Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/85a208-1ab6-46f7-b1a5-a26d25bc7654/1/mTRqYD0LULhO0epAlx7t8pGDI_A.roa
File: mTRqYD0LULhO0epAlx7t8pGDI_A.roa (raw, json)
Hash identifier: dYNPwKzkVHD3epieX5AJpm2L7pv5emlGuKh9koCZjS8=
Subject key identifier: 99:34:6A:60:3D:0B:50:B8:4E:D1:EA:40:97:1E:ED:F2:91:83:23:F0
Certificate issuer: /CN=09c50efe13aadf5423b04f0ddca8b3288395823e
Certificate serial: 018CC9BCE7F447CD85F4C4927A122751D2D0
Authority key identifier: 09:C5:0E:FE:13:AA:DF:54:23:B0:4F:0D:DC:A8:B3:28:83:95:82:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CcUO_hOq31QjsE8N3KizKIOVgj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/85a208-1ab6-46f7-b1a5-a26d25bc7654/1/mTRqYD0LULhO0epAlx7t8pGDI_A.roa
Signing time: Tue 02 Jan 2024 10:34:09 +0000
ROA not before: Tue 02 Jan 2024 10:34:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51964
IP address blocks: 194.24.8.0/24 maxlen: 24
194.24.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/85a208-1ab6-46f7-b1a5-a26d25bc7654/1/CcUO_hOq31QjsE8N3KizKIOVgj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/85a208-1ab6-46f7-b1a5-a26d25bc7654/1/CcUO_hOq31QjsE8N3KizKIOVgj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/CcUO_hOq31QjsE8N3KizKIOVgj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 13:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:e7:f4:47:cd:85:f4:c4:92:7a:12:27:51:d2:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09c50efe13aadf5423b04f0ddca8b3288395823e
Validity
Not Before: Jan 2 10:34:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=99346a603d0b50b84ed1ea40971eedf2918323f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:1f:92:d9:ec:36:37:c2:7b:83:04:99:11:0f:
28:00:a0:56:95:95:cb:2c:28:e6:86:76:63:57:d4:
eb:06:d2:f5:74:26:98:d0:93:ab:16:a8:e7:e0:14:
b5:b4:89:ff:85:ac:5b:0d:b9:c4:9b:60:8f:2e:d2:
ae:f0:26:ad:50:13:fb:fd:47:61:87:51:6a:62:8f:
35:9a:db:dd:e5:20:44:14:61:0d:ba:9f:a8:0e:e9:
1b:d5:4d:65:72:a2:af:8a:24:19:69:5e:58:52:cf:
46:e6:98:b5:83:d1:cb:ff:cc:a7:ae:e9:5b:c3:1d:
25:2e:2b:79:77:c8:2e:6c:aa:ee:e1:4c:cc:c6:82:
69:ae:12:da:6d:9e:04:98:fc:df:7c:5b:f4:3d:93:
0e:37:9f:f8:ac:c4:38:25:44:11:f8:85:ae:58:10:
71:e2:6b:8c:1b:4e:01:f6:7c:6c:5a:e3:1a:b9:e4:
43:2b:f3:53:15:71:7c:4b:d0:0a:ea:a8:7d:e4:c4:
10:bc:4b:4b:6c:c7:0d:74:91:8b:22:c3:39:3f:5f:
33:61:69:c9:86:e4:06:fc:a1:09:97:79:d8:d6:8e:
a8:e3:80:51:8a:ce:c1:6f:e9:21:e3:4c:21:a9:91:
87:a9:a9:e2:2d:09:01:09:16:09:af:e1:3d:80:73:
fb:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:34:6A:60:3D:0B:50:B8:4E:D1:EA:40:97:1E:ED:F2:91:83:23:F0
X509v3 Authority Key Identifier:
keyid:09:C5:0E:FE:13:AA:DF:54:23:B0:4F:0D:DC:A8:B3:28:83:95:82:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CcUO_hOq31QjsE8N3KizKIOVgj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/85a208-1ab6-46f7-b1a5-a26d25bc7654/1/mTRqYD0LULhO0epAlx7t8pGDI_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/85a208-1ab6-46f7-b1a5-a26d25bc7654/1/CcUO_hOq31QjsE8N3KizKIOVgj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.24.8.0/24
194.24.10.0/24
Signature Algorithm: sha256WithRSAEncryption
38:da:b7:62:d1:d4:d0:41:44:6f:a5:1a:28:e2:f4:98:2c:65:
fe:2b:2a:42:cf:f5:6d:df:f3:b9:86:20:f5:b5:aa:08:3c:dd:
13:c3:5e:db:5e:4f:29:b2:11:b3:7b:4e:33:eb:96:97:2b:cc:
89:9c:0a:f9:3b:c0:23:92:03:9a:4f:ae:9d:77:10:3e:d1:0a:
22:e2:90:89:78:38:74:7e:65:6d:3d:4c:72:6a:d9:d7:89:4c:
1e:51:c1:43:98:fa:7f:63:a2:0a:bc:e5:e2:ae:0b:fd:e7:01:
5c:83:bd:22:e0:77:ed:93:c9:29:4b:06:f4:cc:5e:b3:ee:a7:
f8:40:50:3d:1a:29:7a:ed:c8:b7:a3:24:b0:34:ff:b7:35:83:
e8:d5:88:5c:a8:e6:bf:89:e4:dd:32:23:6e:9b:1a:4a:87:83:
96:3c:01:ea:06:4b:42:3b:13:cd:10:86:d7:d8:7f:f7:ee:01:
95:a4:24:b7:e9:7f:f4:3b:ca:de:5f:2f:75:2a:f2:c5:75:6f:
64:c3:bf:a8:f1:d1:79:86:80:4d:40:3f:92:ae:a6:8e:37:7f:
d2:de:c4:bb:87:51:8a:fa:83:1b:22:cc:5d:3a:1a:25:3d:76:
99:cc:89:a5:21:07:a9:0c:71:17:04:65:ab:59:09:82:e2:97:
c8:60:5e:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 19:22:59 2024 by rpki-client on console-ams.rpki-client.org