Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/c0a971-d96f-43d4-a8bc-30625317430d/1/A1E55Nj9aT99loQWITybRUIYIEk.roa
File: A1E55Nj9aT99loQWITybRUIYIEk.roa (raw, json)
Hash identifier: nvImIlH75ZaaQvBabODVAia4og8cd7DgqBs4+0vFud8=
Subject key identifier: 03:51:39:E4:D8:FD:69:3F:7D:96:84:16:21:3C:9B:45:42:18:20:49
Certificate issuer: /CN=d7622be88a5ceaef8c330d7e96fff435e82053b4
Certificate serial: 0192AE6C76E31C1974D9C7BD2D54EF8533EB
Authority key identifier: D7:62:2B:E8:8A:5C:EA:EF:8C:33:0D:7E:96:FF:F4:35:E8:20:53:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12Ir6Ipc6u-MMw1-lv_0NeggU7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/c0a971-d96f-43d4-a8bc-30625317430d/1/A1E55Nj9aT99loQWITybRUIYIEk.roa
Signing time: Mon 21 Oct 2024 09:33:16 +0000
ROA not before: Mon 21 Oct 2024 09:33:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 91.234.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/c0a971-d96f-43d4-a8bc-30625317430d/1/12Ir6Ipc6u-MMw1-lv_0NeggU7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/c0a971-d96f-43d4-a8bc-30625317430d/1/12Ir6Ipc6u-MMw1-lv_0NeggU7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/12Ir6Ipc6u-MMw1-lv_0NeggU7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ae:6c:76:e3:1c:19:74:d9:c7:bd:2d:54:ef:85:33:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7622be88a5ceaef8c330d7e96fff435e82053b4
Validity
Not Before: Oct 21 09:33:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=035139e4d8fd693f7d968416213c9b4542182049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a8:bc:d7:d4:57:13:12:4d:39:c5:46:9c:a6:
1b:20:0f:b5:7a:30:61:92:f0:dc:d9:db:e3:2f:41:
23:be:d9:f4:3b:73:47:b9:20:8f:95:4f:1a:ac:07:
3a:2e:f4:57:06:a2:c6:e8:07:34:30:a8:1f:36:74:
bb:d0:1f:6d:8f:71:77:af:08:7e:dd:d8:c2:b6:9f:
c0:2c:fd:c5:77:be:03:ce:c9:f1:5c:b8:15:1b:2c:
3b:1b:69:0b:c9:f8:b2:46:f8:21:3b:e1:94:52:06:
24:ad:16:ae:ae:d2:0c:bb:b9:0c:ab:1f:24:b0:9e:
88:3d:67:a9:9c:7e:0d:7a:75:54:88:92:ff:da:4d:
ff:a9:c4:31:6d:d3:87:2a:5d:94:e2:cc:47:91:7c:
af:f1:3e:44:64:58:f8:77:d6:98:cc:17:8d:05:c1:
75:6f:f0:36:07:15:a8:11:ad:e7:6e:e0:a7:6a:f8:
9b:7a:5e:ba:f6:b0:40:b9:72:cf:f0:2f:01:e7:c1:
84:ab:de:91:af:4e:8e:86:52:57:4f:e2:45:d8:28:
9b:26:b2:7b:98:ef:cc:12:db:dd:ee:f1:b4:63:be:
20:17:30:98:60:93:bc:6a:bd:23:60:c1:98:69:4c:
f8:93:fd:b8:1e:b2:7c:7b:d7:ed:4c:24:c0:d1:85:
85:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:51:39:E4:D8:FD:69:3F:7D:96:84:16:21:3C:9B:45:42:18:20:49
X509v3 Authority Key Identifier:
keyid:D7:62:2B:E8:8A:5C:EA:EF:8C:33:0D:7E:96:FF:F4:35:E8:20:53:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12Ir6Ipc6u-MMw1-lv_0NeggU7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c0a971-d96f-43d4-a8bc-30625317430d/1/A1E55Nj9aT99loQWITybRUIYIEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c0a971-d96f-43d4-a8bc-30625317430d/1/12Ir6Ipc6u-MMw1-lv_0NeggU7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.239.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:7f:a2:23:12:16:12:3b:1a:75:f0:a6:80:b0:cc:db:83:c5:
b8:0c:c2:a4:3c:ab:15:db:a6:48:d8:7a:b5:de:97:af:ae:92:
33:4e:c8:99:10:d0:70:2e:73:af:a9:9e:d8:da:d0:52:9e:e4:
95:0b:cf:9d:d6:d2:8e:e3:3e:01:a8:f8:5f:ef:75:bb:9d:70:
be:1b:17:c7:f2:14:ca:80:36:ec:a0:f8:f1:7c:07:b1:9e:99:
43:11:72:78:78:4a:66:d3:20:cf:ab:ab:91:11:aa:38:c3:57:
16:a5:bc:d3:65:17:2c:3a:95:e5:21:b4:53:6a:44:21:78:3c:
8e:53:2b:25:23:f8:06:e3:bf:ba:7c:ca:68:30:64:03:66:54:
77:6d:4f:a4:d0:90:94:f7:2c:e1:5b:44:e9:38:9f:c6:cb:a3:
43:bd:9f:3a:93:18:75:90:09:5c:d7:ce:05:f8:13:3e:d3:30:
0b:ae:ea:7c:be:a9:c8:5e:9e:19:a4:b3:6a:5d:72:72:03:e9:
3a:d6:51:7d:19:d4:ef:da:46:6d:59:83:5d:8a:88:6d:6e:6a:
21:03:a0:f5:d1:8f:a3:af:8a:eb:7c:83:6f:42:52:09:2f:ff:
50:7d:7f:59:2c:93:34:db:52:62:5c:42:cb:5d:79:85:b0:d4:
96:ab:c6:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:28:41 2024 by rpki-client on console-fra.rpki-client.org