Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/293cbf-cd5c-4ee8-b71e-f6666909dd4a/1/1-ridWpw_Cy8sFUzhPJ7gmkBOmBY.roa
File: 1-ridWpw_Cy8sFUzhPJ7gmkBOmBY.roa (raw, json)
Hash identifier: VAy0Rt1K0o6BE6vYTKpzn9eipOFvLzLMCHpr4jLpd60=
Subject key identifier: FA:B8:9D:5A:9C:3F:0B:2F:2C:15:4C:E1:3C:9E:E0:9A:40:4E:98:16
Certificate issuer: /CN=3f2595f26659fc74db8832d5da23b0e9e367fcb3
Certificate serial: 018DD055EBDDF2ED7F28ABE735C2323703BD
Authority key identifier: 3F:25:95:F2:66:59:FC:74:DB:88:32:D5:DA:23:B0:E9:E3:67:FC:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PyWV8mZZ_HTbiDLV2iOw6eNn_LM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/293cbf-cd5c-4ee8-b71e-f6666909dd4a/1/1-ridWpw_Cy8sFUzhPJ7gmkBOmBY.roa
Signing time: Thu 22 Feb 2024 10:21:48 +0000
ROA not before: Thu 22 Feb 2024 10:21:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3330
IP address blocks: 193.43.212.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/293cbf-cd5c-4ee8-b71e-f6666909dd4a/1/PyWV8mZZ_HTbiDLV2iOw6eNn_LM.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/293cbf-cd5c-4ee8-b71e-f6666909dd4a/1/PyWV8mZZ_HTbiDLV2iOw6eNn_LM.mft
rsync://rpki.ripe.net/repository/DEFAULT/PyWV8mZZ_HTbiDLV2iOw6eNn_LM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d0:55:eb:dd:f2:ed:7f:28:ab:e7:35:c2:32:37:03:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f2595f26659fc74db8832d5da23b0e9e367fcb3
Validity
Not Before: Feb 22 10:21:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fab89d5a9c3f0b2f2c154ce13c9ee09a404e9816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c7:c1:2c:20:ca:9f:c9:39:0b:00:56:53:4a:
6a:b2:5c:dd:e5:33:30:0f:af:11:29:4d:cf:95:2a:
31:4b:1f:6b:63:bc:b1:54:68:81:d5:51:4b:b7:5b:
53:2a:93:69:cd:52:d5:4c:65:06:30:5e:81:ad:02:
47:82:9c:1e:7f:43:71:70:6f:91:45:58:44:f8:d3:
62:d4:66:cc:79:3b:76:68:4f:a4:ff:7b:49:47:ac:
a3:29:23:b2:fc:5d:e8:e8:0a:33:a7:1d:cb:9e:f9:
86:10:ce:d2:a6:bd:59:92:b0:51:84:f7:4e:10:b2:
27:be:df:a3:f5:61:6f:6f:12:79:7f:08:52:dd:1e:
da:1c:23:72:34:10:c5:b4:3f:a2:e3:d3:ba:19:94:
eb:0c:df:d0:0e:b2:32:5f:ac:44:fe:3d:e0:9e:72:
69:55:5e:4d:79:67:16:0d:51:98:4e:43:51:15:95:
c4:17:5b:36:ed:2f:b0:af:72:77:2b:a2:ed:94:25:
90:3a:ec:87:61:73:aa:0f:19:bf:95:36:f3:e6:5b:
7c:93:c7:71:0c:3a:2e:50:e3:06:9f:19:2a:9b:6d:
30:4e:4b:d8:51:d8:1e:f6:83:18:5e:b5:c8:0b:f7:
99:f1:d0:dd:2f:cb:9a:12:87:ce:6d:ab:f3:2e:ad:
98:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:B8:9D:5A:9C:3F:0B:2F:2C:15:4C:E1:3C:9E:E0:9A:40:4E:98:16
X509v3 Authority Key Identifier:
keyid:3F:25:95:F2:66:59:FC:74:DB:88:32:D5:DA:23:B0:E9:E3:67:FC:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PyWV8mZZ_HTbiDLV2iOw6eNn_LM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/293cbf-cd5c-4ee8-b71e-f6666909dd4a/1/1-ridWpw_Cy8sFUzhPJ7gmkBOmBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/293cbf-cd5c-4ee8-b71e-f6666909dd4a/1/PyWV8mZZ_HTbiDLV2iOw6eNn_LM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.212.0/23
Signature Algorithm: sha256WithRSAEncryption
21:ba:55:58:d6:af:ff:b1:c3:ed:2b:1a:b0:43:e2:e8:4e:90:
36:93:12:c6:bd:7b:0d:b2:2b:06:32:6f:33:ba:f6:4b:25:ad:
eb:52:98:f7:df:a8:88:cb:19:78:be:5f:6e:0a:ff:b3:9a:3d:
4a:10:84:43:3c:5e:31:4c:94:8c:11:3a:41:e5:b3:11:58:d5:
29:56:65:d1:8a:17:28:09:de:42:cc:71:ad:bc:1c:0f:37:5b:
ea:59:35:93:b7:4d:98:89:4a:c8:5b:56:06:ad:2b:fb:b1:ce:
76:22:ea:fd:95:d8:f5:5c:e6:3c:e4:07:c5:8c:8d:09:11:e1:
0c:4a:ad:00:77:5d:f2:8d:f1:2b:eb:f2:74:64:78:fb:77:70:
76:e4:51:64:73:7f:d7:cc:d3:82:b0:f9:e0:6c:1a:6b:3a:e3:
1e:17:f2:47:ad:d5:38:04:f3:f3:bc:9f:cd:3c:90:a3:c5:5c:
71:c5:20:a7:0d:5f:b7:89:b7:18:84:08:c2:61:ef:e9:99:54:
ac:4e:40:eb:4d:53:f5:5d:be:b8:47:92:9c:ff:34:4b:cf:e1:
58:c6:e1:3e:ae:08:b1:a6:b6:bf:a1:2f:c0:6d:6e:04:ed:44:
2b:51:2a:dc:22:4f:66:d7:29:e7:7b:33:1e:ab:dd:bd:5d:c0:
46:88:7f:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:33:58 2024 by rpki-client on console-ams.rpki-client.org