Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/8oJG0SSq45n5dpkqTrbw7KNQhkE.roa
File: 8oJG0SSq45n5dpkqTrbw7KNQhkE.roa (raw, json)
Hash identifier: wTHqyO8pOFrqX44+RpuUJXtGUNALLqYNsggzWCAVjhI=
Subject key identifier: F2:82:46:D1:24:AA:E3:99:F9:76:99:2A:4E:B6:F0:EC:A3:50:86:41
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 018CC501558018A5414E384F18FD2F70AC51
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/8oJG0SSq45n5dpkqTrbw7KNQhkE.roa
Signing time: Mon 01 Jan 2024 12:30:48 +0000
ROA not before: Mon 01 Jan 2024 12:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212756
IP address blocks: 109.107.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 22:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:55:80:18:a5:41:4e:38:4f:18:fd:2f:70:ac:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jan 1 12:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f28246d124aae399f976992a4eb6f0eca3508641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3d:70:0f:96:d7:90:b7:d5:e0:00:88:46:9f:
50:c4:a7:22:17:d2:4f:9a:ae:14:fb:ef:c5:5c:e4:
8d:13:33:2b:91:f5:f8:25:bf:94:ff:4a:8d:da:a3:
00:78:27:40:79:d4:5c:60:64:c1:ec:45:42:69:bf:
18:85:90:e5:f0:dd:a7:8e:bc:80:cb:f5:69:56:01:
a5:97:e5:b7:83:f9:fa:11:59:5a:38:79:e4:c6:46:
28:d4:fc:0f:ef:a5:e8:62:7c:e0:5e:91:29:e5:db:
d9:53:a7:63:b4:31:fb:cf:16:95:39:3c:45:64:83:
98:4b:ff:e5:a5:2b:81:15:3b:49:e6:ba:a8:42:8c:
8c:0d:c0:d3:d1:7b:53:5a:c5:75:a4:ad:e0:fc:ab:
8a:d9:95:83:a3:f4:1f:1a:3d:21:75:18:9c:b1:f3:
d5:01:eb:9d:39:ef:4d:83:4c:cf:65:4b:66:dc:24:
fb:04:80:3f:cf:a1:34:2f:b9:1f:30:f4:da:09:bc:
88:f7:94:fa:ce:84:1d:0c:d4:61:e5:36:e8:6d:56:
b6:56:56:c1:28:6d:96:4e:19:ff:96:12:1f:b7:18:
a4:dd:e1:f7:dd:0f:47:0d:c3:c7:13:2c:d6:94:65:
4c:03:12:f4:a4:61:8d:a9:39:64:01:ea:a7:45:6b:
15:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:82:46:D1:24:AA:E3:99:F9:76:99:2A:4E:B6:F0:EC:A3:50:86:41
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/8oJG0SSq45n5dpkqTrbw7KNQhkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.155.0/24
Signature Algorithm: sha256WithRSAEncryption
87:f3:b8:0f:f8:a2:84:c5:7a:36:75:2d:ea:c8:02:80:bd:16:
f2:c3:bd:ba:a4:83:5a:d7:b6:a3:85:80:23:df:36:bd:51:28:
89:4c:76:6e:b8:e2:3a:aa:d8:6d:57:19:13:1a:9f:f6:b1:44:
2d:62:7d:4c:c4:45:da:c6:34:15:4c:74:b6:d6:b4:f3:c6:aa:
05:f7:63:c6:47:4d:51:ca:c7:9b:ff:fe:b0:7b:0b:ab:ee:e4:
86:02:30:4f:11:f7:7c:19:61:74:ef:9a:2c:94:03:31:10:c3:
22:46:52:36:22:ef:6b:ce:76:e7:d2:96:b0:13:58:c8:ab:e4:
51:56:d6:6c:24:9d:34:15:8b:17:8a:75:2a:47:a4:ee:f5:73:
b3:ee:45:35:01:ba:fb:70:f0:4d:d0:72:30:85:0a:c4:04:a4:
85:06:1f:50:b9:75:38:4d:8d:cc:88:52:67:1b:c1:72:a4:39:
61:5d:10:38:92:ba:f6:b9:6e:ad:71:3e:42:be:e1:49:33:58:
87:de:ca:95:24:2a:e3:82:dc:de:98:04:6e:10:59:74:36:61:
34:54:2e:f2:70:1e:d2:c2:91:74:c3:50:b3:47:0e:82:63:cb:
ab:8d:bc:77:cc:2f:ea:13:8e:5e:df:15:95:bd:f3:0c:36:a8:
37:c9:0b:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 07:16:31 2024 by rpki-client on console-fra.rpki-client.org