Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/gPJFEzsj_mEbGRqRWkBWkMm0X1Q.roa
File: gPJFEzsj_mEbGRqRWkBWkMm0X1Q.roa (raw, json)
Hash identifier: eP7+fvVTGfqOoK9TPzDrUsJsBere9RzWUNOcBdJYlwQ=
Subject key identifier: 80:F2:45:13:3B:23:FE:61:1B:19:1A:91:5A:40:56:90:C9:B4:5F:54
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 019117EDC795A426BCF18241D1E158F6B8FC
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/gPJFEzsj_mEbGRqRWkBWkMm0X1Q.roa
Signing time: Sat 03 Aug 2024 11:09:04 +0000
ROA not before: Sat 03 Aug 2024 11:09:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 152700
IP address blocks: 185.199.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 10:14:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:17:ed:c7:95:a4:26:bc:f1:82:41:d1:e1:58:f6:b8:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Aug 3 11:09:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=80f245133b23fe611b191a915a405690c9b45f54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:9b:a7:09:30:d9:ce:f9:ea:44:43:3c:1e:4a:
08:af:a6:7f:31:31:8e:6d:07:db:78:51:6c:8d:ac:
52:38:5b:d8:65:52:48:30:9a:93:0d:9e:3b:af:ee:
9e:ff:08:d6:ac:80:1e:52:17:b4:aa:ce:0e:fa:2c:
73:00:c6:16:d7:a0:50:d1:ba:bb:f3:1b:b2:78:35:
90:7f:95:6d:e0:e3:a1:c5:0e:e9:c7:75:9c:02:45:
8a:b9:7f:97:d9:ae:94:75:11:10:0e:1e:2b:e7:03:
06:ef:28:ec:60:c4:69:8d:9f:b8:4b:ca:0c:68:a0:
14:c3:f8:0f:71:ee:e7:e8:86:aa:21:dd:4d:26:36:
fd:45:87:b0:0c:52:53:1c:44:92:af:a8:fe:40:a8:
d4:45:15:2a:74:8e:5a:d1:94:da:e8:15:ac:7f:7c:
71:f7:a4:2c:37:be:fa:ee:34:c9:ce:5c:8e:13:14:
fa:e2:58:24:3c:0e:f3:b4:ae:ee:73:6c:85:2f:a3:
e9:9f:d6:e4:e8:44:c9:0e:47:41:97:74:25:41:23:
00:90:c4:7c:bf:88:75:e5:cf:25:66:cc:15:b1:36:
35:02:81:be:89:68:0e:2c:bb:f8:d6:6f:f5:e7:b1:
00:d0:96:d5:65:cc:41:ef:72:40:2f:53:3b:71:86:
14:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:F2:45:13:3B:23:FE:61:1B:19:1A:91:5A:40:56:90:C9:B4:5F:54
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/gPJFEzsj_mEbGRqRWkBWkMm0X1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.151.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:c4:64:02:d0:66:ee:f6:6c:3f:5e:88:f0:45:d3:fd:85:51:
a3:f5:d5:80:e5:67:12:9d:7e:e8:8b:4e:fb:e0:cc:c4:bc:5b:
48:39:9f:a4:f4:c2:44:2d:24:4b:d5:3f:2e:5f:95:5c:57:05:
0f:fa:d6:f1:4e:4b:14:f8:9c:46:d5:53:4c:02:28:7d:0d:29:
7e:21:04:dc:63:97:a1:1e:9a:3c:01:17:43:b9:0b:68:83:4d:
91:ab:bc:00:35:55:27:1f:ee:a4:c5:32:70:4c:65:1f:cb:06:
e3:c4:e8:4a:cc:30:15:e7:3f:a7:10:7d:40:10:34:a4:e7:ed:
77:ab:fa:f6:f7:a4:c7:54:1e:b0:7c:71:cb:37:18:0b:06:b8:
cc:85:ba:22:52:2c:a0:56:2c:c9:10:e2:ec:58:d4:46:fb:84:
38:1a:fc:fe:71:07:c4:2c:4f:d0:6f:e7:27:18:29:75:47:0d:
1f:95:a0:b5:f1:2c:ea:ab:62:ca:79:91:ec:70:79:83:23:50:
06:3a:49:ed:a6:ca:21:5e:33:a0:ea:71:6c:b0:e5:28:9f:66:
7c:8e:e6:ef:27:97:b0:08:f6:77:bc:10:24:30:ad:46:ea:be:
9c:c7:6f:ca:f0:e3:10:71:ee:5d:94:25:a3:a9:11:77:39:54:
e2:78:9a:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:41:47 2024 by rpki-client on console-ams.rpki-client.org