
cf:9a:bf:86:38:6b:9e:98:d9:00:9d:f6:7d:68:ea:84:c3:54:
3f:47:b6:af:58:d2:41:1e:32:95:9f:4b:9a:ae:2f:34:08:17:
2d:a7:d9:62:6a:26:b0:92:f6:4c:20:fa:de:bb:2b:93:d7:60:
f4:b0:01:21:4b:24:e7:0b:87:ae:e9:e2:09:4b:c7:be:e5:d1:
51:66:a4:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 18:03:23 2024 by rpki-client on console-fra.rpki-client.org