Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/24d7ad-83f1-4f14-aa1d-6de6d18cc39f/1/jbpA_APq0yQSQ5uSHqNchNczJ94.roa
File: jbpA_APq0yQSQ5uSHqNchNczJ94.roa (raw, json)
Hash identifier: PUXutTg2YmJkj2A+cGtJEJX4UniIknn7QRy4M7i4R6A=
Subject key identifier: 8D:BA:40:FC:03:EA:D3:24:12:43:9B:92:1E:A3:5C:84:D7:33:27:DE
Certificate issuer: /CN=6e84b12393bfcb0e6d6f32cc95c0d71174fc9b30
Certificate serial: 018CC9BBF271722E8C98F09CFAEFEC2F5A14
Authority key identifier: 6E:84:B1:23:93:BF:CB:0E:6D:6F:32:CC:95:C0:D7:11:74:FC:9B:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/boSxI5O_yw5tbzLMlcDXEXT8mzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/24d7ad-83f1-4f14-aa1d-6de6d18cc39f/1/jbpA_APq0yQSQ5uSHqNchNczJ94.roa
Signing time: Tue 02 Jan 2024 10:33:06 +0000
ROA not before: Tue 02 Jan 2024 10:33:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31554
IP address blocks: 194.42.102.0/23 maxlen: 23
193.200.126.0/23 maxlen: 23
194.9.92.0/23 maxlen: 23
194.116.200.0/23 maxlen: 23
193.239.194.0/23 maxlen: 23
2001:67c:115c::/48 maxlen: 48
2001:67c:1e0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/24d7ad-83f1-4f14-aa1d-6de6d18cc39f/1/boSxI5O_yw5tbzLMlcDXEXT8mzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/24d7ad-83f1-4f14-aa1d-6de6d18cc39f/1/boSxI5O_yw5tbzLMlcDXEXT8mzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/boSxI5O_yw5tbzLMlcDXEXT8mzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:f2:71:72:2e:8c:98:f0:9c:fa:ef:ec:2f:5a:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e84b12393bfcb0e6d6f32cc95c0d71174fc9b30
Validity
Not Before: Jan 2 10:33:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8dba40fc03ead32412439b921ea35c84d73327de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f3:f6:d5:16:ef:09:64:80:e6:ed:30:a1:8a:
73:ec:b1:b9:bd:fe:75:af:c8:8a:c8:f7:ed:9c:11:
70:91:55:cf:2b:ae:44:5c:a8:bb:52:c8:ee:7d:e3:
7e:a2:fe:56:7e:9b:aa:fc:df:5b:f1:d7:4c:98:cb:
0c:c1:2c:c6:0a:38:20:83:9c:36:27:58:9e:20:de:
1f:8c:fa:19:3b:a5:7d:d2:28:6a:21:21:ed:71:a6:
44:9a:ba:81:14:e5:e5:5f:6c:4a:69:ea:d5:9e:f4:
e3:b1:25:d9:ac:2b:95:f0:c7:35:a3:9b:b6:ad:bc:
8e:59:94:48:0c:1b:2e:76:8f:69:43:a4:70:1b:56:
a1:61:ad:54:c4:75:b0:8b:00:f1:1d:11:15:03:4e:
0b:14:96:a6:a0:b0:1d:ea:ee:f0:69:45:8d:f6:20:
36:7b:8f:0a:6a:fd:9f:c5:d7:20:02:59:c4:66:3a:
31:86:37:04:fd:54:0e:ff:87:70:4e:c7:5a:f6:03:
3e:39:23:72:5f:86:ee:5d:6c:f7:69:89:aa:99:6b:
a4:93:e4:c8:84:8a:f0:ba:0a:b1:5c:99:d0:41:6a:
a2:c0:f3:07:db:22:09:a4:6b:5d:ef:3f:af:77:3d:
6f:7a:1c:d4:7f:3d:3c:65:b5:2e:a3:ec:2c:d3:b1:
54:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:BA:40:FC:03:EA:D3:24:12:43:9B:92:1E:A3:5C:84:D7:33:27:DE
X509v3 Authority Key Identifier:
keyid:6E:84:B1:23:93:BF:CB:0E:6D:6F:32:CC:95:C0:D7:11:74:FC:9B:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/boSxI5O_yw5tbzLMlcDXEXT8mzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/24d7ad-83f1-4f14-aa1d-6de6d18cc39f/1/jbpA_APq0yQSQ5uSHqNchNczJ94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/24d7ad-83f1-4f14-aa1d-6de6d18cc39f/1/boSxI5O_yw5tbzLMlcDXEXT8mzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.126.0/23
193.239.194.0/23
194.9.92.0/23
194.42.102.0/23
194.116.200.0/23
IPv6:
2001:67c:1e0::/48
2001:67c:115c::/48
Signature Algorithm: sha256WithRSAEncryption
4d:97:68:c6:b2:1a:2f:b0:b3:8c:95:97:fd:c2:e9:0b:53:ce:
e3:8f:8d:d5:c0:51:a2:07:ec:00:92:66:aa:84:22:bd:73:52:
97:c4:75:40:34:92:36:f4:6c:01:ad:65:d3:9d:99:aa:7e:31:
ac:41:f9:a1:72:84:41:fe:a8:7b:48:c7:af:49:10:6d:c2:5b:
68:73:85:b2:c8:e8:99:52:fc:3c:b7:0b:da:5f:32:ba:f9:8e:
54:77:d3:a5:69:cf:09:ce:c5:9a:c2:d8:7b:86:e0:22:55:16:
8c:e8:1f:9a:0f:fd:9a:e2:b0:4b:31:2f:b5:36:c2:a6:90:08:
1c:7c:87:08:7b:fc:b7:f7:c5:e9:12:c2:0d:c4:59:c4:39:b1:
b5:ff:96:29:a4:2a:0d:bd:65:2a:15:bf:0e:e2:c9:37:8e:9e:
0a:91:34:7d:87:9b:55:af:4a:8a:b2:cb:99:5d:68:8f:a7:99:
a2:f1:0f:50:e8:52:c8:57:80:72:db:bc:da:5d:78:c4:1d:61:
5d:37:88:54:a5:2c:26:39:92:fd:5a:08:63:da:af:0f:43:bc:
01:1d:9e:09:2d:be:7a:b8:53:3e:a8:8d:dd:91:7a:31:c6:13:
a1:72:02:fa:fa:f9:a3:5d:65:db:1e:6a:ce:9e:9d:96:46:b5:
2e:88:9b:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:00:32 2024 by rpki-client on console-ams.rpki-client.org