Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/9_RaElh4q4guvRqQ8v52w_iXLVU.roa
File: 9_RaElh4q4guvRqQ8v52w_iXLVU.roa (raw, json)
Hash identifier: LOssJqlEH70LIHKZywrnxI81/yDOYVK7EiZnca/cRsU=
Subject key identifier: F7:F4:5A:12:58:78:AB:88:2E:BD:1A:90:F2:FE:76:C3:F8:97:2D:55
Certificate issuer: /CN=b39ecd24f321988deb7c19dca052a4e3c49b60ea
Certificate serial: 0192F71994AB3214C184B648A56C6CC075DB
Authority key identifier: B3:9E:CD:24:F3:21:98:8D:EB:7C:19:DC:A0:52:A4:E3:C4:9B:60:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/9_RaElh4q4guvRqQ8v52w_iXLVU.roa
Signing time: Mon 04 Nov 2024 12:15:01 +0000
ROA not before: Mon 04 Nov 2024 12:15:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215287
IP address blocks: 178.248.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/s57NJPMhmI3rfBncoFKk48SbYOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/s57NJPMhmI3rfBncoFKk48SbYOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 02:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f7:19:94:ab:32:14:c1:84:b6:48:a5:6c:6c:c0:75:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b39ecd24f321988deb7c19dca052a4e3c49b60ea
Validity
Not Before: Nov 4 12:15:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f7f45a125878ab882ebd1a90f2fe76c3f8972d55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:68:5c:a9:09:dc:64:05:3e:cd:6b:8a:d9:7b:
d6:69:05:08:35:84:87:a0:f9:85:fd:a4:ea:cf:d4:
16:d6:29:76:98:c0:b9:d4:80:b0:74:0c:03:ff:ef:
4a:22:5c:80:0a:67:15:af:0a:61:bb:77:ae:0d:fa:
5a:b4:b6:90:24:41:a1:b6:fa:2e:cd:2c:a2:c6:39:
96:ee:bb:f5:38:c0:09:2a:30:2f:20:4b:a8:01:c6:
ab:de:d9:e9:03:54:e5:45:e9:c8:99:2c:7f:aa:bd:
7d:4b:8b:24:90:4c:f6:81:b1:53:29:4e:2c:08:3c:
e8:d8:67:df:62:30:33:3c:c9:c4:5e:c9:c8:10:ef:
ab:c6:72:72:92:b2:d3:5a:4c:c9:61:af:38:0a:33:
90:ea:c5:3c:85:de:b3:c4:4d:66:99:bd:ca:86:69:
a9:f9:a5:b3:af:c5:68:1a:6a:4c:ca:8c:e7:9f:80:
c6:ee:18:bb:00:56:83:40:1e:aa:8c:98:48:fe:53:
97:5b:1c:87:15:a2:63:a1:56:48:73:de:43:21:c2:
eb:3e:a2:41:3c:e3:b0:0f:3e:48:31:75:d4:73:0e:
9d:e0:75:22:31:29:7b:72:9a:25:35:b0:a8:c0:36:
5d:a3:28:25:5a:76:ac:8a:6b:7c:16:eb:ec:c2:d1:
44:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:F4:5A:12:58:78:AB:88:2E:BD:1A:90:F2:FE:76:C3:F8:97:2D:55
X509v3 Authority Key Identifier:
keyid:B3:9E:CD:24:F3:21:98:8D:EB:7C:19:DC:A0:52:A4:E3:C4:9B:60:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s57NJPMhmI3rfBncoFKk48SbYOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/9_RaElh4q4guvRqQ8v52w_iXLVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e3826d-5ada-4e43-9084-1ba695faef25/1/s57NJPMhmI3rfBncoFKk48SbYOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.79.0/24
Signature Algorithm: sha256WithRSAEncryption
69:92:fd:8c:6c:3e:06:fa:3a:a2:3c:56:61:c8:f6:2a:db:6a:
db:29:6d:07:35:ad:c4:00:64:95:66:1e:99:2d:9c:af:c4:9e:
d6:22:d1:b1:4f:0e:bb:59:8b:61:fa:0f:db:2d:58:84:41:67:
41:2b:f5:fb:65:ab:53:a7:9f:ca:ab:81:65:c8:3e:2e:2b:37:
a7:7e:0c:75:04:f5:da:28:c7:08:11:f8:6f:7f:eb:1c:6b:39:
e5:9f:9b:d1:9c:ca:c7:70:39:30:01:ac:fd:56:e9:85:b3:57:
0e:f6:98:c7:a0:cb:d1:a4:85:b5:da:df:e6:df:49:11:45:8d:
4d:2d:ef:15:c2:11:79:a3:f9:54:1c:52:5d:47:b5:89:55:2e:
b3:dc:5e:68:d2:8e:bb:ba:9f:2b:84:36:13:d2:53:4d:27:05:
87:35:6d:17:d5:82:38:d3:f7:10:3a:12:15:63:c6:09:f7:df:
39:74:0a:bd:36:69:6d:d0:d8:81:e0:15:3c:0c:23:84:29:bf:
6a:0b:7a:d5:44:97:17:f0:56:3a:62:bb:21:db:29:f6:1a:16:
59:16:39:58:d9:28:7e:c5:df:b3:bc:20:03:ca:32:97:7c:f8:
a3:90:ed:5f:ef:1f:6b:e1:02:01:3e:80:f1:0a:a1:45:79:5f:
a1:91:fc:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:19:36 2024 by rpki-client on console-ams.rpki-client.org