Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/dY0BJpDBbX_NshX5kB86-UwYPiE.roa
File: dY0BJpDBbX_NshX5kB86-UwYPiE.roa (raw, json)
Hash identifier: eYFqQqUYCXJedeXEaERzkthL1OzW0pGnPviMcIoyyvo=
Subject key identifier: 75:8D:01:26:90:C1:6D:7F:CD:B2:15:F9:90:1F:3A:F9:4C:18:3E:21
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 018CC801B9163FF883AB69EB4D506CCEC943
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/dY0BJpDBbX_NshX5kB86-UwYPiE.roa
Signing time: Tue 02 Jan 2024 02:30:05 +0000
ROA not before: Tue 02 Jan 2024 02:30:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8255
IP address blocks: 193.57.225.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:b9:16:3f:f8:83:ab:69:eb:4d:50:6c:ce:c9:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: Jan 2 02:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=758d012690c16d7fcdb215f9901f3af94c183e21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d8:40:de:23:01:1a:3d:a7:33:13:45:38:13:
11:57:12:27:aa:92:56:0f:fa:ab:f6:18:03:12:13:
a7:48:60:a5:b9:80:f2:cd:21:f8:c4:6d:43:ec:51:
b2:e9:dc:3f:5f:ca:b8:58:95:24:9a:93:e3:05:f6:
f5:34:9e:5a:09:cf:bc:64:3b:14:de:4c:0f:bf:00:
e6:50:71:ef:3f:33:2c:e4:41:6a:4c:9b:2d:0a:ba:
c9:60:09:28:a3:09:5f:db:8a:e7:10:8b:e4:61:e0:
98:21:ac:09:fd:21:e7:58:ac:7b:75:61:36:4e:6e:
4e:d7:ce:5e:6b:93:cd:e6:51:eb:cd:69:67:96:51:
2d:07:43:5e:83:16:42:00:c1:7e:be:1d:5f:5a:52:
b2:4a:58:2a:37:87:90:57:ec:a8:00:e8:12:73:44:
62:d8:9a:5a:48:cd:d1:f8:76:5d:cd:08:f9:f2:1f:
55:87:d2:c6:8c:53:9a:8d:87:4b:1d:77:ed:7d:38:
a8:68:99:8b:49:46:8d:0e:15:cb:33:f8:19:03:f1:
e3:56:41:05:e2:dd:b2:62:de:ec:c0:f8:28:4a:92:
41:af:e7:ab:71:33:2a:6c:d1:bb:1d:ca:a8:34:c1:
7e:83:8e:d8:0a:2d:69:71:81:cf:ae:a2:1a:90:3c:
67:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:8D:01:26:90:C1:6D:7F:CD:B2:15:F9:90:1F:3A:F9:4C:18:3E:21
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/dY0BJpDBbX_NshX5kB86-UwYPiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.225.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:db:de:c6:74:02:b5:46:eb:08:87:04:3e:09:a0:66:78:b6:
5d:ff:f0:ab:3d:5f:c7:17:b4:e9:55:39:38:37:e5:c2:75:84:
4d:5c:04:3c:61:d0:da:37:bc:2d:88:45:4e:45:79:51:5e:ec:
bb:6c:e2:29:d5:04:75:03:8e:f6:52:a6:5d:5a:13:0e:93:58:
71:54:ab:f2:8c:19:91:3d:16:b8:66:25:6b:e1:72:aa:c7:0c:
39:e8:b2:b4:1b:82:15:a4:22:2b:d3:41:3e:5f:60:1d:98:50:
0e:0b:ab:32:c3:97:3d:79:ed:01:33:f1:0b:f8:7f:3d:06:03:
24:df:de:ea:6f:09:c5:8b:39:d2:a3:0f:45:a4:47:3a:ab:d8:
a7:bf:45:7f:20:be:dd:0d:14:42:84:12:0e:7b:5c:64:d1:e5:
51:e1:fe:8b:f8:a2:8d:3b:76:f7:8a:1e:7b:c5:b1:27:11:30:
5e:34:c7:23:1e:33:80:fe:d2:36:5d:09:a8:60:ce:37:f5:42:
83:38:33:73:d0:64:46:1e:75:c7:ff:fa:71:97:2f:f9:bc:f1:
02:b5:1c:a6:64:f7:80:ae:8a:db:9c:69:15:cb:84:ba:f1:3e:
a3:f5:24:7e:98:28:f3:cf:7a:df:b5:27:7d:cc:3d:93:6b:5a:
9f:28:d0:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 22:50:16 2024 by rpki-client on console-fra.rpki-client.org