Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b78a1c-1300-4ef8-ae96-80736950aa94/1/LY72hTym_i-h6VQDPFU3MVpUSTo.roa
File: LY72hTym_i-h6VQDPFU3MVpUSTo.roa (raw, json)
Hash identifier: dCNS80yMe0l2ZVBjhFakL5OG6ADM6Iib4JOlI5eeJhY=
Subject key identifier: 2D:8E:F6:85:3C:A6:FE:2F:A1:E9:54:03:3C:55:37:31:5A:54:49:3A
Certificate issuer: /CN=1cdc76327e92f25fc471b345a37d243cc8393500
Certificate serial: 018CC5003780326FCC1F8C6E111473EB3E0F
Authority key identifier: 1C:DC:76:32:7E:92:F2:5F:C4:71:B3:45:A3:7D:24:3C:C8:39:35:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HNx2Mn6S8l_EcbNFo30kPMg5NQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b78a1c-1300-4ef8-ae96-80736950aa94/1/LY72hTym_i-h6VQDPFU3MVpUSTo.roa
Signing time: Mon 01 Jan 2024 12:29:34 +0000
ROA not before: Mon 01 Jan 2024 12:29:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13039
IP address blocks: 193.102.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/b78a1c-1300-4ef8-ae96-80736950aa94/1/HNx2Mn6S8l_EcbNFo30kPMg5NQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/b78a1c-1300-4ef8-ae96-80736950aa94/1/HNx2Mn6S8l_EcbNFo30kPMg5NQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HNx2Mn6S8l_EcbNFo30kPMg5NQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 02:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:37:80:32:6f:cc:1f:8c:6e:11:14:73:eb:3e:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cdc76327e92f25fc471b345a37d243cc8393500
Validity
Not Before: Jan 1 12:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d8ef6853ca6fe2fa1e954033c5537315a54493a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b9:8a:2e:fd:36:27:97:7c:cc:e5:8c:57:7b:
d5:81:db:41:1a:a7:0d:8d:dd:a1:c0:86:0e:c5:28:
d2:81:ad:ee:ad:2c:50:44:61:49:6d:53:43:a9:81:
3b:df:b5:1a:1d:c2:8e:7c:55:2e:6c:96:f9:fd:e1:
34:b3:ad:57:74:c6:6b:a6:d2:c0:4c:de:e0:e4:e4:
c7:3c:42:e3:27:5d:b4:b3:cc:bd:34:82:92:c0:f4:
57:8f:4f:c1:6c:e1:7b:0d:57:9f:ea:9e:84:24:ef:
20:5a:24:61:ba:5e:ac:74:ac:e2:bd:9f:7a:2e:df:
cf:4b:ea:ef:9e:38:72:0b:1c:a8:fa:1c:a6:f1:f4:
4a:57:25:ae:11:b0:e7:f6:11:04:cf:41:a6:3f:2f:
9b:26:26:8e:9b:8a:50:8e:91:df:b2:46:04:43:9e:
b2:4b:b5:31:63:d9:b3:b5:69:fb:3c:f3:99:93:b2:
de:a1:be:40:23:05:ad:e2:03:54:27:52:ae:61:90:
d6:15:ea:ef:bb:88:c7:d4:27:64:39:25:c4:a7:96:
30:77:17:db:31:dc:1b:0d:8b:51:e0:1e:a6:8e:f8:
fa:91:eb:6e:d4:e1:22:97:cc:c8:11:0a:0d:98:ce:
c6:31:cf:76:2c:73:14:9d:66:cb:63:4d:b5:78:2c:
8e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:8E:F6:85:3C:A6:FE:2F:A1:E9:54:03:3C:55:37:31:5A:54:49:3A
X509v3 Authority Key Identifier:
keyid:1C:DC:76:32:7E:92:F2:5F:C4:71:B3:45:A3:7D:24:3C:C8:39:35:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HNx2Mn6S8l_EcbNFo30kPMg5NQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b78a1c-1300-4ef8-ae96-80736950aa94/1/LY72hTym_i-h6VQDPFU3MVpUSTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b78a1c-1300-4ef8-ae96-80736950aa94/1/HNx2Mn6S8l_EcbNFo30kPMg5NQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.102.189.0/24
Signature Algorithm: sha256WithRSAEncryption
39:cb:09:03:65:bb:47:e3:78:30:5c:9f:a9:f1:38:aa:3b:71:
6b:2a:70:92:68:d5:e2:b2:57:1c:af:f3:00:23:8a:17:79:dd:
5e:ec:93:d1:f8:60:54:7d:c1:2f:41:76:e0:4e:0c:92:74:b9:
ae:0e:f8:2a:2a:ea:6f:42:86:d3:7d:83:83:ed:4e:6b:e7:2f:
c9:21:46:16:5f:52:f1:e5:fa:66:ef:3c:b1:41:5f:81:0a:44:
5c:10:fa:3b:bb:54:79:21:25:26:bd:78:6e:e7:46:de:f6:f3:
9f:b2:c5:e2:c4:33:c0:dc:62:31:a9:15:36:72:19:d7:c1:d7:
a4:68:99:4d:e5:fd:32:c0:cc:32:97:8a:61:54:d3:b5:b0:d3:
fd:d2:00:24:35:cd:68:f4:8d:36:0c:b9:39:b3:62:ba:98:13:
b8:75:b5:12:66:84:64:57:ac:1d:d5:45:c9:58:3b:e9:7e:ad:
95:db:ff:d6:f7:80:1c:58:04:1b:9a:f7:37:e2:09:0e:2e:83:
42:c6:76:24:a9:65:12:aa:27:99:5b:24:2f:14:2e:1c:81:27:
c0:26:e0:d5:cc:d8:39:fb:54:3e:4b:5e:a2:39:27:31:63:b9:
6c:7f:f9:1a:a8:4e:bc:d0:18:13:35:8a:78:91:d3:8d:f6:23:
a0:4c:fa:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 05:40:30 2024 by rpki-client on console-ams.rpki-client.org