Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/m9l-OF4HQt8OU5PMmqpMbno8_ws.roa
File: m9l-OF4HQt8OU5PMmqpMbno8_ws.roa (raw, json)
Hash identifier: Svc4bo3s9yU9mJkCi0z64FCGZGgok0DRsNb7UoJQGrc=
Subject key identifier: 9B:D9:7E:38:5E:07:42:DF:0E:53:93:CC:9A:AA:4C:6E:7A:3C:FF:0B
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 018CC649D8A098E7D3C28977C324B04AD44B
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/m9l-OF4HQt8OU5PMmqpMbno8_ws.roa
Signing time: Mon 01 Jan 2024 18:29:37 +0000
ROA not before: Mon 01 Jan 2024 18:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41313
IP address blocks: 195.24.54.0/24 maxlen: 24
212.95.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:d8:a0:98:e7:d3:c2:89:77:c3:24:b0:4a:d4:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 1 18:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9bd97e385e0742df0e5393cc9aaa4c6e7a3cff0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:bc:54:7f:50:0f:0b:4f:4b:4d:16:7c:bf:34:
6e:b7:64:f4:0e:b9:f0:e2:0e:44:eb:b6:5c:fe:97:
c5:6f:05:45:9a:39:6a:b8:c1:91:22:05:f8:40:d5:
ca:1d:a3:9a:ed:32:24:6c:cd:c9:08:8e:0e:3f:ab:
48:93:94:f1:82:b3:f1:fa:c9:d6:28:1e:6c:3a:fb:
32:62:e9:fb:9b:4a:97:e9:29:e7:fe:22:5d:96:2b:
33:b7:82:29:b3:38:3a:9f:d6:ea:7b:2a:1f:4c:9d:
b7:0e:d1:a8:3b:29:63:14:71:6b:9d:df:d1:61:a2:
8e:6b:04:2c:b7:03:3e:fb:fa:57:b4:fc:c0:2b:69:
50:e5:14:6d:cf:b4:52:f6:5a:1e:d0:c6:c8:cf:fb:
e1:30:08:f6:a3:bd:14:a0:24:6d:5c:9f:b8:7b:eb:
74:a4:b3:04:16:40:3b:c4:36:4d:fe:db:34:5f:2a:
b3:1b:8f:3e:bb:4f:e0:c9:2c:8e:09:5f:df:55:61:
47:d3:2d:e8:8c:a9:3f:ae:dd:95:fc:5e:01:50:c6:
70:9b:e4:f2:c2:42:4f:42:49:ec:7f:f0:9e:78:94:
44:d9:bd:ba:52:c0:7e:12:c9:8c:32:00:8c:b5:51:
72:80:41:e3:66:b4:9a:8e:c4:a5:2e:53:56:b1:2d:
56:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:D9:7E:38:5E:07:42:DF:0E:53:93:CC:9A:AA:4C:6E:7A:3C:FF:0B
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/m9l-OF4HQt8OU5PMmqpMbno8_ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.24.54.0/24
212.95.162.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:62:9a:27:c2:7d:a9:d8:01:3d:92:1b:6c:73:1f:1d:29:0e:
0a:40:63:a2:d4:1b:23:b8:ce:43:19:e5:cc:1c:94:ac:88:87:
58:62:3f:c6:91:3c:d9:1f:bf:1a:b4:16:1c:db:0b:62:45:d6:
36:92:c0:93:d1:12:72:e5:14:65:1b:dd:77:6b:02:35:66:fb:
00:9e:fe:8a:9a:79:fa:31:46:89:04:7c:a7:01:74:4e:92:66:
e4:2c:86:11:08:b6:70:d4:b5:f0:0d:51:9b:67:62:91:a4:f2:
a1:1c:07:0e:0d:84:9f:29:65:5c:6d:2c:e1:e9:be:4b:ce:e4:
02:51:1a:59:37:25:f6:ff:57:6b:e8:28:74:5e:ee:6e:6d:98:
6f:56:72:3f:74:8e:00:32:fb:88:16:a0:4c:72:67:4b:e2:f9:
b1:04:bc:ac:47:64:e8:6e:39:d5:5c:59:17:38:5d:dd:4c:d4:
21:cb:44:36:6d:fd:d8:3d:1a:27:17:8d:d8:aa:a2:9d:a9:c4:
70:09:09:06:5f:a0:3c:ff:a5:34:50:be:f9:c2:e7:2a:d6:73:
07:d1:1c:61:ac:56:67:c8:01:ff:b3:12:a0:94:11:60:d5:04:
01:c9:c3:ff:95:d3:40:3b:ff:26:6a:10:d1:84:90:d2:04:9f:
cb:fc:30:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 21:49:30 2024 by rpki-client on console-ams.rpki-client.org