Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/FCPmPSVYIXdV8epuYPT_yu76qWk.roa
File: FCPmPSVYIXdV8epuYPT_yu76qWk.roa (raw, json)
Hash identifier: Jk1877DOzQXRd2V/VrekY6Xpd0VfLuCxkCmOXou9iPU=
Subject key identifier: 14:23:E6:3D:25:58:21:77:55:F1:EA:6E:60:F4:FF:CA:EE:FA:A9:69
Certificate issuer: /CN=9f0743496c7ff3effb870601139cad9d2f271e10
Certificate serial: 01909B1D69745667903CD6A9D199E0812558
Authority key identifier: 9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/FCPmPSVYIXdV8epuYPT_yu76qWk.roa
Signing time: Wed 10 Jul 2024 05:28:34 +0000
ROA not before: Wed 10 Jul 2024 05:28:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5511
IP address blocks: 62.100.216.0/22 maxlen: 24
185.89.251.0/24 maxlen: 24
193.228.224.0/24 maxlen: 24
193.239.146.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9b:1d:69:74:56:67:90:3c:d6:a9:d1:99:e0:81:25:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0743496c7ff3effb870601139cad9d2f271e10
Validity
Not Before: Jul 10 05:28:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1423e63d2558217755f1ea6e60f4ffcaeefaa969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:40:50:23:1a:00:ed:3f:9a:a0:c5:ed:46:ba:
dc:69:df:15:30:23:17:19:87:d1:f2:d2:98:3e:d9:
7d:ef:f2:3f:b5:20:1d:be:e9:69:2d:36:d1:c0:4d:
7e:ad:47:91:5a:ef:19:1e:04:57:ea:6e:29:43:f7:
ed:dc:bb:6d:f0:96:99:52:05:3b:14:f8:fd:c4:1e:
44:93:ad:36:d1:94:07:13:a6:d2:87:ac:2a:71:3c:
58:f5:90:50:3f:5e:fc:00:9a:36:9a:42:d4:7d:f2:
e7:65:75:5e:29:c4:de:8e:27:2d:4b:5b:8e:c5:69:
e6:96:bb:fe:97:95:00:72:4a:bd:0b:51:33:8d:67:
1b:e7:56:a4:35:b0:8d:53:d9:35:1d:89:4f:31:c4:
d1:c2:95:8b:9f:14:00:54:6e:09:9c:64:0c:14:b4:
ed:a7:0f:88:c4:98:58:6f:3a:9b:c4:cb:70:cb:9b:
9e:76:e6:99:17:cc:be:51:af:87:52:e1:df:6c:5f:
aa:2b:0f:17:eb:58:be:11:9d:49:bc:73:8d:da:c4:
ba:c7:00:8e:88:0b:91:af:7d:be:60:4e:7b:cd:4b:
f1:85:24:3f:6a:8e:bc:e5:f3:85:24:39:f9:29:a0:
a0:eb:e7:2c:29:c4:0b:8a:ae:35:22:04:d1:10:14:
5d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:23:E6:3D:25:58:21:77:55:F1:EA:6E:60:F4:FF:CA:EE:FA:A9:69
X509v3 Authority Key Identifier:
keyid:9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/FCPmPSVYIXdV8epuYPT_yu76qWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.100.216.0/22
185.89.251.0/24
193.228.224.0/24
193.239.146.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:62:da:51:54:05:a6:a9:c5:5b:b1:17:f2:9e:b6:d5:ac:62:
24:b2:6e:c5:a7:61:ff:cd:20:14:ba:55:d4:74:ce:4d:21:74:
44:a3:eb:d2:77:3e:a8:10:12:34:12:5e:6f:71:8e:59:40:35:
32:38:96:a5:ea:07:fe:7c:6c:4c:96:46:c5:8d:08:a3:2c:99:
30:66:ff:01:ec:ea:4f:90:ec:53:f6:34:9e:a0:9c:f3:5d:d1:
3b:69:bc:57:76:0d:de:7f:8a:69:b0:16:b9:d6:b9:fb:55:92:
53:8a:d5:91:22:c3:ac:25:39:e4:5f:0f:33:8d:37:6d:1f:b7:
f9:6c:57:af:95:58:35:34:88:97:8c:24:8e:b8:6a:48:01:83:
7e:f0:a7:03:f7:3b:1e:cd:5a:d1:db:47:98:75:3e:09:ce:80:
4a:ef:d6:0f:c7:ee:6b:1b:78:f7:80:ba:b0:e9:08:85:19:22:
e7:1c:7e:f1:e1:61:eb:3f:1b:09:25:33:24:d8:7a:f2:ec:56:
53:74:19:9c:ad:7a:84:43:fc:83:37:a0:0b:b9:35:38:9d:3f:
bf:87:b6:4e:14:4a:92:a0:5f:f9:2b:dd:96:f8:03:7b:f7:a3:
74:ce:77:14:8b:50:22:c4:78:e4:e5:0e:d7:f9:1c:c5:c7:1c:
b3:11:93:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 20:24:13 2024 by rpki-client on console-fra.rpki-client.org