Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/cf9533-1b34-44aa-9a78-f261fe516951/1/ScccwXon05t59yBDYOkj_6pSBzo.roa
File: ScccwXon05t59yBDYOkj_6pSBzo.roa (raw, json)
Hash identifier: 9L40E9vJNuaMsmt05Rbbr1j90sCXRETKEjensRsXvSM=
Subject key identifier: 49:C7:1C:C1:7A:27:D3:9B:79:F7:20:43:60:E9:23:FF:AA:52:07:3A
Certificate issuer: /CN=a9c77844aeb6aab58c4603ca082bdd4a7804779f
Certificate serial: 018CC26D29302A524AA84412C95555E9B72E
Authority key identifier: A9:C7:78:44:AE:B6:AA:B5:8C:46:03:CA:08:2B:DD:4A:78:04:77:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qcd4RK62qrWMRgPKCCvdSngEd58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/cf9533-1b34-44aa-9a78-f261fe516951/1/ScccwXon05t59yBDYOkj_6pSBzo.roa
Signing time: Mon 01 Jan 2024 00:29:42 +0000
ROA not before: Mon 01 Jan 2024 00:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205365
IP address blocks: 195.191.80.0/24 maxlen: 24
195.191.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/cf9533-1b34-44aa-9a78-f261fe516951/1/qcd4RK62qrWMRgPKCCvdSngEd58.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/cf9533-1b34-44aa-9a78-f261fe516951/1/qcd4RK62qrWMRgPKCCvdSngEd58.mft
rsync://rpki.ripe.net/repository/DEFAULT/qcd4RK62qrWMRgPKCCvdSngEd58.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:29:30:2a:52:4a:a8:44:12:c9:55:55:e9:b7:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9c77844aeb6aab58c4603ca082bdd4a7804779f
Validity
Not Before: Jan 1 00:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49c71cc17a27d39b79f7204360e923ffaa52073a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:08:f0:0a:f9:31:57:c5:fa:42:56:76:ba:a8:
91:20:6d:f5:e6:6b:4a:42:28:89:a7:32:4f:e0:6b:
8d:57:eb:67:4d:2b:46:aa:8a:3a:29:91:c9:1a:63:
3d:6e:23:9a:a4:e6:8a:80:88:97:d8:b1:28:bc:62:
27:e3:6a:21:e5:45:06:ea:3a:ad:6a:40:75:a5:b2:
66:04:42:16:7e:42:37:cf:44:43:8c:aa:6e:66:37:
cb:d8:ff:32:04:33:d2:0f:87:83:c8:2b:2e:ab:26:
f7:55:fe:e5:66:ce:54:2b:5f:0d:18:75:94:43:62:
5b:43:3f:2b:0c:26:d0:50:53:58:66:2f:d4:b9:3d:
7c:73:fd:88:88:87:f5:e4:02:16:6b:3e:54:3d:73:
15:b7:15:f7:27:5d:66:30:1a:ab:27:90:a6:fe:39:
76:30:89:fa:98:68:4a:2c:00:8e:a1:a3:1d:02:47:
75:a8:00:9d:fb:e1:45:d1:f1:a9:b4:7c:5c:09:4b:
b9:1b:74:c3:dd:16:fc:3e:ab:c1:d4:71:4d:3e:48:
ee:d7:02:37:e7:c3:0e:05:b0:61:a2:98:77:91:61:
dc:ba:87:ad:73:01:a6:d2:2b:3d:e6:cf:42:92:60:
1e:75:02:22:75:cd:b6:8e:41:40:76:f0:fb:73:7a:
5d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:C7:1C:C1:7A:27:D3:9B:79:F7:20:43:60:E9:23:FF:AA:52:07:3A
X509v3 Authority Key Identifier:
keyid:A9:C7:78:44:AE:B6:AA:B5:8C:46:03:CA:08:2B:DD:4A:78:04:77:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qcd4RK62qrWMRgPKCCvdSngEd58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/cf9533-1b34-44aa-9a78-f261fe516951/1/ScccwXon05t59yBDYOkj_6pSBzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/cf9533-1b34-44aa-9a78-f261fe516951/1/qcd4RK62qrWMRgPKCCvdSngEd58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.80.0/23
Signature Algorithm: sha256WithRSAEncryption
04:41:b1:ce:5b:16:6b:ab:64:12:66:1e:eb:7a:a5:7c:74:06:
56:0c:21:25:4a:7b:dd:86:ea:9d:9e:68:21:f1:62:ed:08:b5:
89:20:eb:2d:d9:00:76:06:b6:28:91:c9:74:7a:74:5a:6c:0f:
64:41:af:ec:d4:ac:47:d0:63:7d:f2:ba:f9:12:e9:a9:af:14:
03:04:d8:6a:96:c6:44:61:de:92:1e:ff:f3:0a:31:5d:21:8c:
ea:2c:8c:69:fd:87:8c:8a:d4:32:46:ec:82:0e:75:db:5a:6e:
cb:46:0c:de:71:4d:e5:36:80:a2:8e:83:7b:7b:d1:d4:3a:d3:
b1:9d:c3:df:23:6f:27:47:c3:de:66:9d:25:ce:06:ec:ba:d6:
7a:54:0d:fa:aa:4c:2a:e9:4c:23:84:0c:2e:a3:ef:c4:94:f8:
55:ea:56:ce:37:b9:d5:b7:75:38:20:e4:74:33:b0:50:0e:fd:
0e:ee:12:fd:24:6d:b1:b0:7d:24:e1:38:ff:91:a7:5f:2b:45:
11:13:e5:f6:58:56:08:33:53:04:22:12:22:8e:19:ee:2f:2c:
20:e3:94:9e:eb:d4:6d:13:5a:8f:4c:3a:e9:7e:94:14:50:dc:
67:9e:ef:ac:cc:7b:11:73:b8:ed:d1:80:55:02:0b:69:60:aa:
be:4c:9d:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 13:06:33 2024 by rpki-client on console-ams.rpki-client.org