Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/8f3942-17f7-493c-bc6b-4f4fe803b015/1/1-IhhZYoqlk-AKq1siu8iq1SGziM.roa
File: 1-IhhZYoqlk-AKq1siu8iq1SGziM.roa (raw, json)
Hash identifier: dMDIM9EHkUwak1zMXsK/plrfwKQZHISFLUXoM+TiN+k=
Subject key identifier: F8:88:61:65:8A:2A:96:4F:80:2A:AD:6C:8A:EF:22:AB:54:86:CE:23
Certificate issuer: /CN=bb9b56d8d96ebcb5fcf87de2ec2b52c194ccf9f9
Certificate serial: 0190FE2793E202003FAB7B329E2768B06D4D
Authority key identifier: BB:9B:56:D8:D9:6E:BC:B5:FC:F8:7D:E2:EC:2B:52:C1:94:CC:F9:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u5tW2NluvLX8-H3i7CtSwZTM-fk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/8f3942-17f7-493c-bc6b-4f4fe803b015/1/1-IhhZYoqlk-AKq1siu8iq1SGziM.roa
Signing time: Mon 29 Jul 2024 11:02:04 +0000
ROA not before: Mon 29 Jul 2024 11:02:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60976
IP address blocks: 91.232.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/8f3942-17f7-493c-bc6b-4f4fe803b015/1/u5tW2NluvLX8-H3i7CtSwZTM-fk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/8f3942-17f7-493c-bc6b-4f4fe803b015/1/u5tW2NluvLX8-H3i7CtSwZTM-fk.mft
rsync://rpki.ripe.net/repository/DEFAULT/u5tW2NluvLX8-H3i7CtSwZTM-fk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fe:27:93:e2:02:00:3f:ab:7b:32:9e:27:68:b0:6d:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb9b56d8d96ebcb5fcf87de2ec2b52c194ccf9f9
Validity
Not Before: Jul 29 11:02:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f88861658a2a964f802aad6c8aef22ab5486ce23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:f5:ee:00:78:d1:ba:15:32:78:80:68:e9:49:
5d:08:0a:fc:01:e5:13:10:3f:e3:0d:1b:a4:06:70:
b4:74:70:92:06:87:3e:af:7a:bd:3c:91:df:03:4b:
38:21:0b:9f:be:ab:fb:2c:28:4d:b5:e6:45:60:6d:
1b:57:45:f7:89:e0:10:15:a8:ca:c8:4c:8b:76:68:
07:00:f3:7f:43:ae:2e:22:32:ec:7d:34:55:2e:f9:
6f:47:13:e5:58:37:21:47:93:d7:1e:4b:8c:af:dc:
51:d9:d9:c7:ad:f6:d2:60:92:b9:bb:aa:3f:b7:06:
ad:80:c4:17:59:17:3a:f5:29:19:02:cd:23:59:23:
5d:d1:f5:fb:97:78:08:38:60:b3:ee:90:8a:94:9d:
5b:bf:96:b1:89:d6:2e:d9:07:40:f8:bb:22:98:cb:
d3:c2:60:64:2c:70:89:8e:53:e2:3f:43:05:c6:7e:
e6:fd:bc:a7:cd:0a:05:3c:cd:8a:de:7a:a1:d9:19:
ea:37:a7:43:f9:d9:e3:b1:33:dc:7e:29:0f:33:4d:
79:e9:e2:87:20:b6:b6:f3:ee:2e:f8:c4:37:95:40:
71:e3:95:68:f5:1a:74:57:e7:dd:96:b4:7d:ca:27:
03:a4:fe:29:98:bf:2d:4c:3b:1a:99:25:7b:05:d9:
0f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:88:61:65:8A:2A:96:4F:80:2A:AD:6C:8A:EF:22:AB:54:86:CE:23
X509v3 Authority Key Identifier:
keyid:BB:9B:56:D8:D9:6E:BC:B5:FC:F8:7D:E2:EC:2B:52:C1:94:CC:F9:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u5tW2NluvLX8-H3i7CtSwZTM-fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8f3942-17f7-493c-bc6b-4f4fe803b015/1/1-IhhZYoqlk-AKq1siu8iq1SGziM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8f3942-17f7-493c-bc6b-4f4fe803b015/1/u5tW2NluvLX8-H3i7CtSwZTM-fk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.73.0/24
Signature Algorithm: sha256WithRSAEncryption
34:02:e7:53:ac:8c:b8:89:fa:03:f1:2f:80:f1:9a:b5:21:6c:
28:a2:c6:dd:0e:bf:d0:36:1f:a4:d7:5e:6c:d9:7c:55:9e:36:
41:e0:b3:ec:21:b9:37:7e:04:af:b5:a8:3e:e2:17:49:fb:69:
d4:80:c2:bd:bb:02:c1:14:9c:eb:32:b2:e1:23:37:85:17:74:
fa:b8:18:28:6b:e3:55:de:de:9c:85:1e:45:cc:81:8f:28:94:
e2:43:fa:bb:99:5c:3a:1d:59:7f:02:b7:30:7a:fa:57:9c:34:
91:d4:88:f6:d4:6d:3a:4c:94:84:7b:86:dd:5f:14:d7:ff:47:
83:12:42:d7:20:86:ca:53:74:ab:ef:50:34:f6:68:83:2e:49:
7f:9c:d5:b2:b7:7e:20:99:49:a0:5f:ba:08:7d:0d:ec:ce:44:
7c:82:86:35:d5:51:d6:5b:7f:09:53:d3:27:fb:83:7b:a6:56:
81:36:66:54:7d:12:67:5a:14:c8:7f:92:9b:5e:c2:27:eb:fb:
d6:8e:1b:c4:59:c0:d4:b8:0f:ae:6a:16:3d:ab:33:b4:0e:91:
a6:d8:d7:24:52:3f:6d:e6:c2:d7:6e:b0:33:4b:c9:cd:93:42:
50:18:cd:19:4f:5a:5f:0c:3d:1f:8c:b2:70:a7:33:1c:d8:dd:
7b:9e:32:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:01:27 2024 by rpki-client on console-ams.rpki-client.org