Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/91d4e8-fa6e-4505-b57f-c7ce2e4450a7/1/1-9TdCKLmiK2TWs0T4dgxQMGTgCY.roa
File: 1-9TdCKLmiK2TWs0T4dgxQMGTgCY.roa (raw, json)
Hash identifier: dvBfU4yyOVfrh9rcvxVU1OcT1W1TpsM/GAC+v1SOhQA=
Subject key identifier: FB:D4:DD:08:A2:E6:88:AD:93:5A:CD:13:E1:D8:31:40:C1:93:80:26
Certificate issuer: /CN=ae4e8c639aeaf132a2fc33fce6e81434dfca64b7
Certificate serial: 018CC726BBA857FE28D3602CFC1CB95313FC
Authority key identifier: AE:4E:8C:63:9A:EA:F1:32:A2:FC:33:FC:E6:E8:14:34:DF:CA:64:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rk6MY5rq8TKi_DP85ugUNN_KZLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/91d4e8-fa6e-4505-b57f-c7ce2e4450a7/1/1-9TdCKLmiK2TWs0T4dgxQMGTgCY.roa
Signing time: Mon 01 Jan 2024 22:30:53 +0000
ROA not before: Mon 01 Jan 2024 22:30:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211340
IP address blocks: 185.182.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/91d4e8-fa6e-4505-b57f-c7ce2e4450a7/1/rk6MY5rq8TKi_DP85ugUNN_KZLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/91d4e8-fa6e-4505-b57f-c7ce2e4450a7/1/rk6MY5rq8TKi_DP85ugUNN_KZLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rk6MY5rq8TKi_DP85ugUNN_KZLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:bb:a8:57:fe:28:d3:60:2c:fc:1c:b9:53:13:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae4e8c639aeaf132a2fc33fce6e81434dfca64b7
Validity
Not Before: Jan 1 22:30:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fbd4dd08a2e688ad935acd13e1d83140c1938026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:69:67:33:81:24:0b:fa:fb:d5:3d:da:88:09:
27:28:27:11:05:1b:f0:5d:a7:24:94:54:97:8a:c5:
10:5d:8c:1a:f7:39:5e:b1:5d:49:c3:75:95:53:0c:
4a:60:d3:88:e7:36:ba:21:92:28:89:95:c3:bc:cf:
68:f6:f5:39:19:b9:63:d9:a4:4a:62:ce:26:34:38:
dc:e7:32:5d:a8:91:59:d5:7c:7e:cc:9c:19:e1:c7:
ac:20:0f:9c:b7:cb:46:53:49:aa:5e:4f:fe:d6:75:
55:85:bf:32:06:9b:f7:96:7b:54:0b:47:54:b9:cf:
94:2f:a7:12:c9:a5:fe:e9:98:b6:d2:ea:b2:47:cd:
83:fe:e8:02:6d:6e:ee:dd:aa:ad:10:80:d6:db:29:
09:2b:c0:f3:5c:ec:6f:fe:fb:08:1e:aa:16:da:7e:
1c:b9:71:f1:9c:78:d0:19:c1:de:d7:0b:b8:7a:c8:
ac:b8:d9:3b:56:31:03:38:f1:b9:f0:ad:67:cf:d8:
90:c7:58:8d:63:26:94:5e:31:04:42:d7:2d:d9:6e:
ec:af:c3:c5:94:9b:4d:8b:4c:72:10:00:6d:0a:74:
bc:13:b7:ed:47:8c:46:00:05:0e:ab:09:6b:4e:1f:
a3:6a:d6:3f:d8:58:49:c2:99:2d:3b:1c:3c:00:ba:
b8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:D4:DD:08:A2:E6:88:AD:93:5A:CD:13:E1:D8:31:40:C1:93:80:26
X509v3 Authority Key Identifier:
keyid:AE:4E:8C:63:9A:EA:F1:32:A2:FC:33:FC:E6:E8:14:34:DF:CA:64:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rk6MY5rq8TKi_DP85ugUNN_KZLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/91d4e8-fa6e-4505-b57f-c7ce2e4450a7/1/1-9TdCKLmiK2TWs0T4dgxQMGTgCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/91d4e8-fa6e-4505-b57f-c7ce2e4450a7/1/rk6MY5rq8TKi_DP85ugUNN_KZLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.66.0/24
Signature Algorithm: sha256WithRSAEncryption
65:c2:05:3a:43:c8:c0:c0:e2:f0:95:96:74:3c:2f:53:e0:16:
70:9f:e0:da:dc:c9:22:d6:6c:6c:c1:7a:3a:c6:11:e1:33:03:
bd:7f:d7:1d:4b:ca:93:16:12:5c:9a:21:e5:6d:88:1d:9d:95:
3c:0e:e8:5c:05:36:55:b6:fe:cb:26:7a:cf:fe:6a:41:2d:1f:
18:9a:9e:f3:f5:3f:44:44:a2:f5:b2:df:df:3e:1b:4a:3f:62:
39:79:b8:3b:9f:87:fb:a1:da:54:80:09:0b:7d:bc:1b:9f:2e:
16:c6:98:e5:16:4a:7d:a4:53:69:83:0a:45:f8:89:a7:54:c2:
d2:3d:00:75:f2:32:24:51:1a:dc:6f:f2:e2:25:c1:5b:92:28:
cd:1e:c6:e7:c5:ef:5d:aa:0d:cf:f7:81:cd:2a:82:fa:a3:d2:
25:a6:41:53:56:3c:c1:ca:4b:7b:1d:3b:3e:58:74:6f:69:0b:
b5:00:ed:72:24:5c:9c:9f:b4:78:cf:2d:70:98:79:50:ec:ed:
4e:1a:d6:33:6f:6f:e1:56:3c:57:79:23:1a:29:3a:93:73:e1:
26:cf:68:79:4e:8a:61:95:34:e4:7c:24:88:5f:ac:36:35:42:
db:a5:e2:ef:dd:8b:29:a6:2d:a5:f9:fd:b6:c5:20:99:3b:3a:
f4:ee:8b:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 11:44:57 2024 by rpki-client on console-fra.rpki-client.org