Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/FxQd0tg5cjv5MtwrK8yYZWvFykc.roa
File: FxQd0tg5cjv5MtwrK8yYZWvFykc.roa (raw, json)
Hash identifier: XzMXPPlrxzBT5ShVehFwIkVERssp4p4Eh437mZQxzg0=
Subject key identifier: 17:14:1D:D2:D8:39:72:3B:F9:32:DC:2B:2B:CC:98:65:6B:C5:CA:47
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 019074BE7CBDA443CBAD0FDA475C24BB4757
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/FxQd0tg5cjv5MtwrK8yYZWvFykc.roa
Signing time: Tue 02 Jul 2024 18:39:18 +0000
ROA not before: Tue 02 Jul 2024 18:39:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212165
IP address blocks: 193.233.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.mft
rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 11:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:74:be:7c:bd:a4:43:cb:ad:0f:da:47:5c:24:bb:47:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jul 2 18:39:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=17141dd2d839723bf932dc2b2bcc98656bc5ca47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:40:b5:b4:77:a8:4b:88:69:b9:d4:6d:67:7a:
a2:61:ef:ea:0b:90:a8:0d:bc:0b:32:7f:17:11:ea:
9d:cb:3e:a8:b7:8e:48:50:c7:00:63:b4:73:a0:c9:
69:f1:ee:9d:a1:be:b5:45:7a:9d:c5:7b:03:25:ff:
31:23:fd:cb:a9:f7:7a:4f:97:b7:58:73:91:93:ec:
e4:04:10:93:2d:de:3f:f3:5e:54:5e:d8:11:de:b5:
59:8f:96:cb:e2:e4:ae:6b:b3:52:91:7a:55:51:4f:
64:b8:4a:ad:d2:ab:96:ae:f5:f4:87:44:52:5e:fe:
33:c5:06:0e:5f:a4:2a:3a:99:94:ae:b9:fc:26:cc:
e1:1d:e7:80:2b:2b:86:9b:c9:ed:5c:10:3b:33:73:
0e:87:80:46:bc:64:e9:0e:fd:1b:37:9d:79:ab:99:
19:b1:67:f1:18:01:74:5e:d8:86:ea:58:db:8f:fc:
b2:d9:2b:83:55:31:05:c7:4f:62:0d:79:f3:6e:56:
7d:a6:a4:0c:13:d9:6d:b5:2f:35:c7:0c:c1:5a:6d:
65:e4:00:38:21:2b:86:a5:18:5e:c0:c4:c5:aa:44:
cf:a7:c9:3c:9d:29:50:1f:8b:4e:2f:c4:ee:1b:e0:
19:c4:ec:e9:a6:65:3e:35:a4:a3:97:ea:9d:98:cb:
42:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:14:1D:D2:D8:39:72:3B:F9:32:DC:2B:2B:CC:98:65:6B:C5:CA:47
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/FxQd0tg5cjv5MtwrK8yYZWvFykc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.20.0/24
Signature Algorithm: sha256WithRSAEncryption
89:7f:07:26:1e:54:69:09:45:6b:84:f8:51:c2:d9:58:74:0f:
90:23:63:59:cd:a5:ae:33:69:5a:02:5e:4a:ef:cd:1e:e2:c3:
9a:81:89:3b:f4:3f:37:88:70:7c:53:a9:7c:be:be:55:2e:e2:
92:9a:00:ef:6c:ae:e6:32:65:c6:9f:29:23:ca:68:f0:f5:24:
f8:89:5a:5b:c1:77:0f:4c:3f:ab:61:ae:79:a2:74:7d:2c:8a:
b0:f1:d3:2d:58:27:d9:25:35:0e:d1:39:71:e5:2e:a4:a4:dd:
81:89:b2:e0:38:a2:27:47:98:9a:16:c6:36:7c:39:0f:ea:65:
c3:6a:2a:53:18:89:73:2a:c6:e5:ec:7d:9e:c2:a7:d1:49:b7:
29:29:be:27:8b:78:6f:63:8f:a3:46:95:de:45:1b:15:3b:cf:
ff:d2:48:30:27:93:9d:49:d7:0d:03:74:3c:91:67:65:a2:6e:
a5:e2:0e:bd:aa:3d:62:07:b4:9a:90:80:e5:5d:24:00:98:ab:
8d:a9:2b:85:f7:36:b9:66:e4:14:12:a3:3d:c8:41:1b:8e:3e:
10:ee:64:99:66:57:3b:2e:7f:0f:eb:e9:c3:ee:ab:7c:8f:a7:
53:6a:ff:b5:8d:91:0b:05:c1:98:25:ce:a2:89:3c:68:83:39:
80:09:ba:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:39:24 2024 by rpki-client on console-fra.rpki-client.org