Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/1c49eb-4dda-44ef-bf04-ec00e1a27cc8/1/HvfVUyMVoGTmKPrJaVO0SLOuYtQ.roa
File: HvfVUyMVoGTmKPrJaVO0SLOuYtQ.roa (raw, json)
Hash identifier: F3lxs9ZHy2iQVSmPS91bYU+MJn27LX2F283u+fz/yqQ=
Subject key identifier: 1E:F7:D5:53:23:15:A0:64:E6:28:FA:C9:69:53:B4:48:B3:AE:62:D4
Certificate issuer: /CN=421cba589920beebb19bc572ae6d501b8cf6bbf0
Certificate serial: 018FA4701F539E58AA4B237606A5EB30FCDF
Authority key identifier: 42:1C:BA:58:99:20:BE:EB:B1:9B:C5:72:AE:6D:50:1B:8C:F6:BB:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qhy6WJkgvuuxm8Vyrm1QG4z2u_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/1c49eb-4dda-44ef-bf04-ec00e1a27cc8/1/HvfVUyMVoGTmKPrJaVO0SLOuYtQ.roa
Signing time: Thu 23 May 2024 07:52:42 +0000
ROA not before: Thu 23 May 2024 07:52:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35277
IP address blocks: 185.37.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/1c49eb-4dda-44ef-bf04-ec00e1a27cc8/1/Qhy6WJkgvuuxm8Vyrm1QG4z2u_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/1c49eb-4dda-44ef-bf04-ec00e1a27cc8/1/Qhy6WJkgvuuxm8Vyrm1QG4z2u_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qhy6WJkgvuuxm8Vyrm1QG4z2u_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Sep 2024 13:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a4:70:1f:53:9e:58:aa:4b:23:76:06:a5:eb:30:fc:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421cba589920beebb19bc572ae6d501b8cf6bbf0
Validity
Not Before: May 23 07:52:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1ef7d5532315a064e628fac96953b448b3ae62d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:60:aa:ab:7e:36:ca:18:08:84:35:d0:5e:4f:
f0:2c:a9:0b:7c:a2:9b:b0:dc:c8:09:17:02:bf:15:
a1:36:bc:b5:2e:f7:c8:e7:0c:19:15:88:5d:8e:46:
44:11:f8:4b:af:9d:f1:0d:86:91:98:df:80:64:fa:
ea:c4:7d:76:c1:14:79:40:3d:1a:bf:c4:b0:59:89:
ee:f5:9d:0e:7e:65:64:8c:15:34:75:8b:1b:6b:74:
ee:eb:9d:4f:d5:82:77:f3:72:d5:b5:0d:01:a5:5c:
71:1c:43:44:11:e4:1c:6f:c7:c5:43:05:32:60:17:
37:4b:46:96:fb:65:bd:cb:cb:30:7e:ff:be:3a:bd:
5b:1c:2c:4d:31:09:09:16:96:41:8a:a1:35:d8:68:
07:bd:e8:16:09:80:3b:3f:e9:69:e4:4e:e1:74:d6:
2a:1f:c3:b4:4d:d5:92:fc:7f:68:2a:f2:5b:78:3e:
41:1c:a8:c4:ec:f8:9f:42:71:b2:57:37:31:82:bb:
d4:92:c5:21:b5:e2:18:c4:0b:b0:e9:f2:90:f6:a7:
3c:39:b6:d8:ba:56:0d:6c:c7:e5:18:3f:50:88:d6:
3c:17:d5:69:3b:ba:a8:11:2a:57:b6:d7:aa:ac:c6:
32:71:87:de:09:1e:fc:85:9f:ca:82:28:12:38:60:
b6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:F7:D5:53:23:15:A0:64:E6:28:FA:C9:69:53:B4:48:B3:AE:62:D4
X509v3 Authority Key Identifier:
keyid:42:1C:BA:58:99:20:BE:EB:B1:9B:C5:72:AE:6D:50:1B:8C:F6:BB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qhy6WJkgvuuxm8Vyrm1QG4z2u_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1c49eb-4dda-44ef-bf04-ec00e1a27cc8/1/HvfVUyMVoGTmKPrJaVO0SLOuYtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1c49eb-4dda-44ef-bf04-ec00e1a27cc8/1/Qhy6WJkgvuuxm8Vyrm1QG4z2u_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.8.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:23:83:43:65:7e:36:e1:22:55:54:b8:72:d8:31:7c:55:87:
f7:0e:0e:d6:d6:86:77:b7:cf:52:14:d7:93:df:89:01:46:7d:
d9:b0:90:09:42:ba:1f:18:e9:9c:c5:56:a7:dd:b2:65:2e:f5:
c7:6a:8a:d8:23:6b:c8:ba:b8:7a:68:fd:bb:ea:0a:49:be:5d:
d3:87:e1:1f:6c:13:a0:09:be:68:02:f5:53:0e:d3:f1:14:d4:
7f:a9:db:2b:a1:49:9b:67:f5:6d:c5:55:19:05:7e:d0:ce:64:
e2:23:02:4d:97:08:1d:44:6a:6e:4c:04:e0:0f:f8:35:24:36:
ff:63:9d:42:06:6e:62:1e:8e:16:f9:49:9b:71:3e:66:d0:16:
2a:bf:14:7e:07:58:bb:68:32:1f:f3:c4:51:f0:96:5a:b2:a0:
9e:e0:c7:02:d5:67:77:ad:84:a7:62:ab:4f:2f:05:cc:6d:6e:
55:8f:02:13:e7:42:c2:47:88:45:87:9d:68:bb:aa:89:91:88:
4c:af:43:49:9a:73:ac:ee:79:0c:62:b5:05:c3:5d:22:30:22:
2e:aa:c4:58:e8:83:fa:6f:92:a9:1d:63:f0:38:c6:b3:94:a0:
75:08:3d:73:c7:9c:be:ec:a1:a9:fc:ad:0e:1d:ee:fb:7f:cd:
11:48:26:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 21:50:19 2024 by rpki-client on console-ams.rpki-client.org