Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/04d348-75b9-48d2-be10-91190a02db70/1/Afm_fdJ1kqqie5lpTze6mvIqyuc.roa
File: Afm_fdJ1kqqie5lpTze6mvIqyuc.roa (raw, json)
Hash identifier: eguUUfEB5CdgQ2W05ZZT84U7wFOqHzBHDNnmkOZlYBg=
Subject key identifier: 01:F9:BF:7D:D2:75:92:AA:A2:7B:99:69:4F:37:BA:9A:F2:2A:CA:E7
Certificate issuer: /CN=2e8b24c76ad87a6c1fedffaf08d9b17b45249991
Certificate serial: 018CC6B814AFE915633796DF37679A8C8317
Authority key identifier: 2E:8B:24:C7:6A:D8:7A:6C:1F:ED:FF:AF:08:D9:B1:7B:45:24:99:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Loskx2rYemwf7f-vCNmxe0UkmZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/04d348-75b9-48d2-be10-91190a02db70/1/Afm_fdJ1kqqie5lpTze6mvIqyuc.roa
Signing time: Mon 01 Jan 2024 20:30:01 +0000
ROA not before: Mon 01 Jan 2024 20:30:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44398
IP address blocks: 192.66.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/04d348-75b9-48d2-be10-91190a02db70/1/Loskx2rYemwf7f-vCNmxe0UkmZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/04d348-75b9-48d2-be10-91190a02db70/1/Loskx2rYemwf7f-vCNmxe0UkmZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Loskx2rYemwf7f-vCNmxe0UkmZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 13:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:14:af:e9:15:63:37:96:df:37:67:9a:8c:83:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e8b24c76ad87a6c1fedffaf08d9b17b45249991
Validity
Not Before: Jan 1 20:30:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01f9bf7dd27592aaa27b99694f37ba9af22acae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:28:ae:fb:4a:db:07:22:8c:59:84:07:14:a1:
c5:92:b7:b5:fa:6a:1b:4e:e3:1e:50:0a:72:95:16:
74:6e:41:fe:5e:8a:32:23:ea:2e:fd:2f:11:93:e5:
f0:ec:5d:cc:ff:c1:cc:5b:e7:d9:04:fe:fb:4c:64:
2d:40:65:e2:84:1a:87:fc:c6:5f:69:97:58:76:ee:
10:ff:8d:50:e4:fe:bf:6b:7e:ca:8d:5c:91:f7:ea:
65:82:e8:06:9c:b0:5d:e0:e1:bf:85:68:ee:f9:68:
39:09:37:0c:bc:f8:cd:65:27:cd:f3:7b:06:39:a6:
8e:6f:90:7b:e6:b8:0f:f7:ed:f3:96:96:84:e7:55:
a9:1c:23:64:05:7e:2e:64:f4:11:fb:e8:74:dc:8c:
4a:e3:ef:58:30:a1:1f:13:27:6b:4e:89:a9:24:c2:
0d:80:17:40:00:63:fb:d5:5b:be:47:e2:2e:41:c9:
73:b2:1d:ca:04:f4:0d:5f:50:9b:a4:72:ad:65:50:
5b:d3:6f:58:fc:60:0d:29:9e:65:f5:a3:eb:b4:6d:
d3:eb:28:8a:73:09:ac:f2:4b:e6:cc:88:c9:e2:d1:
44:14:01:35:9d:da:43:65:e2:49:71:96:1f:0e:b1:
48:fc:4f:e2:a9:a6:6f:45:5d:c0:46:9c:97:1c:9e:
e0:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:F9:BF:7D:D2:75:92:AA:A2:7B:99:69:4F:37:BA:9A:F2:2A:CA:E7
X509v3 Authority Key Identifier:
keyid:2E:8B:24:C7:6A:D8:7A:6C:1F:ED:FF:AF:08:D9:B1:7B:45:24:99:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Loskx2rYemwf7f-vCNmxe0UkmZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/04d348-75b9-48d2-be10-91190a02db70/1/Afm_fdJ1kqqie5lpTze6mvIqyuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/04d348-75b9-48d2-be10-91190a02db70/1/Loskx2rYemwf7f-vCNmxe0UkmZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.66.172.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:7f:05:46:5e:a0:8e:2b:f6:12:a4:c0:3f:5a:bd:cf:28:a0:
75:66:5f:b5:70:ae:ca:51:9d:30:26:23:9b:4a:2a:bf:b7:5a:
1b:85:76:d5:b9:4e:40:2e:bc:19:f5:a0:4f:c7:8c:08:e6:35:
8f:0b:19:77:16:c8:68:e3:62:0d:4a:40:9d:be:cf:14:b7:a8:
f5:da:31:a9:ca:18:90:11:c1:14:72:87:f2:53:01:71:2d:71:
91:5f:bd:6a:e2:ea:6f:13:ee:25:aa:7b:64:57:c0:75:84:d7:
62:dd:4d:b5:44:25:9b:74:ee:82:28:51:94:c5:5a:ba:4b:17:
c7:d7:50:42:f6:c7:f0:ca:28:d3:ef:7d:79:ed:4a:46:14:84:
69:b5:32:69:fa:0d:e4:0e:8c:3c:5c:ea:0f:61:e2:8a:3d:7a:
3a:bc:1f:4f:48:c3:fa:77:cc:13:26:a5:8f:79:12:35:f7:00:
dd:e7:2c:8c:2c:72:d3:e5:18:88:4c:b4:2e:14:b8:d2:39:a8:
e8:49:a5:d5:74:d6:fb:38:61:49:b5:f5:04:73:68:88:2e:af:
4d:05:8b:99:a7:29:5f:59:70:19:70:b6:b2:3d:a8:6c:b9:80:
7d:8a:e0:48:3e:da:b9:04:ec:b1:a1:37:b8:70:93:9f:54:ad:
43:10:82:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 17:57:42 2024 by rpki-client on console-fra.rpki-client.org