Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/c7f601-3fa2-4db6-a03d-3a63bf7630f5/1/uOWEIdbIBtaW5_fwY_AF0tqXaqA.roa
File: uOWEIdbIBtaW5_fwY_AF0tqXaqA.roa (raw, json)
Hash identifier: t6RnShYSMXRAtnqwlqcrhJgefvgKF2UOlZ30B3OXt2A=
Subject key identifier: B8:E5:84:21:D6:C8:06:D6:96:E7:F7:F0:63:F0:05:D2:DA:97:6A:A0
Certificate issuer: /CN=881ab180cb3517186221b3999b08b83af4f66945
Certificate serial: 01907DF889FAAF6A30696ED95D77D3F92681
Authority key identifier: 88:1A:B1:80:CB:35:17:18:62:21:B3:99:9B:08:B8:3A:F4:F6:69:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBqxgMs1FxhiIbOZmwi4OvT2aUU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/c7f601-3fa2-4db6-a03d-3a63bf7630f5/1/uOWEIdbIBtaW5_fwY_AF0tqXaqA.roa
Signing time: Thu 04 Jul 2024 13:39:18 +0000
ROA not before: Thu 04 Jul 2024 13:39:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215742
IP address blocks: 91.211.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/c7f601-3fa2-4db6-a03d-3a63bf7630f5/1/iBqxgMs1FxhiIbOZmwi4OvT2aUU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/c7f601-3fa2-4db6-a03d-3a63bf7630f5/1/iBqxgMs1FxhiIbOZmwi4OvT2aUU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBqxgMs1FxhiIbOZmwi4OvT2aUU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7d:f8:89:fa:af:6a:30:69:6e:d9:5d:77:d3:f9:26:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=881ab180cb3517186221b3999b08b83af4f66945
Validity
Not Before: Jul 4 13:39:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b8e58421d6c806d696e7f7f063f005d2da976aa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:26:c1:3f:9e:e9:4d:fd:98:c1:f1:71:50:df:
be:04:fd:2d:9c:6c:46:b6:05:71:d2:3d:93:20:ec:
f1:0c:e3:57:19:e0:d8:67:ba:e2:82:5e:08:f1:99:
e9:93:e6:80:b9:d5:17:2d:df:84:87:91:09:38:f6:
d8:c8:4a:1b:1c:27:f9:82:1f:0c:37:5d:c4:18:d0:
0e:f4:80:e8:33:1d:28:02:fb:45:13:7d:7a:24:19:
e6:3c:84:54:0b:0c:d5:db:f7:50:ed:20:16:fc:b1:
d7:9c:5d:77:3b:8b:58:dc:0d:6f:52:9e:ba:5d:cb:
ef:15:ee:54:2f:d8:c4:ef:f7:74:17:ff:da:47:6e:
46:3d:dc:5b:79:04:81:59:15:d9:d7:43:96:2b:cd:
e0:02:4b:bd:15:0d:3e:06:0b:62:d2:27:a0:b6:cc:
71:93:33:99:96:32:54:8c:55:a4:f7:0e:98:8e:63:
68:02:b3:f7:cb:6a:2e:b9:74:1a:18:f5:49:51:4c:
59:16:a1:ff:af:41:1f:2b:09:cb:08:aa:88:af:87:
a2:d3:8a:ad:18:18:3c:19:d9:ff:70:e5:5d:76:4c:
db:89:e0:9e:c0:ba:16:39:cc:a2:5c:c8:b9:89:c0:
b6:0e:a1:32:f4:00:ba:c3:ce:6b:fc:23:36:5b:2f:
2a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E5:84:21:D6:C8:06:D6:96:E7:F7:F0:63:F0:05:D2:DA:97:6A:A0
X509v3 Authority Key Identifier:
keyid:88:1A:B1:80:CB:35:17:18:62:21:B3:99:9B:08:B8:3A:F4:F6:69:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBqxgMs1FxhiIbOZmwi4OvT2aUU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c7f601-3fa2-4db6-a03d-3a63bf7630f5/1/uOWEIdbIBtaW5_fwY_AF0tqXaqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c7f601-3fa2-4db6-a03d-3a63bf7630f5/1/iBqxgMs1FxhiIbOZmwi4OvT2aUU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.85.0/24
Signature Algorithm: sha256WithRSAEncryption
65:0e:8c:3d:08:db:d1:c6:70:38:cf:c3:45:be:38:b3:89:3b:
84:0e:ad:87:ac:b6:06:ec:30:49:b2:20:75:64:53:c5:09:d6:
e6:a7:f3:21:1a:98:b9:33:63:1e:58:b4:8e:38:8f:49:fd:1f:
56:0e:5d:26:90:6e:9f:91:b3:db:0c:eb:a5:c4:5c:7a:35:d5:
a2:15:f9:c6:cf:04:14:4e:69:df:64:f4:77:42:3a:18:32:fb:
36:bb:be:5b:15:80:1b:e1:17:99:12:25:c5:d0:1c:8c:b3:86:
f4:0f:00:4d:3b:55:ab:2e:4d:dd:7b:3a:2c:9c:1a:7e:9b:8e:
0e:93:e6:a5:dd:ed:9c:2b:4e:5e:b1:b8:b7:f3:86:6b:16:ed:
9a:03:aa:2a:4e:de:86:63:ad:b7:0a:be:2f:09:1b:0e:15:0c:
e1:ac:c2:7e:cc:5f:4b:4f:c8:01:ee:df:c2:d5:22:4e:06:b8:
a2:ce:9c:45:79:48:c2:97:7f:9e:86:68:ef:3f:13:d0:d4:6a:
04:a0:16:64:67:49:5f:a5:c5:04:64:67:02:0c:e0:2d:f1:3b:
bf:97:8e:0e:ac:8c:9e:b2:3f:92:e0:c0:c3:94:dc:c2:05:b0:
3e:25:76:6a:89:44:22:80:ac:2a:82:5e:48:ff:1f:87:cc:9e:
02:c8:a6:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:48:36 2024 by rpki-client on console-fra.rpki-client.org