Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/d377cd-e36f-4cb9-825b-c02334be128c/1/jnUT6ZqIXwGLuMJpnbgdDxfYD_w.roa
File: jnUT6ZqIXwGLuMJpnbgdDxfYD_w.roa (raw, json)
Hash identifier: qsZ7yFjAZdOt9kBsj7vW4nXf0RjYKnfROHXWVKsAQt4=
Subject key identifier: 8E:75:13:E9:9A:88:5F:01:8B:B8:C2:69:9D:B8:1D:0F:17:D8:0F:FC
Certificate issuer: /CN=ad9afade4183ae80048d6b84818eec46f680fa26
Certificate serial: 018CCA2A9F9128AC29FACD234509B9F062F2
Authority key identifier: AD:9A:FA:DE:41:83:AE:80:04:8D:6B:84:81:8E:EC:46:F6:80:FA:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZr63kGDroAEjWuEgY7sRvaA-iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/d377cd-e36f-4cb9-825b-c02334be128c/1/jnUT6ZqIXwGLuMJpnbgdDxfYD_w.roa
Signing time: Tue 02 Jan 2024 12:34:00 +0000
ROA not before: Tue 02 Jan 2024 12:34:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212788
IP address blocks: 213.170.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/d377cd-e36f-4cb9-825b-c02334be128c/1/rZr63kGDroAEjWuEgY7sRvaA-iY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/d377cd-e36f-4cb9-825b-c02334be128c/1/rZr63kGDroAEjWuEgY7sRvaA-iY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rZr63kGDroAEjWuEgY7sRvaA-iY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:9f:91:28:ac:29:fa:cd:23:45:09:b9:f0:62:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9afade4183ae80048d6b84818eec46f680fa26
Validity
Not Before: Jan 2 12:34:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8e7513e99a885f018bb8c2699db81d0f17d80ffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:58:ef:52:d6:49:e6:42:24:a7:a5:4d:88:ab:
46:7a:20:c9:a6:3c:c0:a9:ab:86:8b:66:09:07:66:
ef:28:ea:09:36:15:33:be:27:6c:bc:41:7e:40:0c:
2c:a1:8c:20:bb:66:b3:6c:82:3b:26:2a:4a:0d:e5:
42:6c:3e:a4:a7:91:2a:15:17:a6:11:a9:ae:a4:56:
d7:ea:dd:ce:f9:78:47:41:0d:0d:0c:a0:b7:ec:a8:
39:50:7e:ba:a3:2f:cd:fa:d9:6a:19:4d:50:2b:f0:
6a:c9:50:58:55:4e:c0:99:1f:1f:87:da:38:6a:e8:
fe:33:64:20:81:9f:79:d3:ea:7a:b8:2a:0b:f9:70:
2b:71:5d:90:31:1e:0f:77:b3:be:b5:5e:52:d4:47:
f0:e7:dd:74:63:7a:0c:0b:70:9c:8a:08:4c:37:93:
27:c8:ab:47:36:0d:7c:b6:dc:4c:52:34:38:7a:6a:
75:dc:88:a0:69:97:b1:27:15:a5:62:24:d5:c5:6a:
bc:cb:f3:2b:b0:ac:1e:f3:c1:c5:0b:35:02:d7:ce:
0a:2f:e2:ad:dd:4a:82:71:55:0a:b6:f9:7f:6c:1b:
4e:49:f3:a7:54:38:b7:91:37:10:18:6f:19:97:d9:
ca:a8:88:fd:fd:2a:17:f0:12:93:83:a8:ec:28:99:
74:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:75:13:E9:9A:88:5F:01:8B:B8:C2:69:9D:B8:1D:0F:17:D8:0F:FC
X509v3 Authority Key Identifier:
keyid:AD:9A:FA:DE:41:83:AE:80:04:8D:6B:84:81:8E:EC:46:F6:80:FA:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZr63kGDroAEjWuEgY7sRvaA-iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/d377cd-e36f-4cb9-825b-c02334be128c/1/jnUT6ZqIXwGLuMJpnbgdDxfYD_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/d377cd-e36f-4cb9-825b-c02334be128c/1/rZr63kGDroAEjWuEgY7sRvaA-iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.170.141.0/24
Signature Algorithm: sha256WithRSAEncryption
95:d1:76:60:f4:9a:dc:db:15:d8:6f:7a:51:52:7a:5d:fa:2c:
9f:2a:3a:d0:a4:07:81:58:bd:d7:dd:00:ac:8f:62:64:1c:08:
31:00:ca:89:05:92:2d:6a:c8:5e:5d:c7:ab:e3:83:63:a2:da:
23:1e:b2:2e:e4:be:f5:9a:73:3d:5f:66:69:b4:26:2f:d0:59:
66:a1:da:d3:4e:36:c0:bc:84:65:01:5d:d4:02:e7:7b:11:d9:
20:a2:2f:c1:f2:2d:73:05:1f:7f:67:11:b2:ea:37:65:90:0e:
85:85:f6:41:c3:fe:ac:ff:27:90:7e:99:54:27:6e:d4:e2:7f:
a3:97:96:42:35:01:fd:8d:a9:70:6a:9a:20:98:8b:b9:d3:6b:
a3:21:ac:68:5f:a0:38:ce:78:97:7b:a5:c1:a2:96:d2:29:a9:
52:57:ba:ac:69:48:eb:de:ee:06:7f:57:d2:05:f3:ef:70:30:
98:9f:64:e7:3e:53:98:71:a1:c6:46:12:40:71:18:91:f3:f7:
22:13:b9:84:6e:22:5d:55:77:41:d4:ec:01:9e:b5:af:6f:ab:
b4:04:65:f6:d3:9d:80:77:0d:7b:db:cf:9a:40:4a:3d:f8:86:
e4:62:19:c2:d4:8b:c1:16:b3:be:e3:77:81:15:d9:40:c9:2e:
60:3d:af:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:13:28 2024 by rpki-client on console-fra.rpki-client.org