Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/EjtJ2vU1S8pVqUWUh5PeCW4pwDE.roa
File: EjtJ2vU1S8pVqUWUh5PeCW4pwDE.roa (raw, json)
Hash identifier: qTUeWqyndIVB+atc/2PdsKGwVHZJi1Tw6c++GorcFgI=
Subject key identifier: 12:3B:49:DA:F5:35:4B:CA:55:A9:45:94:87:93:DE:09:6E:29:C0:31
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 018CC94E0463393F74A9C9608611CBEB41EE
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/EjtJ2vU1S8pVqUWUh5PeCW4pwDE.roa
Signing time: Tue 02 Jan 2024 08:33:02 +0000
ROA not before: Tue 02 Jan 2024 08:33:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201143
IP address blocks: 193.59.96.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.mft
rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:04:63:39:3f:74:a9:c9:60:86:11:cb:eb:41:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 2 08:33:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=123b49daf5354bca55a945948793de096e29c031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:89:50:fd:aa:8e:c0:ae:40:da:65:ac:8d:5d:
07:5c:70:d4:fb:96:3b:02:74:cb:03:57:50:40:01:
6f:58:12:81:9e:6e:32:7c:80:eb:53:55:12:3e:82:
93:44:94:9a:f8:60:7c:41:90:88:17:95:f2:71:e9:
c3:c9:0e:3f:7e:5a:9c:c6:47:c1:4c:94:38:25:86:
7a:52:ae:f9:57:1c:97:53:da:be:9e:24:bb:56:dc:
26:fe:19:4b:47:3a:1f:8d:ff:e0:6f:fc:36:aa:79:
94:0b:06:1c:84:cc:8b:dd:54:a4:61:a2:cd:84:68:
77:6a:a2:00:5b:c6:8c:40:6d:6b:7f:9a:3f:7a:5e:
af:dc:d1:47:fe:ce:c9:a5:4e:0a:5b:5d:4c:d3:02:
cf:13:69:90:ea:80:75:54:21:cf:66:3f:ef:fe:cc:
14:7f:f7:6f:5c:c5:74:13:c0:28:fa:48:7d:30:e8:
2a:73:7b:7f:b6:36:b8:b1:d7:c6:cf:63:39:10:3c:
4a:09:38:b0:f4:3c:36:77:a7:a7:2c:d0:4b:bf:44:
51:66:6b:31:8f:f7:5b:aa:2c:5a:e6:9d:b7:63:ee:
f9:fe:c7:0e:7c:0d:f5:6d:cb:97:10:76:a6:03:e6:
88:7b:dc:57:90:19:a5:de:97:1a:d0:48:2f:2f:5e:
96:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:3B:49:DA:F5:35:4B:CA:55:A9:45:94:87:93:DE:09:6E:29:C0:31
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/EjtJ2vU1S8pVqUWUh5PeCW4pwDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.96.0/24
Signature Algorithm: sha256WithRSAEncryption
69:a1:42:dc:a6:75:05:5b:fb:95:f8:16:ab:a8:c0:f3:c9:78:
00:e9:2e:8c:88:50:b9:60:8c:91:fb:11:8e:7e:85:80:b8:76:
c4:21:27:6f:02:72:3e:0a:b5:10:a5:2f:8e:00:54:29:cb:ee:
9f:78:80:db:fa:4f:29:54:0a:0b:49:f4:e9:9b:b0:e3:4c:a1:
24:32:8a:a4:97:47:fa:54:c1:50:8f:e8:ec:1f:66:c5:12:54:
22:b5:2c:7f:f3:d3:de:d2:59:1f:f0:1c:55:b0:b0:b0:d1:e2:
36:3c:93:81:00:03:78:ff:1a:9d:85:77:b3:6f:e4:d5:01:2b:
44:1f:48:62:1f:6b:77:09:10:b8:a9:2d:f7:8c:3c:c9:bd:51:
5e:15:e3:40:ea:78:18:11:f9:8d:46:45:5f:80:4d:37:71:a8:
f3:b4:76:0f:a4:d2:8c:44:76:b5:06:43:4a:0b:1d:53:4b:f9:
bb:64:cd:32:d2:4c:97:0a:5d:f0:ae:ad:30:32:fe:db:ff:2d:
28:c2:e8:8e:9c:a3:e6:99:fa:cc:7a:e4:e4:e9:10:87:dd:6d:
c8:fc:b6:b6:18:a5:9b:a4:09:be:69:8c:7d:ea:a2:93:ad:a8:
c5:09:ba:26:fe:77:1f:de:f3:16:ea:01:99:be:19:a9:35:5c:
ac:27:09:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 18:56:08 2024 by rpki-client on console-fra.rpki-client.org