Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/c771c3-ca90-4fd2-99ac-04c82ed6ed4c/1/R6GUkkC9LwaN7lX366GHumR5yJU.roa
File: R6GUkkC9LwaN7lX366GHumR5yJU.roa (raw, json)
Hash identifier: Kx8MTAhbdwszKs/6LjgX+XegJ3KEfxSF0SCKjjmZobA=
Subject key identifier: 47:A1:94:92:40:BD:2F:06:8D:EE:55:F7:EB:A1:87:BA:64:79:C8:95
Certificate issuer: /CN=41fb6b1708335006b0a6aac650bfaff3fc8d292c
Certificate serial: 018CC8016E22992CB822870CCB8C6DE87F06
Authority key identifier: 41:FB:6B:17:08:33:50:06:B0:A6:AA:C6:50:BF:AF:F3:FC:8D:29:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QftrFwgzUAawpqrGUL-v8_yNKSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/c771c3-ca90-4fd2-99ac-04c82ed6ed4c/1/R6GUkkC9LwaN7lX366GHumR5yJU.roa
Signing time: Tue 02 Jan 2024 02:29:46 +0000
ROA not before: Tue 02 Jan 2024 02:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59489
IP address blocks: 193.32.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/c771c3-ca90-4fd2-99ac-04c82ed6ed4c/1/QftrFwgzUAawpqrGUL-v8_yNKSw.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/c771c3-ca90-4fd2-99ac-04c82ed6ed4c/1/QftrFwgzUAawpqrGUL-v8_yNKSw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QftrFwgzUAawpqrGUL-v8_yNKSw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 07:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:6e:22:99:2c:b8:22:87:0c:cb:8c:6d:e8:7f:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41fb6b1708335006b0a6aac650bfaff3fc8d292c
Validity
Not Before: Jan 2 02:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47a1949240bd2f068dee55f7eba187ba6479c895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:8e:b8:92:59:2b:60:f7:73:bf:45:8a:ee:00:
15:9c:a3:62:26:8a:65:30:36:9c:77:1c:d7:db:04:
34:cc:0f:2d:3c:84:f7:df:a4:4b:1f:f3:2a:5f:64:
01:5f:1f:9a:74:9b:1d:ca:60:b0:7e:e9:fe:16:55:
14:2c:88:ab:7c:72:60:57:ba:ed:fe:3c:b6:66:e8:
0a:a4:7c:88:bd:46:d5:38:ea:38:6b:18:cc:8c:61:
3a:25:4c:2e:3d:cd:3c:bc:37:6b:aa:71:d2:e4:d4:
f2:97:85:03:0b:7c:d5:76:a3:77:42:6e:55:bc:ea:
af:60:bf:4c:68:0a:18:02:bf:02:df:e5:00:e6:42:
7f:b7:7d:3e:1e:09:1b:ab:2b:05:14:a0:88:f6:71:
8d:76:85:3c:4e:55:39:07:cf:a4:fe:7a:61:46:13:
fa:76:47:c4:39:43:98:1a:18:86:79:31:de:87:46:
82:e5:05:e3:7d:ba:30:ca:7e:47:2e:f4:f7:85:e9:
8d:80:8b:bf:cb:e5:2b:22:cf:e1:ee:d3:39:20:30:
00:5c:e7:09:da:b5:21:79:75:a4:49:0a:42:ca:59:
4a:ec:75:4d:0d:2e:33:5e:f4:40:10:64:c5:e5:fb:
56:86:b6:85:3d:c9:b2:b2:2e:fd:6c:fb:54:f3:4e:
66:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:A1:94:92:40:BD:2F:06:8D:EE:55:F7:EB:A1:87:BA:64:79:C8:95
X509v3 Authority Key Identifier:
keyid:41:FB:6B:17:08:33:50:06:B0:A6:AA:C6:50:BF:AF:F3:FC:8D:29:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QftrFwgzUAawpqrGUL-v8_yNKSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/c771c3-ca90-4fd2-99ac-04c82ed6ed4c/1/R6GUkkC9LwaN7lX366GHumR5yJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/c771c3-ca90-4fd2-99ac-04c82ed6ed4c/1/QftrFwgzUAawpqrGUL-v8_yNKSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.57.0/24
Signature Algorithm: sha256WithRSAEncryption
66:0a:11:4d:39:1e:07:26:83:41:f6:5b:e3:18:f1:d8:34:39:
58:ae:51:3e:73:07:58:ee:5c:68:47:94:de:78:a8:3a:2b:f4:
b5:17:38:a6:ec:75:fb:fa:f0:31:0b:39:3e:18:50:8c:33:5f:
4f:b7:b8:e8:e9:bf:da:83:99:65:40:88:f9:08:b1:ec:ab:df:
f9:28:fa:5f:b7:83:a2:f6:f4:82:0b:7e:44:a6:14:66:4d:79:
ea:11:88:0c:89:80:db:c4:eb:d4:fd:c8:27:f7:50:7d:46:5f:
38:fa:9d:cb:3a:ca:eb:39:e7:b2:0b:04:b5:cf:04:08:c7:f4:
c6:b5:cb:39:f5:5c:2b:66:f3:6d:a5:2d:b8:a8:37:af:f1:30:
b9:2c:26:98:14:3f:7b:c2:90:b9:c2:2c:92:dc:23:72:05:ac:
3c:a4:f9:9e:af:1e:32:c1:b8:94:80:91:1c:d5:3d:8a:0f:b4:
9a:3a:1e:d7:c0:c3:bc:4d:35:ea:1b:b5:8d:af:f1:f1:4a:05:
ed:e6:81:44:8f:a2:48:30:b3:c9:cc:99:d1:cb:0f:de:2d:63:
91:63:a3:97:61:85:72:12:84:66:51:41:ac:a5:ca:18:8c:40:
06:57:fa:5b:e5:1f:a1:63:51:bb:00:4f:0b:38:25:16:1c:92:
35:77:f7:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 12:34:28 2024 by rpki-client on console-ams.rpki-client.org