Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/HwF3YGBeH-FJaB92PBYyGSmx7AY.roa
File: HwF3YGBeH-FJaB92PBYyGSmx7AY.roa (raw, json)
Hash identifier: Lf6qwLDK+9GK7idyg3LV205SzMurzh4ZBrIEmmEhl40=
Subject key identifier: 1F:01:77:60:60:5E:1F:E1:49:68:1F:76:3C:16:32:19:29:B1:EC:06
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 018E75C7155B36F0C46A1ABE113FF219AACE
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/HwF3YGBeH-FJaB92PBYyGSmx7AY.roa
Signing time: Mon 25 Mar 2024 13:22:45 +0000
ROA not before: Mon 25 Mar 2024 13:22:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215254
IP address blocks: 193.5.63.0/24 maxlen: 24
193.247.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 07:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:75:c7:15:5b:36:f0:c4:6a:1a:be:11:3f:f2:19:aa:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Mar 25 13:22:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f017760605e1fe149681f763c16321929b1ec06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:21:80:c9:e1:eb:98:be:4a:90:24:f8:78:d5:
5f:48:b3:e5:b1:34:4d:fd:e9:b5:8f:6a:1c:b4:98:
ed:f5:ca:12:2d:91:9a:55:33:4e:18:57:73:44:ce:
4c:ef:a3:37:c4:ba:27:6f:0b:c0:4a:0f:8b:53:1e:
5f:79:a8:59:10:4d:a6:b3:ca:11:18:5a:18:95:2d:
42:b7:ae:8a:c6:71:87:50:df:9d:8d:45:c5:e5:40:
ee:2d:8d:c0:4e:c2:44:cf:46:eb:a7:bf:22:09:02:
58:f5:36:b3:69:92:23:cb:a2:66:55:e7:96:53:41:
f8:bc:7c:87:4d:82:df:7d:9e:21:6a:06:d8:a5:14:
23:3f:4f:38:35:ea:92:5e:16:72:7d:01:4f:96:63:
0a:6f:56:a0:40:41:09:8c:1a:49:c3:2a:bf:96:87:
b0:cf:cb:92:37:97:97:7d:56:14:34:95:2f:d4:bf:
2e:34:71:6e:ad:f9:e5:80:d6:56:7f:21:30:ac:9d:
4b:8a:dd:c2:bd:30:2b:df:eb:ac:61:18:47:51:61:
45:e5:7f:09:85:04:b9:30:88:cd:7c:7c:b2:7b:0b:
d0:19:db:6f:af:7a:27:dc:c9:b2:6d:43:1c:1e:6a:
61:4b:5d:4c:f3:bb:cd:dc:ba:17:b0:41:41:be:f5:
84:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:01:77:60:60:5E:1F:E1:49:68:1F:76:3C:16:32:19:29:B1:EC:06
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/HwF3YGBeH-FJaB92PBYyGSmx7AY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.63.0/24
193.247.90.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:be:49:ee:be:e6:3c:49:a3:4f:3e:3a:a0:25:2e:d3:18:0c:
50:1e:fb:3b:6a:21:58:29:96:5a:99:d4:78:38:7c:9c:d8:14:
92:b7:f7:8c:8b:71:45:f4:f4:9b:7e:59:bd:91:b6:29:5f:42:
08:99:af:3a:ee:c8:06:c7:6c:5d:8a:f8:a7:0f:fa:44:b6:c9:
61:38:1c:84:7c:56:e1:cc:0f:45:37:ca:59:d4:ac:de:2b:af:
25:b6:8d:45:a0:07:d1:1c:08:0a:70:8a:8d:26:35:99:aa:52:
d4:85:3e:d2:47:cb:2d:f5:8c:4c:69:31:18:b1:00:5b:ac:ff:
0a:a0:cc:b7:6b:8f:0b:4e:d1:4b:9f:f7:55:01:28:5b:c1:4d:
06:78:40:ea:16:c0:a2:77:b5:da:85:6c:d2:4b:0c:d7:0e:73:
6f:df:97:97:37:01:9d:09:24:0e:57:0a:4d:08:a0:06:10:c2:
ab:1b:1d:00:3e:4f:56:31:b1:a1:7d:1f:b2:8e:5e:5e:f2:ca:
9f:33:a3:79:41:01:2f:a0:8f:6e:aa:44:9c:61:69:f5:b9:52:
f6:b9:7e:9a:5d:bd:dd:6d:c0:31:16:c7:f4:09:12:32:bf:10:
49:40:f5:4a:dc:11:11:e8:cb:39:53:9e:72:d9:a2:79:c5:97:
e1:02:9c:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 11:45:51 2024 by rpki-client on console-fra.rpki-client.org