Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/O7knnzjh2K_eNGjcODkuPPlkUjE.roa
File: O7knnzjh2K_eNGjcODkuPPlkUjE.roa (raw, json)
Hash identifier: dmaINLwUMFz3tNj8FzYZgBmU7+jD440fAb6mGwNWC6E=
Subject key identifier: 3B:B9:27:9F:38:E1:D8:AF:DE:34:68:DC:38:39:2E:3C:F9:64:52:31
Certificate issuer: /CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Certificate serial: 018CC72723FF6E87EA1C58790ACFD0692431
Authority key identifier: 9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/O7knnzjh2K_eNGjcODkuPPlkUjE.roa
Signing time: Mon 01 Jan 2024 22:31:20 +0000
ROA not before: Mon 01 Jan 2024 22:31:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206375
IP address blocks: 93.157.188.0/24 maxlen: 24
93.157.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:23:ff:6e:87:ea:1c:58:79:0a:cf:d0:69:24:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Validity
Not Before: Jan 1 22:31:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3bb9279f38e1d8afde3468dc38392e3cf9645231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f3:91:a2:ea:34:ef:7b:65:53:a9:f4:f3:d0:
be:d8:68:1d:5e:7b:b9:00:a8:5d:a6:af:8b:25:3b:
9b:db:40:df:cb:ad:e2:ca:88:80:88:6b:7d:bb:c9:
95:bd:36:2e:a4:69:8d:dc:1b:39:d3:87:f9:9e:7b:
6d:76:30:1e:02:8d:2a:d5:73:5a:59:99:cf:bb:fe:
1f:9b:25:29:57:72:88:9a:9a:47:94:da:75:c8:da:
a1:99:a1:cd:cd:53:e1:5f:e3:99:62:d9:72:2e:fa:
64:b0:73:fd:f6:4c:32:e7:b7:a2:20:05:68:d1:82:
ca:e7:53:4a:72:6a:29:59:a8:2f:17:12:4d:d8:fd:
aa:7d:15:c3:6e:e7:81:b9:10:ab:03:60:94:9d:ac:
f1:84:a2:d9:a7:ae:17:c4:b5:29:ad:7d:e4:fb:ea:
ed:85:f8:7a:4a:a5:c2:e4:9a:86:75:9a:b7:8a:6d:
f2:0b:a2:30:28:05:e8:a4:23:e8:50:d2:32:a3:48:
ee:dd:b6:f1:f3:ad:54:1d:f4:fb:1a:a2:3f:51:20:
51:58:7b:ef:91:48:fe:53:65:13:da:84:9c:a3:7f:
54:81:09:1c:76:c8:e5:c0:5f:aa:ee:5b:0c:62:a6:
eb:56:d1:e3:90:9d:63:37:11:ae:8f:75:66:33:b9:
10:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B9:27:9F:38:E1:D8:AF:DE:34:68:DC:38:39:2E:3C:F9:64:52:31
X509v3 Authority Key Identifier:
keyid:9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/O7knnzjh2K_eNGjcODkuPPlkUjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.157.188.0/24
93.157.190.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:86:73:43:ba:d7:a2:39:60:84:76:39:83:66:1f:26:ab:12:
bb:c5:af:e4:a6:dd:f5:0d:97:5d:e4:03:d4:ab:8d:8c:56:05:
74:da:d8:93:83:24:d5:10:41:a9:3b:7f:aa:10:dd:03:fb:12:
4b:68:59:37:5f:0a:37:13:f8:85:2b:02:6b:57:70:6f:79:99:
2f:eb:51:d3:8c:91:87:8f:c4:36:ec:5c:67:f1:78:f7:60:5a:
d4:79:03:d7:f3:81:7f:28:4f:0f:c3:c3:6f:f9:16:40:c5:41:
8b:88:e6:20:15:0c:e1:24:96:b6:6d:b6:96:84:7a:66:94:2d:
a9:14:6d:32:64:49:2a:e0:3f:9d:bf:df:db:c3:ff:a0:4d:15:
b2:94:bd:72:66:e8:58:09:84:d6:23:05:9d:4f:51:8f:67:a0:
a5:10:c0:8d:ac:d6:0f:6d:9a:59:07:c2:9d:fc:35:a1:c4:49:
c0:25:56:76:f9:da:03:3b:84:42:61:96:83:07:99:28:d5:e3:
1b:82:98:73:31:b1:07:27:cb:bc:89:e0:14:9a:40:52:56:1e:
f9:22:72:c7:d5:4a:b9:8e:1c:f6:ab:e2:3b:9c:1e:c3:eb:55:
9e:45:05:31:ef:d3:10:d3:ff:07:d3:bc:34:d2:8e:2b:cc:13:
d9:49:6a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 18:04:25 2024 by rpki-client on console-fra.rpki-client.org