Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/qzru0SildJEFQokwxeUWNRByBr4.roa
File: qzru0SildJEFQokwxeUWNRByBr4.roa (raw, json)
Hash identifier: AdLPlPqknDTy/2sBGfrw/u4fVLWijeimU8dIYt7VvDA=
Subject key identifier: AB:3A:EE:D1:28:A5:74:91:05:42:89:30:C5:E5:16:35:10:72:06:BE
Certificate issuer: /CN=d65003e24cecfbf8e8c15ff637dd15db4d7fae92
Certificate serial: 018CC9BCA915B8DD36F1433BED3C3634BB66
Authority key identifier: D6:50:03:E2:4C:EC:FB:F8:E8:C1:5F:F6:37:DD:15:DB:4D:7F:AE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1lAD4kzs-_jowV_2N90V201_rpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/qzru0SildJEFQokwxeUWNRByBr4.roa
Signing time: Tue 02 Jan 2024 10:33:53 +0000
ROA not before: Tue 02 Jan 2024 10:33:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15404
IP address blocks: 193.36.241.0/24 maxlen: 24
193.36.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/1lAD4kzs-_jowV_2N90V201_rpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/1lAD4kzs-_jowV_2N90V201_rpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1lAD4kzs-_jowV_2N90V201_rpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 13:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:a9:15:b8:dd:36:f1:43:3b:ed:3c:36:34:bb:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d65003e24cecfbf8e8c15ff637dd15db4d7fae92
Validity
Not Before: Jan 2 10:33:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab3aeed128a5749105428930c5e51635107206be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9a:b1:ed:d6:e1:3e:e9:1c:c2:ad:55:f2:44:
ab:50:36:b1:f8:71:bc:49:8b:29:17:da:5c:e9:a5:
a6:f5:35:3c:64:ea:6f:aa:f0:c9:09:bb:d5:72:d8:
46:4f:b5:10:26:b3:2c:08:fd:37:4f:11:16:df:78:
c7:23:e3:03:70:93:26:02:20:09:5e:c8:c1:70:10:
13:bc:a1:9e:a2:62:71:b0:c9:cc:32:6a:37:b3:05:
08:19:74:50:61:69:48:b6:a5:36:36:db:18:fd:b2:
e1:11:dc:ac:c0:53:07:76:7a:01:97:8f:ee:89:4a:
75:e7:d7:ad:95:b2:ea:65:28:73:20:0b:4e:39:ae:
a8:79:72:d6:82:d3:8f:06:e5:8b:b5:33:09:e8:f0:
4f:d8:36:43:89:ca:a9:1e:41:a2:2d:e5:41:5d:5a:
40:36:48:1a:84:3a:c3:f8:1f:fa:51:9b:a4:14:9d:
46:7e:4a:3f:db:d0:19:88:18:4f:07:12:50:ab:d8:
cc:d1:8e:b5:4a:d9:4d:5c:3c:39:16:de:c9:3a:7d:
61:1a:3e:c6:08:9c:86:d4:2a:5e:ba:10:d7:fb:6c:
da:36:04:d6:b5:1e:83:ed:bd:65:61:04:52:73:00:
5d:e3:6b:4d:a7:cb:4c:70:57:0f:ca:6c:5b:0e:7f:
8b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:3A:EE:D1:28:A5:74:91:05:42:89:30:C5:E5:16:35:10:72:06:BE
X509v3 Authority Key Identifier:
keyid:D6:50:03:E2:4C:EC:FB:F8:E8:C1:5F:F6:37:DD:15:DB:4D:7F:AE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1lAD4kzs-_jowV_2N90V201_rpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/qzru0SildJEFQokwxeUWNRByBr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/1lAD4kzs-_jowV_2N90V201_rpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.241.0/24
193.36.254.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:27:db:46:1d:80:e5:22:8e:c8:4e:28:cb:04:44:12:96:0a:
13:17:b8:f3:a2:1f:56:a4:b9:77:bb:ab:0b:95:ba:a6:f5:24:
05:63:2b:2d:89:9f:b1:27:aa:a5:ca:28:82:68:d5:e5:ad:84:
44:96:22:bb:86:dd:5b:42:64:9d:56:dd:d2:1e:eb:0c:fe:f1:
8f:4f:30:e9:0c:fd:82:3f:8d:38:4c:cb:b9:b4:93:7b:52:fd:
e0:50:a8:5e:fe:1c:b7:bd:6c:3d:01:dd:38:94:16:3d:e4:b0:
81:d9:d9:91:75:82:58:1a:ad:14:da:fa:d5:cf:ec:81:19:68:
71:8e:f8:14:81:86:9d:e2:a3:d7:38:76:eb:27:25:cd:ad:b3:
4c:78:95:07:a9:17:c0:ab:23:40:be:24:d7:0a:93:58:af:7b:
0e:a8:ae:07:e4:e4:f9:fb:72:95:2b:ae:c3:ea:76:a1:3f:b8:
56:10:d0:42:9e:d7:6d:d5:2d:70:02:db:da:73:b4:df:f9:f9:
47:84:43:2a:f3:2a:54:12:1b:22:bc:8a:85:26:4d:f4:56:9c:
c4:fa:46:ba:3b:60:a2:a8:fc:43:6a:58:57:6f:90:a8:38:87:
de:57:84:bf:fc:74:12:c4:94:eb:18:9f:71:f7:d2:f1:bd:bd:
1b:98:d1:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 18:23:39 2024 by rpki-client on console-fra.rpki-client.org