Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/8ujcaWQZePlJ0Pv383gdR7mriWM.roa
File: 8ujcaWQZePlJ0Pv383gdR7mriWM.roa (raw, json)
Hash identifier: zPFtFtRXT7HKq4fkCF+GhCN9gJxkpP2gmdJn5sRXRYA=
Subject key identifier: F2:E8:DC:69:64:19:78:F9:49:D0:FB:F7:F3:78:1D:47:B9:AB:89:63
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 01921F6F6C95D545C6393F9EACE957F06429
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/8ujcaWQZePlJ0Pv383gdR7mriWM.roa
Signing time: Mon 23 Sep 2024 15:10:48 +0000
ROA not before: Mon 23 Sep 2024 15:10:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208949
IP address blocks: 93.113.203.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 05:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:1f:6f:6c:95:d5:45:c6:39:3f:9e:ac:e9:57:f0:64:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Sep 23 15:10:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f2e8dc69641978f949d0fbf7f3781d47b9ab8963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:72:5b:81:bd:7e:b1:18:27:6a:ad:39:47:ab:
69:01:ab:f3:13:cf:67:a3:fa:be:45:f8:2b:06:5b:
4b:2f:c9:00:6f:e1:65:eb:93:fd:dc:26:6f:32:d1:
22:7b:e8:4e:2a:a4:83:76:04:fb:4c:90:c5:18:22:
1b:9e:fb:00:d6:c4:48:b8:d9:0d:05:6a:dc:e7:d5:
e5:99:14:b7:b6:53:bb:9e:b5:d5:79:87:b6:20:14:
97:5d:b0:aa:37:6e:96:9f:51:c1:1b:5d:47:91:ed:
b3:7f:f7:7f:68:ad:e8:1f:b4:a8:d8:47:d2:5d:c0:
6d:6a:e3:4b:5d:38:01:fe:c7:88:8c:1c:71:0d:76:
15:0a:56:e1:55:a9:f7:c1:75:16:59:99:1b:87:bf:
6d:29:e9:f2:56:4b:9b:c4:2b:47:03:22:0f:bd:f2:
17:a1:fe:ff:b8:f4:2e:c9:02:8d:1b:e9:bf:5f:77:
d8:bb:2e:80:8c:4c:bc:a7:0e:91:27:d2:2b:d9:41:
30:ee:1f:b9:95:8d:77:d1:a8:8f:6b:20:eb:62:f9:
f1:ca:28:09:6a:08:b3:2a:73:69:44:1a:6f:0f:cc:
41:22:48:10:32:98:54:7e:e1:b3:5b:7d:19:a7:7e:
cc:85:be:91:c2:1e:c4:b4:5a:75:d7:0e:ca:59:4a:
0d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:E8:DC:69:64:19:78:F9:49:D0:FB:F7:F3:78:1D:47:B9:AB:89:63
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/8ujcaWQZePlJ0Pv383gdR7mriWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.113.203.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:fc:fe:a0:73:e3:1b:77:0e:79:3a:0b:f5:e8:16:f1:be:ed:
f6:fe:ac:76:7b:b3:7b:85:e8:34:e3:bb:8c:02:e7:89:1b:fc:
f7:94:2c:a8:54:cf:0c:41:4c:5b:39:88:56:36:77:a2:c0:26:
cb:15:69:3b:fc:46:e3:04:10:47:ab:37:1a:a5:91:dd:cf:e9:
9e:ff:43:ad:75:27:6f:34:20:d3:2d:e7:3b:5c:94:ef:bf:c0:
94:ba:4c:57:5d:be:82:93:1f:9e:d7:d2:81:fb:5c:29:03:9c:
fa:4f:20:14:1d:53:1b:f7:52:60:ec:ad:4b:ba:74:19:e3:85:
4b:46:aa:0d:d0:13:48:46:60:c0:e3:80:f8:04:a2:62:54:40:
45:b1:8d:2a:a2:7d:fb:58:ee:b2:8a:b5:e8:e4:4c:99:9d:87:
ae:52:91:53:27:d9:e7:d4:23:16:99:f1:13:7f:75:e9:a4:ad:
3b:42:f0:dc:58:4b:2b:9c:92:9e:e1:b1:a2:1e:c3:98:dd:32:
4a:5a:26:61:3c:3a:91:8d:ff:36:0d:d4:8b:1c:74:5f:95:bc:
bc:9f:7c:56:5d:74:ad:fd:3c:76:fb:36:c6:28:72:44:cf:44:
2b:5b:82:7d:b3:1f:8b:76:6c:45:c0:9e:53:4e:91:bd:d0:e7:
81:0f:4e:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:42:50 2024 by rpki-client on console-fra.rpki-client.org