Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/263044-c74f-4b67-b24b-e1352d5afa0a/1/0_zdhhkSclRlKccohGO8Ti7mWpY.roa
File: 0_zdhhkSclRlKccohGO8Ti7mWpY.roa (raw, json)
Hash identifier: hNwWqpXEEeJ9UyqpqSN1vghWnRo6ZQ09fiK+vycPx9k=
Subject key identifier: D3:FC:DD:86:19:12:72:54:65:29:C7:28:84:63:BC:4E:2E:E6:5A:96
Certificate issuer: /CN=99ff97f515b083e30bc52d81e193d8c8bb7fdf8c
Certificate serial: 018D186C5DF00E6005B7B46E83D459FD7082
Authority key identifier: 99:FF:97:F5:15:B0:83:E3:0B:C5:2D:81:E1:93:D8:C8:BB:7F:DF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mf-X9RWwg-MLxS2B4ZPYyLt_34w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/263044-c74f-4b67-b24b-e1352d5afa0a/1/0_zdhhkSclRlKccohGO8Ti7mWpY.roa
Signing time: Wed 17 Jan 2024 17:16:11 +0000
ROA not before: Wed 17 Jan 2024 17:16:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25504
IP address blocks: 46.151.160.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/263044-c74f-4b67-b24b-e1352d5afa0a/1/mf-X9RWwg-MLxS2B4ZPYyLt_34w.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/263044-c74f-4b67-b24b-e1352d5afa0a/1/mf-X9RWwg-MLxS2B4ZPYyLt_34w.mft
rsync://rpki.ripe.net/repository/DEFAULT/mf-X9RWwg-MLxS2B4ZPYyLt_34w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:18:6c:5d:f0:0e:60:05:b7:b4:6e:83:d4:59:fd:70:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99ff97f515b083e30bc52d81e193d8c8bb7fdf8c
Validity
Not Before: Jan 17 17:16:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d3fcdd86191272546529c7288463bc4e2ee65a96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:eb:8b:08:d3:50:8b:83:4a:f4:d5:ff:29:ad:
c0:18:99:7b:7e:cc:65:51:bc:46:d9:fd:56:cf:e5:
dd:de:31:4e:08:b7:30:b7:2e:e4:c6:78:e5:3a:cc:
80:0a:8e:09:e7:2e:87:45:24:d3:d2:b5:a4:f8:f7:
3d:46:a4:89:62:77:ac:47:01:7f:10:c3:21:59:bc:
97:8d:00:c2:64:33:8f:4b:4a:6c:44:f5:33:0e:fc:
43:31:5b:73:55:48:2a:fe:13:e8:64:52:87:94:69:
00:fe:85:63:15:48:1b:f8:2a:22:2b:ca:d7:c2:dd:
7f:2d:e6:00:91:f9:55:27:8f:a0:d4:ac:06:bf:23:
8e:0e:25:8e:89:40:b9:e3:09:ff:58:22:f1:22:e5:
91:1d:a5:75:d7:18:bb:8e:ce:ec:1f:74:66:a2:86:
90:4e:34:29:06:ea:33:3c:46:b2:c4:83:37:1b:ae:
d3:6e:55:e2:5f:23:68:60:0e:d9:da:3d:22:09:f3:
10:3b:0e:48:d2:4e:a3:2d:52:04:98:3b:a4:04:80:
52:63:00:76:9d:9d:ff:ec:ac:2b:b8:c9:8b:68:53:
d0:e1:70:14:fa:6f:32:bf:62:37:59:3c:4a:ea:54:
65:2c:f9:4f:1a:5d:fb:ff:e3:f9:2b:40:3e:44:f8:
44:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:FC:DD:86:19:12:72:54:65:29:C7:28:84:63:BC:4E:2E:E6:5A:96
X509v3 Authority Key Identifier:
keyid:99:FF:97:F5:15:B0:83:E3:0B:C5:2D:81:E1:93:D8:C8:BB:7F:DF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mf-X9RWwg-MLxS2B4ZPYyLt_34w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/263044-c74f-4b67-b24b-e1352d5afa0a/1/0_zdhhkSclRlKccohGO8Ti7mWpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/263044-c74f-4b67-b24b-e1352d5afa0a/1/mf-X9RWwg-MLxS2B4ZPYyLt_34w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.151.160.0/21
Signature Algorithm: sha256WithRSAEncryption
71:b8:7d:39:28:e8:5b:04:93:2d:1f:e3:63:dd:c5:79:3c:73:
4c:25:a4:99:17:22:80:02:29:55:7c:90:c8:44:56:12:03:e8:
32:51:93:bd:f8:72:6c:e1:05:f7:83:9c:fc:3f:bd:1a:92:71:
25:b3:02:3c:92:38:70:e5:e0:39:66:20:49:30:aa:29:76:8c:
87:1c:15:f0:41:35:8e:a1:c7:1a:67:4d:2a:f4:a6:ce:0b:71:
24:5a:8f:52:9b:4b:53:61:42:ac:70:98:52:2e:4d:57:71:e8:
ca:8c:88:fb:36:8d:b4:02:bf:45:74:8c:1c:78:2f:ad:c2:a6:
79:2c:9c:0b:a5:d6:5a:d0:fd:bb:95:a7:dc:5e:38:e7:1f:ad:
d1:d7:a1:82:10:33:db:a6:d6:ed:6c:d4:56:e8:44:b0:5c:09:
97:53:3a:6c:21:52:05:65:8a:cf:75:e8:9f:79:d1:82:df:c1:
60:67:88:a7:a2:e4:1e:4b:a7:81:53:37:30:59:e6:0a:54:92:
81:11:6f:08:df:ab:0a:f1:74:3e:12:4c:60:89:bd:9f:6d:61:
7e:71:78:e2:2c:9c:1d:2d:3b:d9:13:60:67:27:fd:91:95:32:
6f:de:39:d7:dc:13:82:f1:9a:4c:fa:73:01:d8:b4:2e:1b:cd:
3c:87:ed:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 22:12:55 2024 by rpki-client on console-ams.rpki-client.org