Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/63c985-fb70-4025-9019-b8ebeb6d81eb/1/pdEEviPC3WkQa4UBn3wpmsdbaGY.roa
File: pdEEviPC3WkQa4UBn3wpmsdbaGY.roa (raw, json)
Hash identifier: vwTHkSrgjt0Bbo5cgEnF+Ko2Fy/QhJ1Ll8Bn5YiBK6M=
Subject key identifier: A5:D1:04:BE:23:C2:DD:69:10:6B:85:01:9F:7C:29:9A:C7:5B:68:66
Certificate issuer: /CN=823768c176ee5331183da7dd2f87479fe9977c3b
Certificate serial: 019123E8CD5C8C73CE583415601EDE9F8468
Authority key identifier: 82:37:68:C1:76:EE:53:31:18:3D:A7:DD:2F:87:47:9F:E9:97:7C:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gjdowXbuUzEYPafdL4dHn-mXfDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/63c985-fb70-4025-9019-b8ebeb6d81eb/1/pdEEviPC3WkQa4UBn3wpmsdbaGY.roa
Signing time: Mon 05 Aug 2024 18:59:04 +0000
ROA not before: Mon 05 Aug 2024 18:59:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48539
IP address blocks: 194.147.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/63c985-fb70-4025-9019-b8ebeb6d81eb/1/gjdowXbuUzEYPafdL4dHn-mXfDs.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/63c985-fb70-4025-9019-b8ebeb6d81eb/1/gjdowXbuUzEYPafdL4dHn-mXfDs.mft
rsync://rpki.ripe.net/repository/DEFAULT/gjdowXbuUzEYPafdL4dHn-mXfDs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 15:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:23:e8:cd:5c:8c:73:ce:58:34:15:60:1e:de:9f:84:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=823768c176ee5331183da7dd2f87479fe9977c3b
Validity
Not Before: Aug 5 18:59:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a5d104be23c2dd69106b85019f7c299ac75b6866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c8:fa:3c:b2:35:12:d9:b5:88:f3:16:35:b3:
3e:f0:91:11:5d:2d:15:02:c7:7a:c9:cb:69:68:e7:
7a:32:bb:24:c0:39:1c:e4:9e:bb:1d:af:3a:19:67:
ca:30:49:de:81:bd:32:ba:9c:cf:3e:bb:01:f7:40:
3b:25:6f:87:21:61:01:87:a3:3f:95:18:59:8a:51:
4b:43:31:01:65:d2:cb:2e:86:dd:91:0f:2d:94:fa:
58:76:48:8b:50:f2:dc:08:6e:03:47:11:fa:ed:b0:
10:70:8a:6c:4d:41:2d:1f:cb:2b:9a:61:e7:da:eb:
11:25:bd:0e:d3:0a:6c:7b:b6:8b:5f:68:59:6b:1b:
fe:0b:26:f3:43:77:7b:51:95:d7:e2:ba:f6:bc:bc:
be:26:de:3d:da:21:21:83:4e:ef:ba:d0:f0:61:62:
b1:17:ec:e0:2a:5f:36:68:26:ba:e7:72:d2:7d:a5:
de:95:c8:f6:0f:21:75:33:01:aa:29:4c:8c:8e:ee:
39:d3:29:74:3b:03:1c:51:b1:25:61:bb:1f:f2:aa:
04:91:a1:ce:90:82:6d:1a:25:3f:ac:01:23:78:ff:
8f:f6:7c:15:2f:8c:54:02:f0:f5:9a:c8:32:0b:a1:
b5:fe:6f:37:60:3c:1e:80:05:f6:5f:01:e6:92:76:
66:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:D1:04:BE:23:C2:DD:69:10:6B:85:01:9F:7C:29:9A:C7:5B:68:66
X509v3 Authority Key Identifier:
keyid:82:37:68:C1:76:EE:53:31:18:3D:A7:DD:2F:87:47:9F:E9:97:7C:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gjdowXbuUzEYPafdL4dHn-mXfDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/63c985-fb70-4025-9019-b8ebeb6d81eb/1/pdEEviPC3WkQa4UBn3wpmsdbaGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/63c985-fb70-4025-9019-b8ebeb6d81eb/1/gjdowXbuUzEYPafdL4dHn-mXfDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.218.0/24
Signature Algorithm: sha256WithRSAEncryption
06:2e:c0:8f:06:f1:f4:dd:41:70:ec:d7:8b:98:c9:3f:27:dd:
f0:f4:49:84:32:e7:a6:69:22:5d:63:1d:0a:61:e7:06:08:43:
6d:8c:62:e7:02:07:9b:c7:39:e4:28:7e:bf:b9:b9:4a:5f:90:
00:2e:79:6f:61:76:25:7e:a1:e9:5e:9a:24:df:b5:91:ee:22:
19:f3:e2:05:8b:d2:99:d3:9e:0b:ca:11:d0:c6:0c:4c:3a:46:
b0:11:f1:30:1c:a2:75:36:b4:27:c1:2f:80:63:72:f9:34:0d:
3d:e9:9e:6c:c5:2f:8d:ea:df:e4:2a:61:d8:65:11:8f:9b:a1:
f6:0a:bb:1e:01:6e:cf:17:10:cc:2b:ec:a8:b4:c8:51:60:e9:
06:bd:82:5e:99:9c:d6:06:e1:79:32:b4:6b:a6:e8:50:4f:dd:
9a:ef:35:e7:4b:c4:6b:cc:86:77:c4:e6:b9:0c:98:f6:79:1f:
27:3b:18:b8:e1:23:31:6b:38:43:8a:3d:b2:39:fe:81:76:68:
67:70:f5:55:7b:4a:f4:74:bc:6d:6f:07:57:f9:60:6d:a0:2d:
0d:4c:1a:9d:28:4a:5f:c7:46:19:97:ca:f1:4d:2d:d5:db:9a:
17:c8:25:91:cd:26:dc:ec:10:0b:5b:45:96:97:59:88:d5:89:
19:2e:53:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 23:17:30 2024 by rpki-client on console-ams.rpki-client.org