Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/N3v6z9E5ug2WGYz8mPmlYhaym0Q.roa
File: N3v6z9E5ug2WGYz8mPmlYhaym0Q.roa (raw, json)
Hash identifier: ZP+AXqMtKD6vgaBBAqgae9vuCl7NZGvX+2Myc2b1VVE=
Subject key identifier: 37:7B:FA:CF:D1:39:BA:0D:96:19:8C:FC:98:F9:A5:62:16:B2:9B:44
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018CC64ADE72C5391993E6A32238D7B8B798
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/N3v6z9E5ug2WGYz8mPmlYhaym0Q.roa
Signing time: Mon 01 Jan 2024 18:30:44 +0000
ROA not before: Mon 01 Jan 2024 18:30:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28727
IP address blocks: 80.96.175.0/24 maxlen: 24
80.96.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 17:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:de:72:c5:39:19:93:e6:a3:22:38:d7:b8:b7:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 18:30:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=377bfacfd139ba0d96198cfc98f9a56216b29b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:96:fd:04:b4:b3:9b:37:a9:f1:70:5a:cd:cb:
34:22:c9:65:03:4f:5f:9c:7a:99:1a:b2:1d:b8:06:
0d:83:9a:ae:99:10:9b:9c:02:32:fb:6a:a5:e1:3d:
75:05:be:e2:ae:e7:3b:a5:ad:7d:11:8e:aa:a6:53:
3d:53:59:3e:fd:c9:e2:f5:fa:77:a8:78:54:75:74:
5a:6b:a1:2d:05:38:f0:0e:43:9a:28:d6:2c:1c:7f:
87:60:e0:65:de:7c:d7:05:f7:ba:28:0f:30:af:94:
21:bb:55:29:e3:29:0a:0a:2a:e7:db:a1:2c:15:99:
81:c3:e2:e3:c7:e7:f6:5c:c7:bf:bb:81:68:98:f0:
0d:c7:0c:cd:29:52:93:f0:8e:35:86:43:87:54:fe:
92:86:f5:6c:a6:48:4f:85:b8:e6:e7:27:1e:cf:87:
5d:bd:69:c1:75:54:b8:f2:a2:f2:82:49:91:5b:84:
a6:10:a5:3a:e9:e5:08:56:54:7f:32:97:da:cc:e7:
ed:99:fa:c5:f9:5e:cd:8d:9b:66:6d:d9:60:ce:7b:
9a:9d:4b:20:f1:b2:f6:3d:1f:03:64:e8:ec:ff:40:
8f:21:e5:be:a1:9a:f6:61:5f:5b:e3:01:c6:ba:81:
8a:2c:64:50:f2:20:cd:59:4c:b9:e5:3d:b5:ba:19:
f0:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:7B:FA:CF:D1:39:BA:0D:96:19:8C:FC:98:F9:A5:62:16:B2:9B:44
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/N3v6z9E5ug2WGYz8mPmlYhaym0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.153.0/24
80.96.175.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:c1:d6:7c:b5:e2:49:9a:ba:fb:f0:cb:a5:07:20:21:2e:49:
48:f5:ab:c0:30:c7:37:14:a7:20:4f:6f:4f:fa:61:81:b8:b1:
54:b1:2b:5c:f3:93:2d:de:63:b3:24:46:d2:ab:83:61:9c:99:
ce:a4:1f:87:2a:90:32:86:44:63:bf:f5:7b:f5:4a:c1:95:ce:
20:29:c3:28:b9:f9:8e:29:c0:20:b7:17:27:ae:e5:ab:1a:17:
29:d8:c0:fd:2c:b0:cf:df:ab:a5:3c:9d:d5:01:2a:ca:84:81:
ac:bf:bb:dd:5f:20:12:77:4b:d4:99:d0:14:ee:c9:c8:e9:ad:
e2:6b:b2:b0:09:12:61:a6:6d:9c:53:70:8d:09:c5:96:da:4c:
3a:8e:96:37:89:e8:b1:d0:62:78:4a:ab:e6:db:7e:e7:19:2e:
0b:79:21:17:6f:27:28:91:5d:15:3e:8f:fc:14:c2:94:80:c7:
60:f6:34:12:cf:2b:40:9a:69:1a:cd:4c:66:9b:f0:22:a9:47:
77:98:fa:8a:ee:cf:14:44:5a:df:df:9a:dc:7f:74:83:f2:13:
f2:63:db:2c:ec:82:fb:21:eb:13:5f:d4:47:96:78:a4:4e:13:
09:12:e6:d5:56:17:e2:ee:58:6a:c4:64:20:61:3b:6c:6b:5a:
ed:0a:44:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 23:01:28 2024 by rpki-client on console-ams.rpki-client.org