Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/acf2a2-4d52-40cd-a5f8-59591389e242/1/d_P64R9zQ029XsFHmFIrXLqkdBg.roa
File: d_P64R9zQ029XsFHmFIrXLqkdBg.roa (raw, json)
Hash identifier: il4k/OR2aboYyF63Hm4zYXjiZ7w9N1bEffZKVlPREmI=
Subject key identifier: 77:F3:FA:E1:1F:73:43:4D:BD:5E:C1:47:98:52:2B:5C:BA:A4:74:18
Certificate issuer: /CN=9da4e95d2f4cc34a7376b73c0f039b3e158f5152
Certificate serial: 018F04F83DAB5F2F3D1A2616A6C8EDDDAE4A
Authority key identifier: 9D:A4:E9:5D:2F:4C:C3:4A:73:76:B7:3C:0F:03:9B:3E:15:8F:51:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naTpXS9Mw0pzdrc8DwObPhWPUVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/acf2a2-4d52-40cd-a5f8-59591389e242/1/d_P64R9zQ029XsFHmFIrXLqkdBg.roa
Signing time: Mon 22 Apr 2024 08:42:08 +0000
ROA not before: Mon 22 Apr 2024 08:42:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198504
IP address blocks: 185.19.80.0/23 maxlen: 23
185.19.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/acf2a2-4d52-40cd-a5f8-59591389e242/1/naTpXS9Mw0pzdrc8DwObPhWPUVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/acf2a2-4d52-40cd-a5f8-59591389e242/1/naTpXS9Mw0pzdrc8DwObPhWPUVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/naTpXS9Mw0pzdrc8DwObPhWPUVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 15 Jun 2024 02:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:04:f8:3d:ab:5f:2f:3d:1a:26:16:a6:c8:ed:dd:ae:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9da4e95d2f4cc34a7376b73c0f039b3e158f5152
Validity
Not Before: Apr 22 08:42:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=77f3fae11f73434dbd5ec14798522b5cbaa47418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:e8:0a:d9:04:fd:cc:96:86:91:c1:c5:4d:f0:
6d:af:17:51:bf:bf:27:9d:59:61:f4:ab:80:07:0b:
e9:33:5b:6f:44:48:a6:75:3d:93:df:e6:06:da:63:
97:56:71:71:25:50:38:6e:2f:c4:57:df:47:1f:fa:
a8:52:9d:64:f9:ef:b1:18:a3:c1:7c:d0:84:2a:4c:
b9:4e:2e:c9:7a:e0:56:ea:bc:ac:36:ac:b8:b8:7d:
da:fc:21:9e:2b:79:1c:e6:46:8b:68:92:84:5c:ae:
9a:9c:65:10:6e:3f:45:0c:8a:82:59:59:1c:95:ef:
69:b0:27:78:83:be:0b:4b:3f:08:7a:1b:63:fd:6d:
c1:db:82:db:4f:51:d8:cf:6a:7b:32:18:03:47:9f:
0c:8a:89:99:dc:eb:87:c8:5a:82:ea:a3:ce:4e:10:
05:62:14:da:44:6e:74:4a:9e:c5:f6:dc:5d:99:03:
d8:44:04:47:12:41:7a:b7:d0:ea:0d:5d:b8:54:73:
4c:9c:a9:de:7d:9e:83:db:7b:d7:b8:5d:2c:83:94:
ff:4a:ad:19:38:a4:19:45:40:41:75:f2:f6:93:4f:
87:61:f9:48:1e:f9:af:78:89:c6:00:43:d1:fa:80:
75:2a:95:68:64:06:7f:5f:9d:32:7f:f4:c5:18:c0:
f3:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:F3:FA:E1:1F:73:43:4D:BD:5E:C1:47:98:52:2B:5C:BA:A4:74:18
X509v3 Authority Key Identifier:
keyid:9D:A4:E9:5D:2F:4C:C3:4A:73:76:B7:3C:0F:03:9B:3E:15:8F:51:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naTpXS9Mw0pzdrc8DwObPhWPUVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/acf2a2-4d52-40cd-a5f8-59591389e242/1/d_P64R9zQ029XsFHmFIrXLqkdBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/acf2a2-4d52-40cd-a5f8-59591389e242/1/naTpXS9Mw0pzdrc8DwObPhWPUVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.80.0/23
185.19.83.0/24
Signature Algorithm: sha256WithRSAEncryption
02:7b:e7:5b:67:6e:a9:00:c7:c0:97:32:6b:91:38:d3:05:f2:
e8:d1:69:cb:cd:e1:d9:89:b7:04:22:08:82:c0:7b:e8:f1:3d:
db:27:94:79:3f:2f:69:04:6e:4e:38:c8:cb:f6:6f:66:ca:b7:
50:1d:54:be:e6:38:15:e4:ae:c0:af:c3:a2:25:fc:95:f3:d5:
af:34:be:e2:2c:06:0b:1e:4a:5f:1a:d4:52:ab:6f:1d:47:c5:
51:67:e9:06:13:4b:a8:28:65:53:72:e8:df:a7:64:2f:2b:de:
1a:a1:a7:ff:9a:51:9b:a2:03:b2:3f:60:be:50:8f:f4:83:66:
85:7a:0a:74:26:7b:a5:d2:42:69:6c:23:81:f4:1b:71:35:e7:
47:95:f7:cf:1e:66:1c:7b:ae:b3:27:73:14:76:3f:64:82:fc:
45:2b:66:b3:07:44:2c:40:cc:5d:c5:85:10:a3:9c:8b:0d:d9:
50:f0:75:cb:ef:4f:05:44:1b:ed:e0:03:ed:da:37:49:b9:d7:
0f:0c:ec:ea:25:c8:3b:84:78:d2:84:ad:cc:5f:f2:9d:fe:b3:
79:c7:3a:cb:92:66:7c:f4:ac:84:a9:21:20:f2:1f:3a:48:57:
36:84:7a:c0:8f:bf:66:0b:d0:7f:61:3b:41:4e:f8:8d:b0:9a:
4b:67:d2:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 14 08:58:27 2024 by rpki-client on console-ams.rpki-client.org